Ahold Delhaize Group is one of the world's largest food retail groups and a leader in both supermarkets and e-Commerce. Its family of great, local brands serves more than 50 million customers each week in Europe, the United States and Indonesia. Together, these brands employ more than 420,000 associates in more than 7,000 grocery and specialty stores. Our AD Group is based in Zaandam in the Netherlands, but AD Group associates also work in all the countries we serve. This team supports all our great local brands in finance, HR, IT, legal, communications, sustainable retailing, and other key functions. 

Specialist Cyber Risk and Assurance

The position of Specialist II, Cyber Risk & Assurance is a position within the Group Cybersecurity organization and is a key component in supporting the group’s cybersecurity risk and assurance program using their skills to implement adequate and innovative security risk management processes and tooling to achieve satisfactory and mature cyber risk and assurance capabilities within Ahold Delhaize and its Brands.

This associate will support the execution of the cyber risk management framework and security assurance process initiatives across the organization. This position will assist in conduct of risk assessment, risk analysis, registration and reporting requirements by ensuring a culture of risk mindset across the organization . Initiatives this associate will support include support conduct of scenario-based risk assessments, ensuring that risks are registered, reported and monitored consistently.   The associate should support the security assurance program by monitoring & testing of security controls.

This position reports to the Head of Cyber risk and security assurance within the Cybersecurity Governance, Risk and Compliance team in the Group Cybersecurity Office

About Ahold Delhaize

We’re Ahold Delhaize, one of the world’s largest food retail groups and a leader in both supermarkets and e-commerce. Together with our 19 strong local retail brands all over the world, we aim to make a meaningful difference in the lives of our customers, our people and the world around us. We offer a highly dynamic, international work environment in which our employees thrive.

Your new work environment.

The primary purpose of this position is to work with the Cyber Security GRC Risk & Assurance team to ensure that the groups’ needs are met.  Support the delivery of the program for the Cyber risk and security assurance team on Group level by leading or supporting relevant initiatives of the security program and portfolio.

Key responsibilities of your role

Your role is highly diverse and encompasses various responsibilities. Here are the key ones:

As Cyber Risk and Security assurance Specialist within our Group Cybersecurity Office (GCSO) team, you will:

• Carry out periodic cyber risk assessments within the Cyber security risk management framework
• Periodically monitor the threat landscape and vulnerabilities working closely with the relevant teams within the Group Cyber Security Office
• Ensure that risks are identified and registered appropriately through various source ingestions
• Act as a brand ambassador to bring risk-based mindset across the organization by organizing training and awareness
• Collaborate closely within the GCSO, IT and business teams in implementation of the framework
• Develop related metrics and dashboards to provide an overview of cyber risks
• Work closely with risk owners to monitor risks and ensure that risks are managed within the appetite
• Periodically test security controls to provide assurance

​

What’s in it for you?

Aside from what we ask of you in this role, we also have a great deal to offer you: plenty of growth opportunities and various cross-brand career options; flexible working hours; a hybrid working model (we ask you to spend at least 50% of your working time at the office); and the chance to drive meaningful change on a global scale. You can look forward to a good work-life balance, and the chance to work in an inclusive environment that wholeheartedly encourages growth and welcomes you just the way you are.

Requirements

We think you’ll be best geared for success if you meet the following requirements:

• Bachelor’s degree or equivalent technical training in Information Technology, Information Systems Security, Cyber security, or related field
• 3+ years of experience in cyber security risk process
• Knowledge of cyber security threats and best practices
• knowledge of industry authoritative sources such as NIST, COBIT, GDPR, PCI and ISO standards
• Solid communication and presentation skills
• Strong results orientation to achieve goals
• Familiarity with the retail industry
• Familiarity with GRC platforms, security-related legal and regulatory requirements
• Ability to act independently with minimal supervision
• Must be willing to travel, as required, to support the various Ahold Delhaize locations (up to 15%)
• Excellent command of the English language, both written and spoken

Apply now!
Are you keen to join the team? Even if you don’t tick all the boxes, but you still believe you have the personality and skills that make you a suitable candidate, we strongly encourage you to reach out to us. Apply now via the button on this page.

At Ahold Delhaize and our local brands, we broadly define diversity as being inclusive of thoughts and skills, generational differences, LGBTQ+, gender, race and ethnicity, disabilities, nationalities and more, and we accept all people for who they are.

The AD Group sets global strategies frameworks, facilitates the sharing of best practice and encourages economies of scale. Great examples include sharing technology and digital know-how, so we can continue to lead in online and in-store retailing, setting global targets for healthy and sustainable products-including reducing food waste, use of plastics and making our products healthier to use and eat, and championing development for our future leaders-from learning about the digital mindset to leading our stores of the future. 

Under the federal Transparency in Coverage rule, group health plans are required to make publicly available machine-readable files that include in-network rates and out-of-network allowed amounts and billed charges. Click  the link to view the in-network rates and out-of-network allowed amounts and billed charges under the welfare benefits plan in which AD Group participates

We are an equal opportunity employer. We comply with all applicable federal, state and local laws. Qualified applicants are considered without regard to sex, race, color, ancestry, national origin, citizenship status, religion, age, marital status (including civil unions), military service, veteran status, pregnancy (including childbirth and related medical conditions), genetic information, sexual orientation, gender identity, legally recognized disability, domestic violence victim status or any other characteristic protected by law.