Senior Security Manager Energy Trade

Details

Safeguard the digital infrastructure that enables Eneco’s energy trading activities in a highly regulated and business-critical environment. Operate at the intersection of cyber security, energy markets, and senior leadership with end-to-end responsibility for risk visibility and mitigation. Act as the primary cyber security counterpart for the Trade organisation and provide direct insight to the Management Board.

Responsibilities

• Own the identification, assessment, and mitigation of cyber security risks within the Energy Trade domain.
• Act as the primary security contact for the Trade organisation and build trusted senior stakeholder relationships.
• Translate project and platform risks into concrete security measures and track their implementation.
• Validate and oversee third-party risk assessments related to trading platforms and vendors.
• Ensure alignment with internal security standards and external regulatory requirements.
• Provide clear, transparent reporting on the security posture of the trading environment to senior management and the Management Board.
• Help shape how cyber security is embedded in trading operations, balancing risk management, regulatory compliance, and business continuity.

Requirements

• Bachelor’s degree or equivalent level of thinking in Information Systems, Cybersecurity, IT Audit, or a related field.
• Extensive experience (typically 10+ years) in IT security, IT risk management, or comparable security roles.
• Strong track record in senior stakeholder management, security consultancy, and executive-level reporting.
• Proven experience translating regulations and frameworks into actionable security controls and monitoring practices.
• Broad knowledge of security domains and standards (e.g., ISO 270xx, NIS2, CIS, Zero Trust, SSDLC).
• Experience working with external regulators or supervisors (e.g., RDI, BSI, BNetzA, DNB, AFM, or similar).
• Excellent analytical, organisational, and communication skills.
• Relevant professional certifications (e.g., CISSP, CISM, CISA, CRISC) are considered a strong plus.
• Comfortable operating in high-pressure, business-critical environments and translating technical/regulatory topics for decision-makers.
• Experience working in or supporting energy trading or other fast-moving regulated commercial domains is advantageous.

Where you’ll work / Team

You will join the IT Security, Risk & Compliance team within Eneco’s Tech organisation. This first-line security team supports Eneco’s value chains and verticals in identifying and mitigating cyber security risks and ensuring compliance with internal and external regulations. You will work closely with colleagues across Tech and the Trade organisation in a hybrid setup, combining collaboration at the Rotterdam HQ with flexible remote working.

Benefits

• Gross annual salary between €88.000 and €125.000 (including FlexBudget and 8% holiday allowance; depending on role a bonus or collective profit sharing).
• FlexBudget (can be paid out, used to buy extra holiday days, or saved).
• Personal and professional growth support and development opportunities.
• Hybrid working: 40% at the office, 40% from home, and 20% flexibly. With manager approval, you may work abroad (within approved countries) up to 3 weeks/year, max 2 consecutively.
• Work in a mature, professional security organisation with direct exposure to senior leadership and impactful responsibilities in a regulated energy trading environment.

Additional information

• This role reports into the IT Security, Risk & Compliance organisation and acts as the primary cyber security counterpart for Eneco’s Trade organisation.
• The role requires strong regulatory awareness (NIS2 and other applicable frameworks) and experience with security standards and third-party risk management.