You are here: Home > About Us > Staff > Careers at the RIPE NCC

Risk & Compliance Manager

Apply Now

Do you want to work at the heart of the Internet and take the lead on our Risk and Compliance activities? Do you have proven experience in these areas, and are you able to contribute to a risk management culture based on trustworthiness, openness, inclusiveness and care in the RIPE NCC?

As the Risk & Compliance Manager you will be managing all aspects of the Enterprise Risk Management lifecycle, enabling the organisation to understand and operate within the desired risk appetite. At the same time, you will be formalising and executing a compliance roadmap utilising industry known compliance frameworks. Your communication skills and stakeholder management will effectively be contributing to a good understanding in the whole organisation of the importance of Risk and Compliance, and inspiring your colleagues to contribute to this purpose.

Risk & Compliance Manager

Location: Amsterdam 

37.5 hours per week

As our Risk & Compliance Manager, you will report to the Chief Information Security Officer and be the lead expert in Risk and Compliance. Your role is to set up, manage and improve the Information Security Management System (ISMS) and establish a common risk management methodology across the whole organisation. Compliance is essential for the integrity of the RIPE NCC’s registry of IP addresses and Autonomous System Numbers, and the RPKI trust anchor. You will lead the process of a mindset change where Risk and Compliance are integrated into everyday business. This will require a proactive, coaching and change focused leadership style. 

 

In this role, you will be responsible for: 

  • Establishing and maintaining the Information Security Management System (ISMS)

  • Maintaining and optimising the Enterprise Risk Management Framework and formalising the methodology for the Enterprise Risk Management cycle

  • Being a trusted advisor to Senior Leadership on risk management following a data driven approach

  • Defining and executing a company wide compliance roadmap and shaping an integrated control framework to demonstrate continuous compliance against industry standards 

  • Assisting in internal and external audit and assurance activities

  • Assisting in the development and implementation of Business Continuity Planning and testing

  • Working together with other departments to increase their awareness regarding Risk & Compliance.

 

What we expect from you:

  • Minimum six years of experience in Information Security, Risk and Compliance in the Internet or IT/Technology sector

  • MSc in Information Security or equivalent

  • Relevant certifications such as CISM, CISA, CRISC, ISO 27001 lead auditor/implementor or similar

  • Experience with Governance, Risk & Compliance (GRC) tooling

  • Strategic and managerial skills, capable of creating, implementing and communicating a vision, both internally and externally 

  • Advise, inspire and influence your colleagues on Information Security, Compliance and Risk 

  • Demonstrable experience in a coaching leadership style. Able to provide guidance, mentoring and context to team members

  • Excellent presentation and influencing skills 

  • Fluency in English

  • Working well under pressure 

  • Proactive, independent and assertive approach

  • Handling conflicts effectively

  • High personal standards of excellence combined with a reputation for having the highest ethical and integrity standards 

  • Experience with innovative self-management organisational structures. 

 

What you can expect from us: 

  • An opportunity to play a significant role in shaping the future of the Internet in a highly motivated and engaged organisation

  • A modern, flexible, friendly and informal work environment with an emphasis on a healthy work/life balance

  • A market competitive salary, up to €110K (annual, before tax) depending on the years of relevant experience. This includes the standard 8% annual “holiday pay” and a 5% end-of-year allowance

  • Excellent secondary benefits: including relocation, a non-contributory pension scheme, 26-weeks paid parental leave, top-tier health insurance coverage for you and your family, 30 vacation days (full-time) and additional annual budgets for transportation, health, and technology purposes

  • An annual generous training allowance for your professional development

 

About the RIPE NCC

The RIPE NCC is a not-for-profit membership organisation founded on the belief that the Internet should be governed openly, transparently, and together with the wider Internet community. We are one of the oldest Internet organisations in Europe and are proud of our legacy. 

As the Regional Internet Registry (RIR) for Europe, the Middle East and parts of Central Asia and Russia, the RIPE NCC provides Internet number resources, such as IPv4 and IPv6 address space and Autonomous System Numbers (ASNs) to its members (ISPs, governments, universities, etc.). It also offers other information services related to the technical coordination of the Internet. Our strongest asset is our staff. We bring together more than 170 people from more than 40 countries in our modern, vibrant office in the east wing of Amsterdam Central Station. We also have an office located in Dubai, where four of our colleagues are located. 

Our official working language is English, but our colleagues speak more than 30 languages. Our backgrounds are diverse, but our goal is the same: work for the good of the Internet. And we are now working collaboratively with our staff to transform our company culture to facilitate our evolution into the future. Do you want to join us on this journey? 

 

How to apply

Hagoort & Partners / IRC Netherlands supports the RIPE NCC in the search and selection of candidates for this position. Patrick Westerburger is the contact person. If you are interested in this position, you can send your English CV/resume and motivation letter to [email protected]

A pre-employment screening (done by Validata) and an assessment will be part of the selection process. 

Apply Now