Introduction
36 hours per week
Start date: ASAP
End date: 31 December 2026
ZZP is not allowed
Relocation is not possible.
Function
As Security Engineer you are the expert for technical cyber security. You will play a central role in the cyber defence strategy. You are a trusted advisor on security aspects to other ICT teams and projects. You will collaborate on the implementation of changes and improvements to our cyber defences. You will work closely together with the Security Operations Centre and assess the impact of alerts and incidents.
In this role, you will perform in-depth analysis in highly specialized areas of cyber security, working independently and proactively to identify risks and opportunities for improvement. You’ll oversee security assessments, track remediation efforts, and drive continuous improvement. By refining exposure management processes and tooling, you’ll help strengthen our security posture while working closely with stakeholders to implement effective solutions. You will also provide expert advice on security-related projects and changes, substantiated by best practices or aligned with relevant guidelines, regulations, and internal policies.
Take action
• Provide expert, in-depth security guidance to ICT and security teams, proactively identifying and driving opportunities to enhance and mature the bank’s cyber defences.
• Collaborate closely with the SOC team, offering advanced expertise, challenging assumptions, and ensuring high-quality, effective incident response and threat analysis.
• Maintain a network within the bank and outside the bank to gather and share knowledge on cyber security.
• Perform in-depth analysis and continuous improvement of the bank’s cyber resilience, and particularly its ICT infrastructure.
• Lead and further develop the bank’s Vulnerability Management and Exposure Management capabilities.
• Perform continuous assessments of the bank’s attack surface and contribute to the implementation and maturation of Continuous Threat
• Exposure Management (CTEM) practices.
• Identify, analyse and prioritise vulnerabilities and cyber security risks, ensuring appropriate follow-up and remediation.
• Drive remediation efforts together with engineering and infrastructure teams and monitor progress towards resolution.
• Monitor developments in AI-related security risks and emerging threats, translating insights into practical improvements to the bank’s cyber defences.
• Provide subject matter expertise on Azure Security and the security of Windows and Linux server environments.
The team
You will be member of the Cyber Defence Centre (5 people) within Security & Resilience. On a daily basis, the team works closely with the colleagues from an external security partner that provides the Security Operations Centre services.
What you will bring
You have a strong interest in technology, and you grasp the concepts of information technologies and the application of security for those technologies. Using your creativity and learning ability, you will come up with appropriate advice or approaches to the security issues you encounter. You are quick to act, taking ownership of security incidents and leading change implementation when necessary. You like to work in teams and to build relations, inside and outside of the bank. You have a strong background in ICT and information security (CISSP level).
Requirements
• At least 5+ years of experience within cyber security.
• BSc in a technical/IT-related area, security certification (e.g., CISSP/CEH/CSX) is preferred.
• Good communication skills in English and preferably Dutch.
• Hands on experience with EDR, Cloud and/or SIEM technology is a plus.
• Experience with Vulnerability Management, Exposure Management and related security processes.
• Knowledge of Continuous Threat Exposure Management (CTEM) and Attack Surface Management principles and tooling.
• Knowledge of AI-related security risks and emerging developments within the cyber security landscape.
• Strong understanding of Azure Security concepts and controls.
• Experience securing and assessing Windows and Linux server environments.
• Experience within Cyber Defence and Security Operations environments.
• Ability to identify, analyse and follow up on vulnerabilities and security risks.
• Experience driving remediation activities with engineering teams and tracking progress.
• Experience working in complex IT landscapes and collaborating across multiple technology domains.
• A background in system administration, infrastructure engineering or a similar technical discipline is preferred.
Information
Jobs A2Z-CM +31(0)20-3337629
Application
Jobs A2Z-CM +31(0)20-3337629