Senior Information Security Officer Amsterdam • Cyber Security District

We are looking for an experienced Senior Information Security Officer who is passionate about safeguarding the digital world. In this role, you will lead efforts to secure critical services and data, proactively tackle security challenges, and help shape the future of security operations. You will work closely with teams across the organization to develop resilient solutions that protect our digital environment.

If you’re driven by solving complex security issues and want to make a meaningful impact, we’d love to hear from you.

• Contribute to the execution of the information security strategy. Establish and enforce security policies, procedures, and standards to mitigate risks.
• Perform regular security assessments and application security reviews to identify potential threats and weaknesses. Effectively communicate security findings and work closely with various internal stakeholders to identify, advise, and implement security improvements.
• Identify, track, prioritize, and collaborate with technical teams to remediate vulnerabilities effectively. Perform testing to identify vulnerabilities and validate security controls.
• Lead security incident response efforts. Collaborate with internal teams and external partners for effective incident response and risk reduction.
• Develop and deliver security awareness training programs for employees. Actively promote awareness of security practices. Act as a security advisor during product planning and development phases to balance usability, performance, and security.

• Bachelor’s degree in Computer Science, Information Security, or a related field; advanced degree preferred.
• 5 years of experience in Information Security with proven expertise in securing hybrid environments, particularly Linux-based systems and AWS cloud services.
• Hands-on experience with security reviews, vulnerability assessments, and security controls implementation.
• Knowledge of security frameworks, standards, and best practices, such as ISO27001, NIST CSF and OWASP.
• Proficiency with security tooling such as SIEM, EDR, SAST, DAST, PAM, etc.
• Experience in leading security incident response and anticipating potential threats.
• Excellent communication in English (Written and Oral), interpersonal skills and partnership building.
• Related certifications such as CISSP, CISM, OSCP, AWS Certified Security, or GIAC.
• Experience with containerization technologies (Docker, Kubernetes) and associated security practices.

• A modern, flexible and informal work environment with an emphasis on a healthy work/life balance
• Flexible work-from-home policy, so you can arrange your weekly office and ‘working from home’ days in a way that works for you. Working from abroad for a number of days per year is also possible
• An annual salary between 68,000 to EUR 80,000 (before tax). This includes the standard 8% annual “holiday pay”.
• Excellent secondary benefits: 5% end-of-year allowance, annual budgets for health, transportation and technology purposes, non-contributory pension scheme, paid parental leave, top-tier health insurance coverage for you and your family and 33 vacation days (full-time 37.5 hours)
• A generous training budget each year that can be used for professional development.
• Organisation-wide internal training program designed to develop critical soft skills, like feedback, resilience, and leadership, giving you the tools to excel in your career and beyond.
• An in-house free barista providing healthy varied lunches on Tuesdays and Wednesdays and nice breakfasts on Thursdays, plus monthly office social events.