Share this Job

Senior GRC Manager - Amsterdam/Dublin

Amsterdam, NH, NL, 1083 HL


Country: Netherlands 
City: Amsterdam
Req ID: 475940


About CRH

We are CRH, and we are committed to contributing to a more resilient and sustainable built environment. We understand the wider impact our businesses can make in supporting human activity. We continue to do this through the delivery of unique, superior building materials and products for use in road and critical utility infrastructure, commercial building projects and outdoor living solutions.


CRH is the leading provider of building materials solutions that build, connect and improve our world. Employing c.75,800 people at c.3,160 locations in 29 countries, CRH has market leadership positions in both North America and in Europe.


Without you noticing our products, we are everywhere you live, work, and relax.


Our project portfolio includes some of the most sustainable and cutting-edge building projects around the world. Think of the asphalt on the Silverstone Grand Prix Circuit, the Paris Metro Rail project, but also the Louis Vuitton Museum in Paris, parts of the Burj Khalifa, and the Kennedy Space Centre.


Learn more about us through the following Link.


Position Overview 

CRH is looking for a Senior GRC Manager. The Senior GRC Manager is fundamental in ensuring to minimise the risk for CRH, both monetary and reputational, due to potential cyber security threats. By ensuring successfully assessing and documenting CRH’s European-wide IT Security compliance topics.


This is a pivotal role as it requires daily engagements between GIS (Group Information Security), OpCos (Operating Companies), Europe IT, Europe IT Security and vendors who are supporting our security systems. Successful person will act in a central role ensuring all IT Security related activities and deliverables are of an agreed standard and compliant with agreed policies and procedures. The role requires someone who can influence decisions and stakeholders.


Key Tasks and Responsibilities

In this role you will:

  • Be responsible for creating independence in matters relating to the investigation, impact, and analysis of security incidents, decisions regarding risk, and measures for computer and network security
  • Lead the development and implementation of the system-wide risk management function of the information security program to ensure information security risks are identified and monitored
  • Be developing and implementing effective and reasonable policies and practices to secure protected and sensitive data and ensure information security and compliance with GIS security guidelines and policies
  • Be responsible for working closely with Internal Audit, and outside auditors / consultants as appropriate on required security assessments and audits
  • Ensure compliance with controls and outcomes as defined by the chosen frameworks
  • Be responsible for collecting and validation of control evidence
  • Be responsible for maintain documentation and managing evidence
  • Limited travel (10-20%) is expected in this role.


Key Functional Competencies and Relevant Experience

You have/are capable of:

  • Detailed understanding of Information Security and standards such as ISO 27001:2013, NIST, CIS, SANS, CSA
  • Good knowledge on Application & Infrastructure operations including ITSM
  • Knowledge of regulatory compliances such as SOX, PCI etc
  • Good knowledge of Risk Management and Control Auditing principles
  • Knowledge of Data Privacy Requirements and Cyber Laws across countries 
  • Technical knowledge of security principles around Network Security, Perimeter Security, Data Security, End User System Security etc.


Your Education and Experience

You have/are:

  • Third Level qualification (or equivalent) in Information Technology, Information Security or Engineering.
  • Minimum 10 years ITIL-based Service Management in a business-to-business environment
  • At least 5 years of experience Audit, Risk and/or Compliance
  • At least 8 years of system, network and/or application security experience  
  • Fluency in both speaking and writing English



What CRH Offers You

  • A culture that values opportunity for growth, development, and internal promotion

  • Highly competitive salary package

  • Comprehensive secondary benefits

  • Significant contribution to your pension plan

  • Health and wellness programs, including an on-site gym and fitness classes

  • Excellent opportunities to develop and progress with a global organization

Connect your future to CRH

We are curious to learn more about you. At CRH, we believe our mutual differences contribute to the healthy, productive, and enjoyable workspace we create. Please introduce yourself and apply for this great opportunity.


Is this role not for you, but do you know someone who is a perfect fit? Please let us know:

CRH is an equal opportunity employer. We are committed to creating an inclusive work environment for all employees and actively encourage applications from all sectors of the community.


Benefits/perks listed above may vary depending on the nature of the employment with CRH and the country where you work.


Please note that we cannot accept any applications submitted through email for GDPR purposes. Candidates must apply through our job portal.


We do not accept candidate introductions for this position from recruitment agencies, unless you have been instructed to do so by our recruitment team.


Date:  25-May-2023

Job Segment: Information Security, Geology, GIS, Network, Manager, Technology, Engineering, Management