Utrecht, Netherlands

Educational Level:


Security Risk Consultant


You will be responsible for identifying information security risks at our clients and advising them on how to address these risks.

As Security Risk Consultant, you are an expert in supporting organizations in identifying their key information security risks. For the client, you will be the strategic partner in this area and engage in discussions about complex problems. After identifying the threats and risks, you compile your findings into a report. You present the report to the board of the organization. You provide insight into the gap between security and the customer’s business and advice on how to bridge this gap.

Your advice is the starting point for a pragmatic approach from our other business units. This allows you to really help your customers and work towards a higher maturity level. Your customers are mainly located in the Netherlands, but also in Germany and/or Belgium. The size varies from medium-small to large and international companies.

Within Northwave you are the specialist in the field of risk management. This means that you are in the lead to connect this service to the other technical and behavioral services within the organization. There are opportunities for growth in this towards setting up your own sub-team.


As Security Risk Consultant you will be part of the Security Advisory team. As a team we always strive for a pragmatic approach, where the advice is implemented in a workable solution. We avoid lengthy and bureaucratic documentation and focus on achieving the most optimal and pragmatic result possible. The team consists of Business Security Consultants who each have their own expertise. In addition, we work closely with the other teams within Northwave and always strive for an integrated approach.


  • Working together in an interdisciplinary team
  • Making an impact at your clients
  • Understanding (complex) organizations and their business models in a short period of time
  • Sharing your expertise


What we expect from you

  • At least 3 years of relevant work experience with information security management and assessments
  • Or CRISK certification
  • CISM/CISSP/CISA or related certifications are a plus but not required
  • Good command of the Dutch and English language (spoken and written)
  • A relevant HBO/WO education
  • Excellent communication, presentation and negotiation skills
  • Passion to further develop your field of expertise within Northwave

What you can expect from us

  • New Macbook, iPhone and mobility scheme to support flexible working
  • 25 vacation days
  • Good retirement arrangement
  • Company wide courses and individual training opportunities to further develop yourself
  • 200+ passionated colleagues to work with and learn from
  • Fun company events and parties, check our working at page here for an overview

Application process


After you applied, Emilie will give you a call to discuss what you are looking for in your next step.

1st interview

We are curious who you are and would like to tell you more about Northwave and this role. This meeting will be with Emilie and the manager.

2nd interview

We go further in depth and you will meet colleagues from the team. Hopefully you want to visit our office!

Job offer

The moment to say “I do!” Hopefully you are as enthusiastic as we are and come aboard as a new Northwaver!

Join us!

  • pand