// identity.md

about

📍 Geldrop, Noord-Brabant, NL

🏢 ACA IT-Solutions BV

✉️ info@cybershapers.io

🐙 github.com/jlok94

💼 linkedin.com/in/jordylok

// certifications

ISC2 CISSP ISC2 CCSP ISO/IEC 27001:2022 Lead Auditor Architecting on AWS EC-Council C|CISO

Jordy Lok

// Information Security Officer · Cybersecurity Consultant · CISSP · CCSP · C|CISO · ISO 27001 LA

I'm a driven Information Security Officer & Cybersecurity Consultant with 10+ years in IT, experienced in strategy, governance and hands-on technical delivery. I translate C-level risk and compliance priorities into measurable technical outcomes and executable roadmaps — equally comfortable in boardrooms and in the cloud console.

My background spans ISO 27001 / NIS2 security governance, cloud architecture (AWS), penetration testing, incident response, DevSecOps and secure design. I hold CISSP, CCSP and C|CISO certifications and keep my technical skills sharp through continuous labs, assessments and practical open-source projects.

Currently at ACA IT-Solutions BV as Cybersecurity Consultant, with active interim engagements as CISO at KLG Europe and Privacy & Security Officer at Wooninc. I'm looking for hybrid roles combining C-level advisory with hands-on technical delivery — technical CISO, Chief Security Architect, or senior principal consultant positions.

// specialisations

Security Strategy & Governance

ISO 27001 / NIS2 / Compliance

Cloud Security (AWS / CCSP)

Identity & Access Management

Incident Response / DFIR

Penetration Testing

DevSecOps

Terraform / Infrastructure as Code

Python / Bash Automation

Strategic Leadership

// experience

Cybersecurity Consultant & Compliance Officer

ACA IT-Solutions BV · Eindhoven

Apr 2024 — Present

Advising enterprises, government and healthcare organisations on cybersecurity posture and ISO/NIS2 alignment. Conducting security audits, penetration tests, and interim security officer engagements. Active roles: interim CISO at KLG Europe and Privacy & Security Officer at Wooninc.

ISO 27001 NIS2 CIS Controls Pen Testing Risk Management Bug Bounty

Cyber Security Lead

APS Group · Eindhoven

Dec 2023 — Mar 2024

Led security posture improvement across the organisation. Championed DevSecOps culture, managed vendor security relationships, directed security testing and oversaw secure procurement and change management processes.

DevSecOps Vendor Management Compliance Automation

Platform Engineer (Security)

APS Group · Eindhoven

Jul 2020 — Mar 2024

Built a secure, scalable cloud-first platform. Automated infrastructure with Terraform, developed CI/CD pipelines with Jenkins and GitLab, managed containerised workloads with Kubernetes and enforced AWS security best practices across EC2, S3, RDS, Lambda and VPC.

Terraform AWS Kubernetes Docker Ansible Python

IT Infrastructure Engineer

Osudio · Eindhoven / Amsterdam

Mar 2018 — Jun 2020

Managed Windows/Linux servers, CI/CD pipelines (Nexus, Sonar, GitLab), Kubernetes, Docker and VoIP (Asterisk). Led a major infrastructure migration from external datacenter to internal private cloud.

Linux Kubernetes Puppet NGINX GitLab CI

Junior System & Application Consultant

Unlimited Footwear Group · Waalwijk

Jun 2016 — Feb 2018

System and network administration across multiple co-locations. Managed network, VoIP, Office 365, ERP (LN), SQL Server and Windows Server environments.

Networking Windows Server Office 365 SQL Server

// education

BSc System & Network Engineering

Hogeschool Utrecht

MBO Niveau 4 — ICT-Beheerder

Koning Willem 1 College

// mission

cybershapers.sh

❯ cat mission.txt

Your partner in shaping cybersecurity.

Open-source tools, research and knowledge

shared freely to make defenders more effective.

❯ echo $CONTACT

info@cybershapers.io

❯

// get in touch

Interested in a technical CISO engagement, a security audit, collaboration on a tool, or just a conversation about bridging governance, compliance and engineering effectively?

CONTACT ON LINKEDIN ✉ info@cybershapers.io GITHUB →