Specialist Risk Management

Ahold Delhaize Group is one of the world’s largest food retail groups and a leader in both supermarkets and e-Commerce. Its family of great local brands serves more than 50 million customers each week in Europe, the United States and Indonesia. Together, these brands employ more than 420,000 associates in more than 7,000 grocery and specialty stores. Our AD Group is based in Zaandam in the Netherlands, but AD Group associates also work in all the countries we serve.

This team supports all our great local brands in finance, HR, IT, legal, communications, sustainable retailing, and other key functions.

The position of Specialist II, Cyber Risk & Assurance is a position within the Group Cybersecurity organization and is a key component in supporting the group’s cybersecurity risk and assurance program using their skills to implement adequate and innovative security risk management processes and tooling to achieve satisfactory and mature cyber risk and assurance capabilities within Ahold Delhaize and its Brands.

This associate will support the execution of the cyber risk management framework and security assurance process initiatives across the organization. This position will assist in conduct of risk assessment, risk analysis, registration and reporting requirements by ensuring a culture of risk mindset across the organization . Initiatives this associate will support include support conduct of scenario-based risk assessments, ensuring that risks are registered, reported and monitored consistently.

The associate should support the security assurance program by monitoring & testing of security controls.

This position reports to the Head of Cyber risk and security assurance within the Cybersecurity Governance, Risk and Compliance team in the Group Cybersecurity Office

We’re Ahold Delhaize, one of the world’s largest food retail groups and a leader in both supermarkets and e-commerce. Together with our 19 strong local retail brands all over the world, we aim to make a meaningful difference in the lives of our customers, our people and the world around us. We offer a highly dynamic, international work environment in which our employees thrive.

The primary purpose of this position is to work with the Cyber Security GRC Risk & Assurance team to ensure that the groups’ needs are met. Support the delivery of the program for the Cyber risk and security assurance team on Group level by leading or supporting relevant initiatives of the security program and portfolio.

Your role is highly diverse and encompasses various responsibilities. Here are the key ones:
As Cyber Risk and Security assurance Specialist within our Group Cybersecurity Office (GCSO) team, you will:

• Carry out periodic cyber risk assessments within the Cyber security risk management framework
• Periodically monitor the threat landscape and vulnerabilities working closely with the relevant teams within the Group Cyber Security Office
• Ensure that risks are identified and registered appropriately through various source ingestions
• Act as a brand ambassador to bring risk-based mindset across the organization by organizing training and awareness
• Collaborate closely within the GCSO, IT and business teams in implementation of the framework
• Develop related metrics and dashboards to provide an overview of cyber risks
• Work closely with risk owners to monitor risks and ensure that risks are managed within the appetite
• Periodically test security controls to provide assurance

Aside from what we ask of you in this role, we also have a great deal to offer you: plenty of growth opportunities and various cross-brand career options; flexible working hours; a hybrid working model (we ask you to spend at least 50% of your working time at the office); and the chance to drive meaningful change on a global scale.

You can look forward to a good work-life balance, and the chance to work in an inclusive environment that wholeheartedly encourages growth and welcomes you just the way you are.

We think you’ll be best geared for success if you meet the following…