IT SECURITY OFFICER (MEDIOR)

Qualogy
Rijswijk, Netherlands
8 days ago

Role details

Contract type
Contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Intermediate

Job location

Rijswijk, Netherlands

Tech stack

Clean Code Principles
Antivirus Softwares
Software System Penetration Testing
Cloud Computing Security
CompTIA Security+
Computer Security
Internet Protocol Security (IP SEC)
Phishing
Runbook
TCP/IP
Software Security
Vulnerability Analysis

Job description

Keeping the company safe, secure and compliant is a top priority at our client. As part of the IT Security team your focus will be on providing security subject matter expertise and education and instilling the core security mindset and culture. You will be contributing to the delivery of various control improvements, assessing risks, creating awareness in cyber security and act as a security liaison for the delivery teams., Providing IT security advisory and guidance to teams involved in development & support Help teams in their information security and risk journeys: liaise with the teams to ensure appropriate security controls are implemented.

  • Active member in local Incident response team, with a focus on Cyber Security Incident Response (including Scenario Analysis, Runbook development and testing)

  • Security Alerts handling/follow-up (phishing, antimalware, etc)

  • Review and approve Application Security Baselines

  • Review and challenge the security of External connections

  • Participate as an active member in IT Security trainings & awareness campaigns & activities

  • Challenge & Review Security Monitoring implementation & Scope. Review

  • Security Event Monitoring implementation & alerts

  • Review challenge vulnerability & penetration test reports and remediation plan & follow-up on remediation plan

  • Check Vulnerability scan reports and follow up on remediation

  • Ensure full compliance to the standards and policies set

  • Stakeholder in relevant risk assessment exercises and meetings

Requirements

  • Customer-oriented attitude

  • Effective communication skills

  • Dedication to your job

  • True hands-on mentality

  • Teamplayer

  • High standard of work (Clean coding), 3-4 years (preferably in Software company or Financial institution) in an IT security role

Understanding of network and web related protocols (such as TCP/IP, UDP, IPSEC, HTTP, HTTPS, protocols).

Familiarity with cloud security controls and best practices. Experience in developing cyber-security risk and incident management processes and a solid understanding of cyber threat landscape

Familiar with ISO2700x, NIST, ISF, CIS and similar frameworks

Nice to have:

Relevant security certifications (e.g. ISC2 SSCP/CISSP, ISACA CISM/CISA/CIRISC, CompTIA Security+, EC-Council CEH, ISO/IEC 27001)

Competencies:

Excellent written and verbal communication skills - ability to explain technical solutions to both technical and non-technical audiences;

Team player

Strong sense of ownership, urgency, and drive

Customer-focused and enjoy working as part of a team

Strong capabilities to build internal confidence in a situation of constant change

Strong problem solving and analytical thinking - ability to diagnose and resolve ambiguous problems;

Strong resilience to stress and constructive and collaborative mindset;

Willingness to continuously improve skills;

Willingness to support and coach less experienced colleagues; provide help when needed and criticize in a constructive manner;

Support for creating a friendly work environment based on respect, trust and partnership values. Integrity and honesty

Apply for this position