Chief Cybersecurity Officer

We are seeking a visionary Chief Cybersecurity Officer to drive our organization's cybersecurity strategy and spearhead efforts to protect our digital assets against current and emerging threats.

You are a strategic thinker with extensive technical knowledge and business understanding, capable of balancing security priorities with business needs. As a seasoned leader in cyber and information security, you will be responsible for defining, implementing, and managing Bunker Holding's information security strategy and governance framework.

The ideal candidate will have a thorough understanding of ICT risk management and compliance within IT. Skilled in engaging with senior executives and board members on cybersecurity topics, you will provide regular updates and reports on security risks, initiatives, and compliance status to Executive Management.

• Strategic Leadership Governance:
• Develop and implement the organization's information security roadmap in alignment with business goals.
• Maintain a robust security governance framework, ensuring compliance with industry frameworks and standards (ISO 27000, NIST CSF, CIS Controls) and regulatory requirements (NIS2, GDPR, DORA, AI Act, CRA, etc.).
• Provide regular updates and reports on security risks, initiatives, and compliance status to Executive Management.
• Oversee and conduct assessments processes to identify, evaluate, and mitigate cybersecurity and data privacy threats.
• Ensure compliance with current and emerging regulations related to data protection and cybersecurity.
• Collaborate with internal and external auditors to ensure adherence to security policies and standards.

• Security Operations Technology:
• Direct and oversee the implementation of security and compliance controls and solutions safeguarding the organization.
• Ensure effective monitoring, detection, and response capabilities for cyber threats.
• Evaluate and manage third-party security risks, including vendors and business partners.

• Awareness Culture Building:
• Promote a vigilant security culture through ongoing awareness campaigns and training programs.
• Act as an advocate for cybersecurity best practices across all levels of the organization.