about the company

benerail is the Leading Railway Retail Expert in Europe

Have you ever tried to book an international train ticket? Nightmare, right? That’s what we are trying to solve. Our organisation enables companies to sell international railway tickets across Europe. Regardless of the company operating the train. Our APIs and front-ends are the market standard in the Benelux and are accompanied by supportive services like product data management, consultancy and integration services. In this way we reduce complexity for our customers, so they can focus entirely on optimising the service to the travelers and make the choice for international railway travel easy in order that everything is interconnected.

benerail is your smart ticket to a greener world

benerail is a spin-off from The Belgian and Dutch national railway, well established yet very ambitious. To help the railway industry become the most attractive environmentally friendly and competitive means of transport, our strategy now focuses on expansion. Driven by our mission to facilitate a significant contribution to a better climate, we are building a scalable and sustainable organisation built on autonomous and purpose-driven teams.

Our main office is located in Antwerp, with flex in Amsterdam, Rotterdam, Utrecht and Brussels. Although we love coming together in person, because of the international nature of benerail and its people, we have been a remote-first company from the start.

about the job:

As an Information Security and Data Protection Officer, you will support the CISO and the rest of the organization in further improving the company’s security and privacy posture. benerail already has an ISO2700x/ISO2770x based framework in place but it is a full-time job to ensure that it is implemented comprehensively, and that continuous assessment and improvement ensure that our maturity meets the highest levels.
At benerail, Information Security and Data Protection and Privacy are combined into a single role. As the officer taking on this role, you will be in a central position, informing, advising, and supporting the different specialized teams and:

• Take control over benerail’s ISMS under the guidance of the CISO
• Help the teams with the implementation of our security policies and measures. Where necessary, you will also be responsible for the design of new policies and the review of existing ones.
• Help the teams with putting into practice a wide-ranging Secure Software Development Lifecycle approach.
  Organize security and privacy awareness training and evaluations.
• Organize both technical (pen testing) and ISO based assessments of benerail’s IT systems.
• Track common vulnerabilities and exposures and support the teams in analyzing and mitigating their impact on the benerail services.
• Support contract management with the design and review of new agreements (incl.DPA’s).
• Report on the security and privacy posture to the higher management.

about you:

We’re looking for a hands-on security & privacy expert to help us protect our systems and our users’ data – and guide our teams as we scale securely across Europe.

We’d love to meet you if you:

• Are curious, proactive and not afraid to challenge assumptions – always with data security in mind.
• Have experience or interest in compliance. We see this as a strong plus, as we are also looking to strengthen our internal compliance capabilities.
• Hold a CISM and/or CISSP certification (or equivalant).
• Have wide experience with ISO2700x and ISO2770x standards and their requirements for the ISMS management.
• Can communicate efficiently with analysts and developers and to assess security threats in IT solutions.
• Have hands-on experience with risk management, DPA drafting and DPIA execution.
• Have experience in reporting to higher management and external stakeholders.
• Can travel to our Antwerp office regularly (~1 day a week)
• Are fluent in English, Dutch is a big plus.

what we offer

• A key role in an innovative and purpose-driven company, where your expertise truly makes a difference.
• A high level of freedom and responsibility in shaping our security and privacy strategy.
• Flexibility, including the opportunity to work from home (80%)
• A modern office within walking distance of Antwerp Central Station
• A competitive remuneration package, including insurances and an electric company car.
• Fun teambuilding moments and an international team culture.

If you share our core business values; daring, connected & trusted, chances are we will have a match!

Ready to help us secure the future of European rail travel? Send your resume to hr@benerail.com – we look forward to meeting you!