Where will you be working?

You will join a dedicated team of Information Security officers and security engineers with a passion for enhancing security for everyone. Our focus is on identifying and resolving security issues, automating processes to improve efficiency, strengthening our overall security posture, and ensuring we’re always ready to respond effectively to incidents. 

What are your core tasks?

• Security governance and capability implementation: Contribute to the execution and evolution of our information security strategy. Define, implement, and enforce security policies, standards, and controls aligned with risk mitigation goals.
• Technical security reviews and advisory: Perform regular security assessments to identify potential threats and weaknesses. Effectively communicate security findings and work closely with internal stakeholders to define and implement security improvements. Provide actionable security guidance during platform and product design, development, and operations. Evaluate proposed architectural changes and third-party solutions through a security lens.
• Access & Identity Security: Lead enterprise access and privileged access management efforts and support Zero Trust adoption through improved access controls and network segmentation.
• Training and awareness: Develop and deliver engaging security awareness and training programs. Act as a trusted advisor across departments to embed secure practices into day-to-day activities.
• Security Incident Management: Lead the coordination of security incidents. Work with internal and external stakeholders to improve detection, response, and recovery capabilities.

What are we looking for?

• Bachelor’s degree in Computer Science, Information Security, or a related field; advanced degree preferred.
• 5 years of experience in Information Security with proven expertise in securing linux based and containerised environments. 
• Hands-on experience with security reviews, security controls implementation and implementing zero trust and DevSecOps principles.
• Knowledge of security frameworks, standards, and best practices, such as ISO27001, NIST CSF and OWASP.
• Proficiency with security tooling such as SIEM, EDR, PAM, etc.
• Experience in leading security incident response and anticipating potential threats.
• Excellent communication in English (Written and Oral), interpersonal skills and partnership building.
  
  It would be nice if you also have:
• Related certifications such as CISSP, CISM, OSCP or GIAC.
• Experience with containerization technologies (Docker, Kubernetes) and associated security practices.

What do we offer?

• A modern, flexible and informal work environment with an emphasis on a healthy work/life balance.
• Flexible work-from-home policy, so you can arrange your weekly office and 'working from home' days in a way that works for you. Working from abroad for a number of days per year is also possible.
• Excellent secondary benefits: 5% end-of-year allowance, annual budgets for health, transportation and technology purposes, non-contributory pension scheme, paid parental leave, top-tier health insurance coverage for you and your family and 33 vacation days (full-time 37.5 hours).
• A generous training budget each year that can be used for professional development.
• Organisation-wide internal training program designed to develop critical soft skills— like feedback, resilience, and leadership—giving you the tools to excel in your career and beyond.
• An in-house free barista providing healthy varied lunches on Tuesdays and Wednesdays and nice breakfasts on Thursdays, plus regularly office drinks.
• Casual team events such as team outings, annual Christmas party and summer BBQ.

Still have questions?

Does this job sound like the perfect challenge? Or would you like to hear more about this opportunity? Please contact me. Call Blairi Schermer on +31 6 22983843 or send an email to [email protected].