WE SPECIALISE IN FINDING FANTASTIC OPPORTUNITIES
FOR DIGITAL AND DATA SPECIALISTS WITH THE MOST INNOVATIVE BUSINESS ACROSS EUROPE AND THE USA.
Amsterdam, North Holland
€60000.00 - €90000.00 per annum + extra benefits
12 days ago
Senior Security Engineer (Cloud and Automation)
For one of our clients in the Randstad area, we are looking for a dedicated security professional who has excellent knowledge of cloud and automation. Our client is looking for someone who can help in advising them on security and privacy-related matters and guide them into secure DevOps environments.
What do you need as a Senior Security Engineer?
- Driving the overall Vulnerability program for the Group alongside the SDLC;
- Providing input to help improve the secure SDLC with its tools and processes.
- Risk and vulnerability assessments;
- Ethical hacking, security testing, and penetration testing;
- Performing security code reviews and suggesting improvements to development teams;
- Security verification of web applications or mobile apps using OWASP ASVS/M-ASVS and testing guides;
- Secure development, Secure CI/CD & security automation;
- Knowledge of Cloud Solutions would be a big + (AWS, Azure);
Our client is looking for someone who has some the following skills/tools:
- Python, Java, OSCP, OCSE, OWASP, DevSecOps, security automation, Web Application Security, AWS, GCP, Azure, Docker, Kubernetes;
What does our client offer?
- Excellent base salary up to €90K including holiday allowance;
- 25+ Holidays;
- Flexible working hours/location;
- A laptop and iPhone which can also be used privately;
- Excellent study budget;
Looking for a new challenge as a Senior Security Engineer or do you know someone who fits the profile?
Then you can contact Dario Mulder at firstname.lastname@example.org or call +31(0)20 305 85 59
Darwin Recruitment is acting as an Employment Agency in relation to this vacancy.
Do you want to be a part of a fast-growing Security team? Do you want to work on critical systems that protect companies like Amazon and Adidas? If yes, please check out the role below: As an application security engineer will be responsible for: Integrating security tools, standards, and processes into the product life cycle Perform penetration testing against web services, API, mobile applications, On-premises, and Cloud (Azure) front-end & back-end services Train developers in security best practices. Implement security best practices based on OWASP principles and OWASP ASVS standards in the development process Improving and supporting application security tool deployments including static analysis and runtime testing tools. Improving and maintaining secure development standards. Supporting the incident response and architecture review processes whenever application security expertise is needed. Providing manual penetration testing and standards gap analysis services to internal business and technology partners. Managing application framework and perimeter security improvement projects. Supporting Vendor Security activities to ensure 3rd‐party software and development meets the Company's security standards. Review/Analyse Nuget packages (3rd party libraries) Integrating threat modeling practices into the product lifecycle. Providing security requirements for test‐driven design. Producing metrics reporting the state of application security programs and performance of development teams against requirements. Coordinate security work with the Company's SOC team Document Company's security approach and support in sales process/RFPs Assist security team with various security-related work when needed. Requirements B.S. in Computer or equivalent work experience as a software engineering or security practitioner. At least 2 years of application security and development experience Knowledge of application development process and principles of segregation of duties Security certifications such as CISSP, CSSP, CISM are desirable. Application security-specific certifications such as eWPT, Certified Application Security Engineer (CASE), GIAC Certified Web Application Defender (GWEB) are a plus. Experience with Azure or other cloud platforms is a plus. Soft skills : Ability to work well with others and garner cooperation Aptitude for working well under pressure Accepting responsibility for own work Ability to present creative solutions to management Ability to multi-task Communicate well with customers, partners, and internal stakeholders Good presentation skills and the ability to build trust Darwin Recruitment is acting as an Employment Agency in relation to this vacancy.
We're looking for a Security Information Engineer to work for our client. They are a very well known international financial/e-commerce company. If you can demonstrate experience of identifying, evaluating, and providing solutions to evaluate complex business and technology risks then you could be perfect for our client and we'd love to see your CV. Please note: This is a contract role, planned to last 6+ months and is outside IR35. ---- Responsibilities: - Working with the procurement team. Your job will be help identify, evaluate, and provide solutions to evaluate complex business and technology risks within the business. You will help with classifications and identifying/gathering of security requirements for supplier risk management process - Facilitate process walkthrough discussions to document end-to-end business processes and functional requirements - Providing support for 3rd party vendor or outsourcing management - Leading and performing risk identification and risk assessments for supplier, NPA's, major changes, and yearly risk assessments ---- Requirements: - Experience of identifying, evaluating, and providing solutions to evaluate complex business and technology risks - Additional experience of a solid understanding of information security standards and risk management frameworks - Further experience of third-party risk operating models and global TPRM processes - Knowledge of third party risk management process along with relevant governance standards such as ISO, ITIL or ISAE - Experience with lean and agile methodologies - Strong communication skills - you communicate clearly and can adapt your style to different target audiences - At least 5+ years of experience working in security in a broad scope - ideally you know a little bit about everything - Someone who has the ability to handle ambiguity and make decisions in situations where you don't have all the information - Someone with a solid engineering background - Working proficiency in English ---- The Package: An excellent salary is on offer for the Security Information Engineer position. Full details of the package on offer will be revealed once we receive your application. ---- Think that this Security Information Engineer role is the perfect job for you? Then we'd love to hear from you. Click the 'Apply Now' button, send us your CV and we'll consider you for the first round of interviews. ---- You could be right for this Security Information Engineer position if you've previously worked as any of the following: Security Information Engineer, Security Engineer or as an Information Engineer. Darwin Recruitment is acting as an Employment Business in relation to this vacancy.
Security Manager For one of our clients in the Utrecht Area, we are looking for a Security Manager Profile We are looking for someone to join this multi-disciplinary security team and someone to lead this team. For this position, you understand how important information security is to an Enterprise organization. The main goal of the Security Manager is that the Information systems are implemented and used according to the requirements of the organization. You guard and defend the security posture in a constructive way while balancing trade-offs between aspects of security, usability, cost, and corporate risk appetite. Steering the feature teams through volunteering advice and providing guidelines for implementation, you proactively focus on improving their view on security in code and process and continuously pursue improving the understanding of all those on the broader team. Requirements: Passionate about information security, privacy, and application security; Effectively works with others to ensure security initiatives are well understood and adopted across the lifecycle; Understands the applicability of OWASP and driving security maturity; Certifications CISSP is a big +, and knowledge of BSIMM, ISO 27034/27017 and ITIL; Acknowledges and plans for providing a Software-as-a-Service proposition to customers, Set out the view on a strategic and tactical level; Fluent in English; Offer Excellent base salary up to € 105K; 25+ Holidays; Yearly bonus; Flexible working hours; A laptop and iPhone which can also be used privately Great pension scheme; Looking for a new challenge as a Security Manager or do you know someone who fits the profile? Any More Questions? Then you can contact Dario Mulder at email@example.com or call +31(0)20 305 85 59. Darwin Recruitment is acting as an Employment Agency in relation to this vacancy.
A Security Architect is tasked with designing, building, testing, and implementing security systems within the Company's IT network (Workplace, On-premise, and Cloud environments) for the protection of both business and customer data. A Security Architect is expected to have a thorough understanding of complex IT systems and stay up to date with the latest security standards, systems, and authentication protocols, as well as best practice security products. The candidate should be knowledgeable on cloud security fundamentals(especially Azure ) and able to provide assistance to team members. Tasks Maintains security by monitoring and ensuring compliance to standards, policies, and procedures; conducting incident response analyses; developing and conducting training programs. Determines security requirements by evaluating business strategies and requirements; researching information security standards; conducting system security and vulnerability analyses and risk assessments; studying architecture/platform; identifying integration issues; preparing cost estimates. Enhances security team accomplishments and competence by planning delivery of solutions; answering technical and procedural questions for less experienced team members; teaching improved processes; mentoring team members. planning, researching, and designing security architectures Performing vulnerability testing and security assessments Researching security systems and authentication protocols Developing networking requirements, reviewing the installations of firewalls, VPNs, routers Designing public key infrastructures and identity solutions Testing final security structures and reviewing applications security Work with Company's Security operations team to establish disaster recovery procedures and conducting incident response drills to support security compliance initiatives. Support Company's Security operations Center during Incident response as needed. Work closely with Enterprise Architect, Cloud Architect, and other similar roles to develop and deliver a complete security architecture solution Assist the security team with other security-related tasks as needed Collaborate and establish a working relationship with security professionals in other business units. provide feedback and help as needed for security initiatives that are driven centrally. Requirements A Bachelor's degree in IT, Computer Science, or related field. Extensive experience in information security preferably in security architecture Expertise in cloud architecture and security fundamentals Deep understanding of container security, cloud network fundamentals, high availability design, multi-cloud benefits/shortcomings, microservices, and serverless compute Experience moving to a DevOps and/or DevSecOps environment - Understand agile development and CI/CD pipelines Network architecture, network security, and TCP/IP Docker and Kubernetes experience CISSP, Certified Cloud Security Professional (CCSP) and other security certifications are desirable Soft skills : Ability to work well with others and garner cooperation Aptitude for working well under pressure Accepting responsibility for own work Ability to present creative solutions to management Ability to multi-task Speak fluent English Communicate well with customers, partners, and internal stakeholders Good presentation skills and the ability to build trust Be proactive, openly share, evangelize, and advocate for the security topics The ability to work with a wide range of people from different backgrounds Darwin Recruitment is acting as an Employment Agency in relation to this vacancy.