Hold tight Hi there!

Interim Solutions
Engagement Models

Every organisation has its own way of working - and so do we. At Risk Boutique, flexibility never means compromise. We structure every engagement to fit your governance model, risk appetite, and internal processes, while maintaining the quality, independence, and confidentiality that define our brand.

Our Models.

Whether you need a single interim professional, a dedicated project team, or a long-term advisory partnership, we adapt our engagement model to the scope and rhythm of your organisation.

Robert Dreyer - MSc RO
E: robert@riskboutique.nl T: +31 (6) 40 88 37 01

Interim Placement

For clients who need immediate capacity or specific expertise on short notice we provide interim professionals - from IT Auditors and Risk Managers to Cyber Security Consultants, IAM Specialists, CISOs, and CROs - who integrate seamlessly into your organisation.

Assignments can run from a few weeks to several months and are available under multiple contracting options: 

  • Freelance (ZZP) – for self-employed professionals with their own entity
  • Contracting – via Risk Boutique as intermediary under standard professional terms 
  • Payrolling – for engagements where the Wet DBA (Dutch Labour Relations Act) requires employment-like arrangements, ensuring compliance and mitigating tax risk for both parties

We handle all contractual and compliance processes, so you can focus on delivery - not on paperwork. 

This is a non-comprehensive list of available roles for our professionals to take on: 

  • Information Risk Manager
  • Operational Risk Manager 
  • Business Continuity Manager
  • Risk Officer (Junior, Medior, and Senior)
  • Chief Risk Officer (CRO)
  • Compliance Specialist
  • IT Auditor
  • Internal or Operational Auditor
  • Regulatory or IT Project Manager (e.g. DORA, MiCAR, NIS2)
  • Data Governance Lead
  • Identity & Access Management Consultant (risk-based)
  • Information Security Officer
  • Chief Information Security Officer

Other preferred positions or required assistance can always be discussed with us so that we can seek the fitting professional for your (temporary) vacancy. 

Project-Based Engagement

Some challenges require more than one specialist. 

For broader programmes - such as framework implementation, control remediation, or regulatory readiness - we deploy a managed project team led by a Risk Boutique engagement manager. 

This model ensures single-point accountability, unified reporting, and consistent quality across deliverables. 

Our teams can work alongside your internal staff or deliver results independently. 

Typical use cases: 

  • ISO 27001 or DORA implementation
  • ITGC remediation and ISAE readiness
  • Risk framework design and rollout
  • Internal Audits

Co-sourcing

When you already have an internal team but need additional expertise or independence, co-sourcing provides the ideal balance. 

We collaborate directly with your professionals - sharing methodology, templates, and best practices - while maintaining an external perspective and professional independence.

Typical use cases: 

  • Internal Audit (IIA/NOREA) co-sourcing
  • Cyber and data governance reviews
  • Compliance monitoring or risk testing cycles

Advisory Retainer

For organisations that prefer continuity without constant contracting, we offer advisory retainers. 

This model provides ongoing access to our senior advisors for ad-hoc consultation, policy review, board briefings, or strategic input. 

Retainers are flexible in scope and time - typically renewed on a quarterly or annual basis. 

Our Engagement Principles 

Regardless of the model, every engagement follows three core principles: 

  • Clarity - clear scope, deliverables, and communication lines from day one
  • Integrity - full independence, confidentiality, and compliance with NOREA ethical standards
  • Precision - proportionate, evidence-based, and pragmatic execution
Robert Dreyer - MSc RO
E: robert@riskboutique.nl T: +31 (6) 40 88 37 01

We take care of NDA agreements, GDPR compliance, and KYC screening for each professional. 

Our payrolling and contracting structures fully comply with Dutch and EU labour legislation - including the Wet DBA - to guarantee safe and transparent collaboration for all parties. 

Why clients choose Risk Boutique.

Trusted network of experts. Only professionals with proven track records in risk, auditing, or compliance.

Boutique precision. Tailored matching, no volume-driven placement. 

Speed and quality. Suitable candidates introduced within days, not weeks.

Regulatory confidence. Assignments fully aligned with governance and compliance obligations.

Continuity and discretion. Stable relationships built upon trust, not transactions.