Role: Security Consultant (Medior)
Location: Brussels, Belgium
Connecting Expertise
Description
The CISO team of the Flemish Tax Service (VLABEL) is looking for reinforcement in the form of a technical cybersecurity expert.
In this position, you will work closely with the information security architect and the CISO to support and strengthen the operational aspects of cybersecurity within the organization.
You will perform the following tasks (non-exhaustive):
• Contribute to the preparation of SIEM use cases and the follow-up of associated alerts. Assist in the development of playbooks and their technical implementation.
• Provide support in the follow-up and handling of security incidents.
• Monitor and follow up vulnerabilities at both infrastructure and software level.
• Develop technical procedures with regard to software development and/or infrastructure components.
• Perform technical audits or random samples to test the implementation of the security policy at operational level.
• Consult with operational teams to obtain feedback on security measures and to help resolve bottlenecks.
• Participate in the selection of suitable security tools such as vault solutions, XDR systems and other specialized technologies.
Context
Profile and Requirements
• Demonstrable expertise in operational cybersecurity.
• In-depth knowledge within (one or more of) the following domains:
o Security architecture (knowledge of TOGAF, SABSA, …).
o Threat modeling (knowledge of STRIDE, LINDDUN, …).
o Infrastructure security (experience with SCCM, PAM, jump hosts, secure configuration baselines, WAF, …).
o Security tooling, including tools for vulnerability analysis, penetration testing, encryption, PAM, SIEM, WAF, etc.
• Bachelor's or master's degree with a business or technical/engineering background, or equivalent through experience.
• At least three years of relevant and demonstrable experience in cybersecurity.
• Certifications such as CISM, CISSP, CISA or equivalent, depending on your specialization domain, are a plus.
• Strong communication skills and customer focus. You are able to clearly convey your expertise and actively share your knowledge with colleagues.
• Analytically strong and able to work and follow up on projects, comparable to the role of a project manager.
Skills
Demonstrable experience in cybersecurity
Demonstrable knowledge of operational cyber security
Demonstrable knowledge of Security Architecture (TOGAF, SABSA).
Demonstrable knowledge of Threat modeling (STRIDE, LINDDUN).
Demonstrable knowledge of Security tools, including tools for vulnerability analysis, penetration testing, encryption, PAM, SIEM, WAF
Demonstrable knowledge of Infrastructure Security (SCCM, PAM, jump hosts, secure configuration baselines, WAF).
Demonstrable experience as a Security Consultant within one of the following environments: data, infrastructure, applications, ...
Demonstrable experience in analyzing, optimizing and documenting security processes and governance
Demonstrable expertise in a specific knowledge domain of information security
Bachelor's or Master's degree with a business economics or technical/engineering background, or equivalent through experience
Language requirement: Dutch at European CEFR - level C2.
Demonstrable experience in analysis and able to work and follow up on projects, comparable to the role of a project manager
Demonstrable experience of security management techniques and/or frameworks (e.g.: ISO27000 series, COBIT for Security, NIST, OWASP, CIS Critical Security Controls for Effective Cyber Defense)
Demonstrable knowledge and experience through certificates depending on domain of expertise (e.g. CISM, CISSP, CEH).
