Cyber Security Consultant – M&A – Global – Leiden

  • Leiden Global

The most trusted digital enabler is a leading digital enabler for companies and entrepreneurs. It serves over 3.3 million customers in Europe and has more than 2000 experts to support them. Its goal is to shape technology and to empower businesses with innovative digital services.

Click here to read more about

Our Business is an ecosystem of successful brands working together across regions to provide customers with everything they need to succeed online. 40+ successful brands make up the group; within those brands, over 2000 experts serve its 2.5+ million customers across Europe and beyond.’s brands are a mix of traditional hosting businesses, offering services from domain names, email, shared hosting, e-commerce and server hosting solutions and specialist SaaS providers offering adjacent products such as compliance, marketing tools and team collaboration products. This broad product offering makes it a one-stop partner for online businesses and entrepreneurs across Europe.

Your objectives is to ensure that in our current and future mergers and acquisitions we identify and manage risks through the assessments of our M&A target security controls.

Your responsibilities

•Conduct cybersecurity due diligence and communicate identified risks
•Track and follow up on identified remediations
•Based on identified remediations you will to some extend advice the companies on remediating your findings from due diligence conducted.
•Help build and maintain the “ Information Security Standards”
•Continuously improve the processes around M&A cyber information security due diligence
•Manage third-party providers who provide cyber security assessments on large acquisitions
•Together with the rest of Group Security build template policies, procedures and guides to help less mature companies to mature their information security systems

Your skillset
You should have a solid background in technical security or experience in IT audit/compliance. The ability to evaluate implemented security measures is more critical than expertise in conducting due diligence on a target.

•We expect you to have 5+ years of experience within information security or technology with an emphasis on security controls.
•Good English skills both verbal and written
•Good at communicating risks to both technical teams, management and senior stakeholders.
•Good collaboration skills as you will be working with many different stakeholders
•Broad knowledge of cybersecurity controls
•Broad knowledge of security standards such as ISO 27001, CIS Critical Controls
•Knowledge of GDPR regarding relevant technical security measures

It is a plus if you
•Have knowledge of NIS, HIPAA, PCI DSS and similar regulations and standards
•Certification in CISSP, ISO 27001 Implementer/auditor, CISM, CRISC or similar
•Can communicate in several European languages.

Working environment
You will be working closely with the Group CISO and the rest of the Technology organisation, working alongside the M&A Project Implementation managers and wider M&A Team. You will also be part of Group Security which consists of 12 colleagues working within information security in
You can work from one of our offices (see locations list in the bottom), fully remote or in a hybrid setup. The job does not require travel besides from the occasional team or company event.

3 reasons to apply for this job
• The opportunity to use your broad knowledge of information security and technology
• Working in an international environment
• Flexible working environment

Right to work

At any stage please be prepared to provide proof of eligibility to work in the European country you are applying for.

Unfortunately, we are unable to support Sponsorship Visas.

“Come as you are”

Everyone is welcome here. Diversity & Inclusion are at our core. Far above any technical competence, we value respect, openness, and trusted collaboration. We do not tolerate intolerance.

Lees hier meer

Deel deze vacature: