09/11/2022

Information Security Officer

FEDNOT

1 month

French Dutch English
800€ - 900€ /day

09/11/2022 - 31/12/2022

Belgium

Sign in to apply

Description

In order to be accepted, the proposed application must fully meet the following minimum requirements:

  • The applicant must have the minimum skills and experience required (roles/skills/languages) ;
  • The NDA (Non-Disclosure Agreement) annexed to this application must be completed and signed by the applicant him/herself. 

Mission: Medior Information Security Officer

  1. Start: ASAP – Full Time 
  2. Min. Duration: until 31/12/2022 (can be renewed!)
  3. Required Seniority: Medior

Information Security Officer

The Information Security Officer has a key mission: to promote and reinforce the information security in the notary sector. The security officers are part of a small team and enjoy a varied job:

  • Development and maintenance of Information Security Policies in line with the Information Security Strategy;
  • We guide and coach on the implementation of the policies;
  • We deliver guidance on the implementation of the security controls and reporting;
  • We advise project teams on security matters (“Security by Design”);
  • We perform assessments through, amongst others, penetration and vulnerability testing;
  • We make users and managers aware on the cyber threats;
  • We monitor conformance with policies;
  • We respond to cyber incidents of various origins and to business continuity incidents;
  • We keep an eye on the evolution of cyber security threat and technology landscape.

You want to

  • Be the enthusiastic promotor by selling sound security practices within the organization andcoaching staff to a higher maturity level
  • Work in a dynamic environment with high demands on trust for a digital world which must be delivered throughmodern security technologies
  • Advise and coach project or product teams to design services and applications with security in mind
  • To perform independent testing through
    • penetration testing at the application/service levelon demand or pro-actively
    • perform infrastructure vulnerability testing
  • Get transparency on the state of play of security through the embedding ofreporting throughout the organization and consolidate to address different audiences:
    • Explain the security risks to the management
    • Help stakeholders to find risk reduction solutions
  • React to security incidents
    • You have an experience in security incident management, including assessment, reaction, containment and recovery
    • You have affinity with business continuity management practices
  • Contribute to a dynamic and constructive security culture in the organization
  • Work in an Agile environment.

You have

  • Bachelor or Master degree or equivalent by experience
  • At least 5 years experience in an “IT environment”
  • At least 2 years of experience in IT security and preferably experience with application security testing
  • A proven track record of handling security incidents 
  • Thorough understanding of information technologies, data security and network concepts
  • Good understanding of the risk- cost or user convenience balance 
  • Good understanding in information security frameworks (CIS, NIST, ISO27000) are considered a plus 
  • Information security certifications such as: CEH, CISSP, CISM, OSCP
    are considered a plus
  • You know the top-10 OWASP risks: how to test an application against these risks
  • You have experience in reporting pentest results to project teams
  • You are familiar with pentest tool like Burp Suite

You are

  • FR or NL is your mother tongue (full working proficiency in both languages is preferable as customers are FR & NL), both written and spoken. Elementary knowledge ofEN
    as working language is used
  • Deep analytical skills and structured thinking
  • Organized and self‑driven
  • Autonomous: able to prioritize activities, plan and execute
  • Strong listening and negociation skills
  • Able to communicate fluently with different audiences
  • Able to take a challenging but constructive attitude
  • Good team player; team objectives prevail over individual objectives
  • Good understanding Data Privacy and GDPR
  • Eager to learn about security, technology and our business context
  • Be versatile & polyvalent

We offer…

  • Challenging and interesting projects to work on, using the latest methodologies and technologies, within a growing and economical stable sector.

Where are you going to work?

  • Brussels at Fednot premises
  • Homeworking 3d/week

Roles

Information Security Expert - Medior

Languages

French - Full professional proficiency

Dutch - Full professional proficiency

English - Professional working proficiency

Skills

Pentest tool (Burp Suite) - Advanced

Cyber Security - Advanced

Reporting of pentest results - Advanced

Vulnerability scanning tools - Advanced

Security Incident Management - Advanced

Information security certifications (CEH, CISSP, OSCP) - Nice to have

Penetration and vulnerability testing - Advanced

GDPR - Advanced

Information Security Frameworks (CIS, NIST, ISO27000) - Nice to have

Top-10 OWASP risks: - Advanced

Network Port Scanning - Advanced

Application Security Testing - Advanced

Data Privacy - Advanced