Department:  

Sappi’s Information Technology (IT) team is driving operational excellence, security resilience and digital innovation at scale across all diverse businesses.  Covering all aspects from IT strategy, people, process, solution and governance, the team enables Sappi to streamline operations, enhance customer experience and maximize the productivity and engagement of employees through state of the art technologies to ensure all divisions are fit for a long term sustainable and thriving future. 

Sappi’s cybersecurity team is a global, dynamic team consisting of around 10 dedicated professionals who are at the forefront of safeguarding our organization against digital threats. Leveraging modern technology for threat detection and response, cyber awareness, mail, and vulnerability management, we stay proactive in defending our digital infrastructure. Collaborating closely with professional partners, including our external 24/7 SOC, we ensure a comprehensive approach to cybersecurity that keeps pace with evolving threats. 

Role and responsibilities:  

You will be responsible for: 

• Informing Sappi's security strategy for stronger defenses. 

• Assessing and mitigate security vulnerabilities, guiding regional teams. 

• Driving regional security education, ensuring timely training completion. 

• Conducting vulnerability audits and risk assessments, serving as regional security expert. 

• Recommending and applying fixes, patches, and disaster recovery in case of breaches. 

• Ensuring Governance, Risk & Compliance assurance with Global GRC manager. 

• Assessing and communicating security risks with internal and external practices. 

In this role you will report to the Global Manager Cyber Security (based in Maastricht).  

Requirements: 

• Minimum 5 years hands-on cybersecurity experience, including 3 years leading security initiatives in medium to large enterprises. 

• Degree or relevant qualification in IT/Computing (or equivalent enterprise experience), with desirable certifications such as CISSP, CISM, SANS, or OSCP. 

• Strong team player. 

• Excellent English communication skills (verbal and written). 

• Ability to communicate technical concepts to divers audiences 

Good to have:

• Knowledge of Dutch, German and/or French..  

• Experience with standards and best practices such as NIST, ISO27001, POPIA, GDPR. 

• Extensive hands-on experience in vulnerability management, cyber awareness programs, and/or third-party risk assessments.  

Traveling:  

It is expected to have some traveling (up to 10%) to the locations of group.   

What we offer you: 

• Exposure to a diverse range of cutting-edge technologies, providing an intellectually stimulating environment for professional growth and skill development. 

• Opportunities to make a meaningful impact and contribute to Sappi’s security posture 

• An excellent opportunity to work, learn & grow with us. With our culture of learning & development, you can access thousands of online trainings  

• A multi-cultural & international environment to share and collaborate with colleagues from more than 68 nationalities in 31 locations globally.  

• A unique opportunity to join a global wood fibre solution company. We are constantly innovating toward a circular economy working to achieve our sustainability goals & reduce our carbon footprint. 

All qualified applicants will be considered for employment, regardless of their race, religion, color, national origin, gender, sexual orientation, gender identity or expression, age, marital status, pregnancy, neurodiversity, disability, or any other aspect that makes them unique.