top of page

Professional Summary

I am a Cyber Security Specialist and Information Security Officer with over twenty years of experience in IT and a strong focus on information security. I hold CISSP, CISM and GIAC SANS certifications and combine deep technical expertise with strategic insight. I am currently working as an Information Security Officer at ASN Bank, where I am responsible for identifying, analysing and mitigating information security risks within the DORA programme, and translating regulatory requirements into effective policies and demonstrable key controls.

 

In previous assignments, I have helped organisations across various sectors — including financial services, retail and construction — to strengthen their security maturity. From establishing and improving security operations and vulnerability management, to guiding ISO27001 certification, performing security assessments, implementing security tooling and coordinating incident response: I ensure a secure, controlled and future-proof IT environment.

 

With my years of experience, I remain calm under pressure and know how to set the right priorities quickly. I work accurately, structured and in accordance with recognised standards, and I am used to operating in environments with high confidentiality. Clients consistently report feeling relieved and supported, as I take ownership, bring expertise and guide them towards the desired outcome.

 

My strength lies in combining governance, risk analysis and technical security knowledge. I am available for roles such as Information Security Officer, Security Engineer, Security Consultant or Security Analyst within security and risk teams.​

Contact me for a full detail CV.

Work Experience

11-2024 - present

Information Security Officer

In the role of Information Security Officer within the DORA programme, I am responsible for implementing and strengthening the organisation’s information security policy, from IT to Procurement. The focus is on translating DORA requirements, laws and regulations into actionable policies and concrete security measures.

09-2023 - present

Cyber Security Specialist

As a Cyber Security Specialist in a SecOps team of four members, I am responsible for the digital security of the IT infrastructure in an Agile environment. I address security findings from internal and external audits, third party risk assessments and other security related activities. My work involves inventorying and developing procedures for Identity and Access Management (IAM) and collaborating with Business Control and Audit & Risk teams to evaluate audit findings. I am also preparing the organization for NIS2 by translating requirements into security measures, conducting risk analyses, and ensuring coordination with various department

01-2023 - 08-2023

Senior Security Engineer

In my capacity as a senior security engineer, I held the pivotal role of ensuring the currency of the IT security landscape. Alongside this, I undertook the assessment of secure configurations, offering pertinent recommendations to the IT organization. During my assignment the organization diligently pursued ISO 27001 certification. In this regard, I oversaw the requisite security processes and coordinated efforts within the security team. Moreover, I leveraged my knowledge and experience to augment the security maturity level within both the team and the organization at large. The team works in an Agile environment.

2022 - 01-2023

Advisor Safe Banking

Veilig Bankieren

Responsible on a tactical and strategic level to enable customers to bank securely. In an advisory role to strengthen the broad resilience of the organisation and its customers. Focus areas in this position were customer awareness, token and authentication, project management Proof of Value fraud detection tooling. The team works in an Agile environment.

Assignment Veilig Bankieren: Projectmanager Fraud Tool Proof of Value

As project manager I was responsible for assessing the contract value of a implemented fraud detection tool.

2018 - 2022

Cyber Security Engineer

Cyber Defense Center

The Cyber Defense Center brings together expertise in cyber defense and aims to increase the (bank) organization's cyber resilience by focusing on prevention, detection and response. As a security engineer I was responsible for the digital security of the infrastructure of the organisation (de Volksbank) . The department worked in an Agile environment.

Security Monitoring SOC: As a security analyst I was responsible for a TIER 1 and 2 analysis of security alerts. 

Assignment selection and implementation security tooling: Project coordination of selection and implementation of a Network Threat Analytics and Vulnerability Management tool. 

Assignment Compliance/key controls: Responsible for setting up actions for automating and executing Key Controls. This ensures safe and reliable business operations and the demonstrable management of various risks. 

2015 - 2018

Tactical Administrator
Workplace Services

In this position I was responsible on a tactical level for a stable workplace infrastructure in an enterprise environment of more than 5000 workplaces. Focus areas in this position included suppliers & contract management. Service Asset (license) Management and project management in the field of ALM and LCM projects (phasing out and renewing the application landscape, OS upgrade)

Assignment Windows 10 upgrade, Life Cycle Management Projectmanager: Upgrade from Windows 7 to Windows 10. As a project manager I setup and executed the project plan with a team of Service Desk IT employees, application scripters and support teams for design and delivery. 

Assignment sub-projectmanager selection E-mail security tool: For the selection of an E-mail security tool I was a sub-project manager. 

2010 - 2014

Teamlead
Workplace Support

Worked as a team manager of location Den Bosch. Direct management and coaching team of 3 FTE and management/coordination of external suppliers. I have also been working on optimizing the ITIL Configuration Management process. The department worked in a LEAN environment.

2005 - 2010

Teamlead
Servicedesk IT

As a team manager responsible for the direct management and coaching of a team of 8 FTE. Optimizing the ITIL Incident Management process and coordination with priority high incidents.

2001 - 2004

Servicedesk IT Support Engineer

Servicedesk IT

Service Desk IT support engineer on a skilled Service Desk IT. End-user support of an internal organization of approximately 2500 end-users. 1st & 2nd line analysis in accordance with ITIL Incident Management process.

​

Contact me for a full detail CV.

Education

2015

Bachelor of ICT,

Business IT & Management
Hogeschool NCOI

2000

MBO, Network Administrator

Horizon College

1999

Information Systems Administrator
Horizon College

Certifications

CISSP-logo-stacked.png
ISC2 member id: 705901
GCED.png
GIAC member id: 3893
CISM.png
security-compliance-and-identity-fundamentals-600x600.png
psm1.png
prince2.png
prince2foundation.png
CBSE.webp
Candidate id: P2R/NLPB201964
ITIL foundation.png
Certificate number:  885079.693079
InsightVM_Adminstrator.png

© 2023 by Rob Gouw

CoC: 90688805

bottom of page