Jeffrey de Bruijn Director
Personal quote / vision
"Success is not about the outcome, it's about what you learn on your way to it." This quote by Vera Wang is also very applicable to setting up adequate security for your information and data. It requires continuous effort, never reaching a point where your security is ready. I am happy to assist you in continuously improving security, from people to technology, against the ever increasing and changing digital threats.
Specialist experience
- All round information security (CISM) and privacy(CIPP/E CIPM) expert
- Setting up GRC processes for information security and privacy
- ISO 27001 / NEN 7510 certification processes
- Risk management for information security
- Data Protection Impact Assessment (DPIA) implementation (including within healthcare)
- Security Control Framework implementations.
- Meeting compliance requirements (including DNB Good Practice for Information Security)
- Filling a temporary (C)ISO role
- Shaping Security & Privacy strategy, policies and roadmaps
- Act as a sounding board for management
- Specific sector knowledge of financial services (Pension sector, Banks, Insurers, Private Equity), (local) government, transport & logistics and healthcare
Specific customer experience
- (Corporate) Information Security Officer a.i. at various organizations
- GDPR implementation and security incident process improvements at various multinationals
- ENSIA reporting and BIO implementation for various municipalities
- Security policy and roadmap development for various municipalities
- ISO 27001 / NEN 7510 certification support at various organizations
- Data Privacy Impact Assessments performed within the healthcare sector
Education and work experience
- 2000 - 2005 | Utrecht University | PhD in Information Science
- 2005 - 2009 | Utrecht University | Master in Law and Enterprise
- 2006 - 2008 | Fortis ASR | Consultant Information Security
- 2009 - 2010 | ABN AMRO Bank N.V. | Business Analyst Markets NL
- 2010 - 2016 | Power of 4 B.V. | Consultant Cybersecurity & Privacy
- 2013 | ISACA | CISM
- 2016 - 2022 | BDO Netherlands | Senior Manager Cybersecurity & Privacy
- 2018 & 2020 | IAPP | CIPP/E and CIPM
- 2022 - 2024| Mazars | Director Cybersecurity & Privacy
- 2024 - present | Forvis Mazars | Director Cybersecurity & Privacy
Additional positions
- Reviewing graduation theses as a committee member at the Juridische Hogeschool Avans & Fontys
- Regular speaker