Offensive security analyst

Euroclear
Amsterdam, Netherlands
16 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Intermediate

Job location

Amsterdam, Netherlands

Tech stack

Software System Penetration Testing
Power BI
Operational Systems
ISO/IEC 27002
Vulnerability Analysis

Job description

The role is in the Reporting and Control team and look at Offensive security more transversally with a focus on:

  • Consolidated reporting and follow up on vulnerabilities and remediation.

  • Single point of contact for the team regarding Regulatory, Internal/External audits, compliance and Internal Controls.

  • Build and maintain an Off Sec strategy that aligns the different activities we do today, and sets the ambitions for the years to come.

  • Help drive Offensive Security to become a trusted service provider Your primary responsibilities:

  • Compile, report and track vulnerabilities and mitigation results across Offensive Security test activities.

  • Reporting, follow up and evidence preparation for Audit, Regulatory and Internal Controls

  • Drive remediation of findings

  • Quality assurance of test baselines, test methodologies and reports. In addition to the main responsibilities the candidate can develop by supporting

  • The development of risk-based testing strategies for networks, operating systems, and applications.

  • Findings calibration across Offensive Security test activities.

  • The preparation of the Offensive security change plan.

  • Creation and maintenance of security testing policies, procedures, and training.

  • Making suggestions for security improvements.

Requirements

  • Intermediate to sophisticated level experience with reporting, KPI / KRI development, etc. as well as PowerBi

  • Intermediate level experience with findings management related to vulnerability scanning, red/purple teaming, penetration testing, application security testing

  • Sound security principles, based on confidentiality, integrity and availability requirements and other ISO27002 security principles are an asset Soft skills

  • Strong conceptual thinking!

  • Act as an ethical and reliable teammate, who engages openly, considerately, and constructively with both customers and peers, in both spoken and written communication. Take ownership and ensure that high interpersonal standards are maintained.

  • Be a very good communicator in English, both verbal and written, and able to discuss and defend the security interests with individuals and groups of senior business people as well as deep technical IT experts.

  • Be able to work independently, responsibly and professionally with highly confidential information

Apply for this position