Hellevoetsluis, South Holland, Netherlands
I position myself as an expert, translator and connector at the intersection of information security, governance and organizational practice. I help organizations translate complex standards and legal obligations into practical, risk-based measures that align with their context, maturity and day-to-day reality. My approach is consistent and verifiable: design, implementation and effectiveness. Not just audit-proof on paper, but demonstrably effective in practice. To me, security and compliance are not goals in themselves, but means to make organizations predictable, reliable and controllable. I am comfortable operating in large and complex environments (15,000+ FTE), particularly within healthcare and government sectors. I move seamlessly between strategic, tactical and operational levels, connecting boards, executives, management and operations — each in their own language — while aligning them towards a common objective. As an accredited Lead Auditor, I bring in-depth and up-to-date knowledge of frameworks such as ISO/IEC 27001/27002, NEN 7510, BIO, NIS2, ABDO and ABRO 2026. What sets me apart is my ability to combine audit expertise with strong organizational insight: I understand not only what auditors expect, but more importantly what organizations need to achieve sustainable control and compliance. My added value lies in connecting standards, risks and practice. This creates clarity, trust and a culture in which information security is truly embedded — from boardroom to shop floor. I actively translate this expertise into practical engagement: supporting organizations in assessment, guidance, implementation and training. Whether it concerns building governance structures, achieving compliance, or strengthening security awareness, I ensure that ambitions are converted into tangible and lasting results.
Sometimes there comes a moment when you want to use your experience and time in a different way. After completing the onboarding process, I look forward to starting as a volunteer at Stichting Ambulance Wens. An organization that makes thousands of final wishes come true each year and provides something truly invaluable for patients and their loved ones. With great respect for the dedication of all its volunteers, I feel honored to soon contribute to this remarkable initiative. After a career focused on supporting organizations in the areas of information security, governance, and change management, I now look forward to contributing in a different way: closer to people, with care, involvement, and compassion. I’m looking forward to this new chapter. #StichtingAmbulanceWens #Volunteering #SocialImpact #Gratitude
Lead Auditor ISO27001/NEN7510 speciality ARBO (Healthcare workplaces employees) Netherlands.
Information security in project management is a critical prerequisite for achieving strategic project objectives. Therefore, the organization invests in ensuring reliable, transparent, and secure services for its stakeholders and in maintaining digital resilience. The organization’s information systems are exposed to a wide range of threats, whether intentional or accidental. These threats necessitate targeted measures to mitigate risks and to ensure that information security within the project environment is aligned with the required Security high classified level (TBB 4). My role is to advise and implement the IBRO/ABRO security requirements of the Business executive.
Providing advisory support to the CISO in transforming legacy frameworks (ISO/IEC 27001:2013/2017 and NEN 7510 for the social domain) to the updated ISO/IEC 27001:2022 standard, including the design and implementation of an Information Security Management System (ISMS). All activities are aligned with applicable laws and current regulations (such as NIS2). Within the Annex of these standards, operational technology (OT) is included as part of the control framework, covering: • Organizational controls: 5.1 to 5.37 • People controls: 6.1 to 6.9 • Physical controls: 7.1 to 7.14 • Technological controls: 8.1 to 8.34 All activities are conducted in alignment with ENSIA and RECOURCE requirements.