This website uses cookies to ensure you get the best experience on our website.

Medline Europe and selected partners use cookies and similar technologies to ensure you get the best experience on this website. If you consent to it, we will use cookies for analytics and marketing purposes.

See our Cookie Policy to read more about the cookies we set.

You can withdraw and manage your consent at any time, by clicking "Manage cookies" at the bottom of each website page.

Select which cookies you accept

On this site, we always set cookies that are strictly necessary, meaning they are necessary for the site to function properly.

If you consent to it, we will also set other types of cookies. You can provide or withdraw your consent to the different types of cookies using the toggles below. You can change or withdraw your consent at any time, by clicking the link “Manage Cookies”, which is always available at the bottom of the site.

To learn more about what the different types of cookies do, how your data is used when they are set etc, see our Cookie Policy.

These cookies are necessary to make the site work properly, and are always set when you visit the site.

Vendors Teamtailor

These cookies collect information to help us understand how the site is being used.

Vendors Teamtailor

These cookies are used to make advertising messages more relevant to you. In some cases, they also deliver additional functions on the site.

Vendors Meta
Medline Europe career site
IT · Kleve, Arnhem · Hybrid Remote

IT Controls & Risk Analyst (m/f/d)

With 34,000 employees worldwide, Medline is one of the leading companies in the healthcare sector. Our customers include not only leading hospitals, but also many medical supply stores, pharmacies and distributors. We offer a comprehensive range of products: from gloves to essentials for the operating theatre, as well as services to sustainably improve patient care and enhance the quality of people’s lives. Would you like to join us on this journey?

For our location in Kleve or Arnhem we are looking for an


IT Controls & Risk Analyst
(m/f/d)

The IT Controls and Risk Analyst will ensure controls are operating effectively after implementation, and remediation plans are developed and tracked to completion. This individual will also review new and existing applications against information protection controls.


How can you help us?

  • Design and implement new IT controls.
  • Define specific control expectations of technology owners related to information integrity, confidentiality, and availability.
  • Design standardized approaches, standards, and templates to support control owners in executing IT controls.
  • Drive consistency in control execution across the IT organization.
  • Provide formal and informal coaching and training to control owners on how best to operate and evidence control execution.
  • Monitor implementation of control requirements for key applications and develop a program for monitoring adherence to control requirements on a periodic basis.
  • Define and execute reviews to ensure new and existing applications adhere to defined control requirements.
  • Maintain a risk register to manage control non-compliance and remediation efforts.
  • Centrally maintain documentation related to the IT controls program (e.g., Risk and Controls Matrix, IT process narratives, policies and procedures, evidence of control execution).
  • Map defined controls set to applicable control frameworks (e.g., NIST CSF, GDPR, Zero Trust Architecture, etc.) and identify additional controls to fill gaps.
  • Identify opportunities to leverage controls automation and perform continuous monitoring.
  • Administer and configure tools, as needed, used in the execution of IT controls program activities (e.g., GRC tools, document repositories).
  • Define and measure success metrics and monitor change progress (i.e. control owner adoption) against established program targets for reporting to leadership.
  • Promote a culture in which control owners recognize their responsibilities and the value in executing the expected IT controls.


Are you our match?

  • Bachelor’s Degree in Information Technology, Information Security, Risk Management, Business, Accounting, or related field, or equivalent work experience.
  • Work Experience
    • At least 2 years of professional experience in IT controls, information technology, risk management, information security, audit, privacy or related field.
    • Experience specifically includes:
    • Defining and designing new IT controls expectations
    • Deploying new control expectations across a large enterprise
    • Testing the operating effectiveness of IT controls
    • Identifying IT control gaps, developing remediation plans, and tracking issues to resolution
  • Knowledge / Skills / Abilities
    • In-depth understanding of IT General Controls (i.e., Change management, Access, IT Operations) and application information protection controls (i.e., authentication, encryption, vulnerability management).
    • Familiar with the NIST Cybersecurity framework and other industry control frameworks.
    • Strong written and verbal skills, including a demonstrated ability to translate complex or technical information into concepts that are easily understood.
    • Proven ability to effectively interact with and influence cross-functional teams and partners.
    • Experience creating training content and delivering training (e.g., live, recorded).
    • Ability to maintain effective stakeholder relationships and promote internal controls and control awareness throughout the corporation.
    • Strong analytical, problem solving, and critical thinking skills, including the ability to anticipate issues and to design appropriate solutions.
    • Detail and deadline oriented, and able to work with limited supervision.
    • Experience using and/or configuring GRC tools.
    • Experience with privacy regulations (e.g., GDPR, HIPAA, CCPA) and associated information handling controls.
    • Proficient with Microsoft Office Suite (Word, Excel, PowerPoint, SharePoint, Visio).
  • Certifications
    • CISA, CISSP, CIA, CPA, CRISC, CISM


We have everything covered - Kleve location:

  • A comprehensive onboarding program with experienced colleagues.
  • A community of enthusiastic Medline colleagues to work and grow with.
  • Individualized solutions for flexible working to increase your productivity and find the right work/life balance.
  • 30 days of vacation.
  • Modern workplace – the building was designed inspired by employee requests.
  • Fresh fruit, coffee flat rate, discounted lunch, so that your physical well-being is taken care of.


Ready to join forces with a game-changing employer? We would love to hear from you!

Medline is committed to reducing our carbon footprint, developing responsible products, supporting our employees and local communities, and promoting high ethical standards internally and among our supplier partners. Click here to discover what Medline is doing to make healthcare more sustainable for people and the planet.


Department
IT
Locations
Kleve, Arnhem
Remote status
Hybrid Remote

Our Medline Success Factors

Do you recognise yourself in these factors? Then Medline might be a great place for you to work! We believe that the way in which people approach their work, collaborate with their colleagues and fulfil the needs of our customers are just as important as their technical and professional skills, and play a big role in professional and personal success.

IT · Kleve, Arnhem · Hybrid Remote

IT Controls & Risk Analyst (m/f/d)

Loading application form