Our client, an innovative company operating in the Governance, Risk & Compliance (GRC) software space, is looking for an IT Auditor / Risk Officer to strengthen their growing team.
In this role, you will play a key part in safeguarding operations and supporting continuous innovation within a modern SaaS environment. You will help manage existing compliance certifications and contribute to further strengthening the company’s security and risk management frameworks. Acting as a trusted partner to internal stakeholders and external auditors, you will help ensure the organization remains compliant while enabling scalable growth.
This company is currently in an exciting phase of expansion and digital transformation. The team values collaboration, transparency, and a strong customer focus while building robust and intuitive risk management solutions.
If you are looking to grow in a fast-moving tech environment and work closely with security, compliance, and product teams, this could be a great opportunity.
What you’ll do
- Maintain and improve the Information Security Management System (ISMS) aligned with ISO 27001
- Support internal control frameworks in line with ISAE 3402 and ensure readiness for external audits
- Contribute to the implementation and audit preparation of SOC 2 Type II
- Conduct risk assessments, gap analyses, and mitigation planning
- Maintain and update the risk register and support continuous improvement initiatives
- Act as a point of contact for external auditors during audit and certification processes
- Advise internal teams and management on risk exposure, audit findings, and remediation actions
- Develop and update security policies, procedures, and awareness initiatives
- Translate technical risk and compliance requirements into clear guidance for non-technical stakeholders
Does this sound like you?
- 1+ years of experience in risk, compliance, IT audit, or a related field
- Experience working in a SaaS, technology, or regulated environment is a plus
- Familiarity with ISO 27001, ISAE 3402, or SOC 2 frameworks
- Knowledge of frameworks such as COSO, COBIT, or NIST is considered an advantage
- Comfortable working with auditors and cross-functional teams on certification processes
- Strong communication skills and ability to explain risk topics clearly
- Proactive, structured, and solution-oriented mindset
- Fluent in English; Dutch is a plus
What’s in it for you?
- Opportunities to learn and further develop expertise in risk, compliance, and security
- A collaborative environment with ambitious colleagues in a growing international tech company
- Team activities, social events, and sports initiatives
- Flexible working model with hybrid work arrangements
Additional benefits include:
- Home Office Ergonomics Budget to optimize your workspace
- Quarterly Mental Health Days to recharge and maintain balance
- Annual Learning & Development Budget for certifications or training
- Flexible work location, including hybrid work and occasional work-from-anywhere options
About the company
Our client is a fast-growing software company in the Governance, Risk & Compliance (GRC) domain. Their platform helps organizations manage business processes, risk, compliance, and audit activities in an integrated and user-friendly way.
The platform combines strong usability with flexible implementation and integrations, enabling organizations to strengthen their governance and risk management processes while maintaining operational efficiency.