Minimum 5 years' experience in information security and/or privacy Information security Demonstrable knowledge and experience of current information security laws and regulations

At least 3 years' experience within central government

Experience with government projects or directing work within central government: Having previous experience working on projects within government, preferably focused on cybersecurity, IT implementations, or regulatory compliance is necessary or forms of policy 5 years

Sectoral knowledge: Understanding the specific challenges, needs and operational processes within the public sector, especially within the ministries of EZ/KGG and LVVN 3 years

1. Legal knowledge: A good understanding of relevant laws and regulations related to cybersecurity and data protection, both at national and European level, is valuable. This includes knowledge of privacy legislation such as the General Data Protection Regulation (GDPR) and relevant national laws

2. Technical skills: While the consultant need not be an in-depth technical expert, a basic understanding of IT systems, networks, and security technologies is useful to communicate effectively with technical teams and understand the technical aspects of implementation

3. Risk management: Knowledge of risk management principles and methodologies is crucial for identifying, evaluating and managing cybersecurity risks within the organisation. This includes the ability to conduct risk assessments, develop risk treatment plans and promote risk awareness