14/09/2022

Information Security Officer

FEDNOT

3 months

French Dutch English
800€ - 900€ /day

26/09/2022 - 31/12/2022

Belgium

Sign in to apply

Description

In order to be accepted, the proposed application must fully meet the following minimum requirements:

  • The applicant must have the minimum skills and experience required (roles/skills/languages) ;
  • The NDA (Non-Disclosure Agreement) annexed to this application must be completed and signed by the applicant him/herself. 

Mission: Medior Information Security Officer

  1. Start: ASAP – Full Time 
  2. Min. Duration: until 31/12/2022 (can be renewed!)
  3. Required Seniority: Medior

Information Security Officer

The Information Security Officer has a key mission: to promote and reinforce the information security in the notary sector. The security officers are part of a small team and enjoy a varied job:

  • We advise project teams on security matters (“Security by Design”),
  • We perform penetration and vulnerability testing,
  • We make users and managers aware on the cyber threats,
  • We monitor user and system activities,
  • We respond to cyber incidents of various origins,
  • We keep an eye on the evolution of cyber security landscape.

You want to

  • To perform penetration testing at the
    application
    /service level on demand or pro-actively
  • To perform infrastructure vulnerability testing
    • You know how to conduct network port scanning
    • You have experience with vulnerability scanning tools
  • Report your test results to different audiences:
    • Explain the security risks to the management
    • Help developers to find fixes
  • React to reported security incidents
    • You have an experience in security incident management
    • You can document an incident, assess its severity and urgency
    • You can quickly answer to questions from the users (via phone or mail)
    • You are at ease in explaining to users the urgent measures to take or the likely cause of an incident.
  • Advise project or product teams to design applications with security in mind
  • Contribute to a dynamic and constructive security culture in the organization
  • Work in an Agile environment.

You have

  • Bachelor or Master degree or equivalent by experience
  • At least 5 years experience in an “IT environment”
  • At least 2 years of experience in IT security and preferably experience with application security testing
  • A proven track record of handling security incidents 
  • Thorough understanding of information technologies, data security and network concepts
  • Good understanding of the risk- cost or user convenience balance 
  • Good understanding in information security frameworks (CIS, NIST, ISO27000) are considered a plus 
  • Information security certifications such as: CEH, CISSP, OSCP
    are considered a plus
  • You know the top-10 OWASP risks: how to test an application against these risks
  • You have experience in reporting pentest results to project teams
  • You are familiar with pentest tool like Burp Suite

You are

  • FR or NL is your mother language (full working proficiency in both languages is preferable as customers are FR & NL), both written and spoken
  • Deep analytical skills and structured thinking
  • Organized and self‑driven
  • Autonomous: able to prioritize activities, plan and execute
  • Strong listening skills
  • Able to communicate fluently with different audiences
  • Able to take a challenging but constructive attitude
  • Good team player; team objectives prevail over individual objectives
  • Good understanding Data Privacy and GDPR
  • Eager to learn about security, technology and our business context
  • Be versatile & polyvalent

We offer…

  • Challenging and interesting projects to work on, using the latest methodologies and technologies, within a growing and economical stable sector.

Where are you going to work?

  • Brussels at Fednot premises
  • Homeworking 3d/week

Roles

Information Security Expert - Medior

Languages

French - Full professional proficiency

Dutch - Full professional proficiency

English - Professional working proficiency

Skills

Vulnerability scanning tools - Advanced

Reporting of pentest results - Advanced

Information security certifications (CEH, CISSP, OSCP) - Nice to have

GDPR - Advanced

Network Port Scanning - Advanced

Top-10 OWASP risks: - Advanced

Information Security Frameworks (CIS, NIST, ISO27000) - Nice to have

Security Incident Management - Advanced

Penetration and vulnerability testing - Advanced

Cyber Security - Advanced

Pentest tool (Burp Suite) - Advanced

Data Privacy - Advanced

Application Security Testing - Advanced