Vacatures
>
Amsterdam

    Cyber Security Specialist - Amsterdam, Nederland - Cboe Global Markets, Inc.

    Cboe Global Markets, Inc.
    Cboe Global Markets, Inc. Amsterdam, Nederland

    2 weken geleden

    Default job background
    Voltijd
    Beschrijving

    Description

    Building trusted markets —powered by our people.

    At Cboe Clear Europe, we inspire our people to solve complex challenges together because what we do matters. We provide the financial infrastructure that powers the global economy. As a leading provider of market infrastructure and tradable products, Cboe delivers cutting-edge trading, clearing and investment solutions to market participants around the world.

    We're building inclusive ways to support professional and personal development while strengthening the trust we've earned as a global market leader. Our teams are empowered to share ideas, actively pursue them and bring on a challenge. As champions of internal mobility and access to opportunity, we encourage our people to "go for it" and equip our managers with the training to coach their teams to the next level. Our Associate Resource Groups champion diversity, equity and inclusion, giving associates a safe space to network, share ideas and create opportunities.

    Sound like the place for you? Join us

    The Cyber & Information Security team is hiring for Cyber Security Specialist (SecDevOps).

    The Cyber Security specialist at Cboe Clear Europe will be reporting into the CISO. This role will give you exposure to both legacy and cutting-edge technologies and work across both infrastructure, Web, and Cloud. You will be responsible for Security implementations, delivering high quality services and solutions across all application development platforms. You perform design reviews of new applications, products, and services to identify potential risks and recommend appropriate mitigations including the design of the appropriate securty testing.

    In this role you'll be responsible for :

  • Participate in infrastructure design reviews and threat modelling sessions, promote best cloud infrastructure practices
  • Deliver/integrate security tooling to DevOps delivery pipelines.
  • Perform design reviews of new applications, products, and services to identify potential risks and recommend appropriate mitigations.
  • Perform security assessments, testing, and manual code review of applications.
  • Performing post incident root-cause analysis and develop and implement strategies to prevent recurrence.
  • Create technical security standards for relevant technologies.
  • Assist with development and delivery of Cboe Clear Europe application security strategy.
  • Responsible for monitoring and driving Application Security Compliance during project lifecycle.
  • Work with stakeholders to implement security solutions and initiatives addressing new vulnerabilities.
  • Delivering the technical aspects through plan, design, build for project and compliance security testing
  • Responsible for development of solutions to secure architecture requirements and standards.
  • Engage across multiple functions on a global level to ensure Code Development Lifecycles are in place and application verification is drive through all application development programs.
  • Ensures accurate delivery progress reporting is completed and communicated to relevant stakeholders.

    • The ideal candidate has :

  • At least 5+ years of hands-on experience of application security. This could either be as an AppSec specialist within a security team, or as an engineer and/or developer with significant experience of securing and defending applications against real-world threats.
  • Implement and review security controls on other layers of infrastructure: applications within Kubernetes clusters, service virtual machines, SaaS
  • Knowledge of common application security issues, and able to identify these via design assessment and threat modelling.
  • Strong understanding of SecDevOps principals, and how security controls can be effectively integrated to DevOps pipelines.
  • Several years of experience in providing CI/CD, run and observability services to other teams
  • Familiarity with Threat Modelling frameworks such as STRIDE, PASTA and MITRE ATT&CK
  • Able to read and write code (languages we typically use include Python, Swift, Java, Javascript)
  • Knowledge of security aspects of some of the following:
  • Security tooling e.g. SAST, DAST, IaC scanning, Container vulnerability scanning
  • Modern web applications and related technologies (Angular, React, Spring, etc).
  • APIs and microservices
  • Authentication/Authorization technologies e.g. OAuth, SAML
  • Knowledge of common technologies used to deliver and support applications e.g. Linux, Windows, databases, load balancers, containerization, public/private cloud environments.
  • Knowledgeable about PKI infrastructure.
  • Familiarity with common application related compliance requirements – e.g. GDPR, EMIR,
  • Strong written and verbal communication skills, ability to form strong business relationships across multiple locations. Ability to create management reporting to convey operational metrics, trends, or other key information.
  • Experience of analyzing, assessing, and resolving complex technology requirements, problems, and issues
  • Strong experience in designing, integrating, and deploying security solutions in a dynamic, high pressure working environment.
  • Demonstrate strong influencing and persuading skills, encourage colleagues and teams to change established processes, achieve improvements, and best practice.
  • Bachelor's degree in cyber security, Network/Security Engineering, Computer Science, MIS, CIS, related field, or extensive relevant work experience
  • Certification in any of the following preferred: CISSP, CISM, CISA, CCSP or equivalent

    • You'll really stand out with :

  • Previous work with a Fin-Tech company is preferred but not required
  • Additional security industry training such as SANS or Offensive Security preferred
  • Knowledge of information security concepts and technologies, including cyber risk, third party risk, and security governance
  • Knowledge of a wide range of security/risk management frameworks like NIST, CIS etc.
  • Experience working in a complex cloud-based IT organization is a plus

    • Benefits and Perks

    We value the total wellbeing of our people – including health, financial, personal and social wellness. We believe standard benefits like health insurance and fair pay are a given at any organization. Still, you should know we offer:

  • Fair and competitive salary and incentive compensation packages with an upside for overachievement
  • Cboe offer premium free pension contributions .
  • Enhanced paid parental leave to support parents
  • EAP - This service intends to help employees deal with personal problems that might adversely impact their work performance, health and well-being. This service includes short- term counselling and referral services for employees and their immediate family.
  • ClassPass Corporate Membership which provides access to on-demand classes, livestream classes, in-person classes and wellness sessions across different fitness genres. (taxable benefit)
  • 25 days holiday per year per holiday year for full time employees, increasing with length of service at a rate of one extra day per completed years' service, up to a maximum of 30 days.
  • Flexible, hybrid work environment, where you choose where and how you work (2/3 days per week in office)
  • Discounted Employee Stock Purchase Plan
  • Employee referral bonus program
  • Complimentary lunch, snacks and drinks in any Cboe office
  • Paid tuition assistance and education opportunities
  • Generous charitable giving company match
  • Volunteer opportunities to help you give back to your communities
  • ICT Group N.V.

    Security specialist

    2 weken geleden

    ICT Group N.V. Duivendrecht, Nederland

    Taken en verantwoordelijkheden · In het kort · Als security specialist procesautomatisering ben je bij ICT Group binnen de unit Water & Infra dé cyber security specialist in het OT-domein. Je past de cybersecurity standaarden toe binnen de wereld van systems engineering en bent v ...

  • CGI

    Security Specialist Informatiebeveiliging

    2 weken geleden

    CGI Amsterdam, Nederland Voltijd

    Position Description: · Help jij onze klanten in de veiligheidssector de stap te maken naar een high performance organisatie? · Jouw rol in ons team · Als Security Specialist maak je deel uit van een gedreven club professionals. Jij bent verantwoordelijk voor accreditatie, risi ...

  • CGI

    Cyber Security Specialist

    1 week geleden

    CGI Amsterdam, Nederland Voltijd

    Position Description: · Help jij onze klanten in de veiligheidssector de stap te maken naar een high secure organisatie? · Jouw rol in ons team · Als Cyber Security Specialist maak je deel uit van een gedreven club professionals. Je bent proactief en je hebt een technische hand ...

  • Sanquin

    Medior Security Specialist

    4 dagen geleden

    Sanquin Amsterdam, Nederland

    Intro vacaturetekst · Werken bij Sanquin betekent mensenlevens redden. Niet één keer, maar elke dag opnieuw. Dat doen we met bloedproducten en geneesmiddelen die veilig en beschikbaar zijn voor iedereen die ze nodig heeft. De kwaliteit van onze bloedproducten en geneesmiddelen b ...

  • CGI

    Cyber Security Specialist

    1 week geleden

    CGI Amsterdam, Nederland Voltijd

    Position Description: · Help jij onze klanten in de veiligheidssector de stap te maken naar een high secure organisatie? · Jouw rol in ons team · Als Cyber Security Specialist maak je deel uit van een gedreven club professionals. Je bent proactief en je hebt een technische hand ...

  • VodafoneZiggo

    Senior Cyber Security Specialist

    1 week geleden

    VodafoneZiggo Nederland

    Vaardigheden die je goed kunt gebruiken voor deze job. · Hoofd- of bijzaak? Dat verschil zie jij meteen. Je komt makkelijk tot de kern en houdt tegelijk het overzicht. · Je ziet het grote geheel · Jij bent vaak drie stappen verder dan de rest. Je ziet overal verbanden en beden ...

  • Subcon Valley Bank

    Cyber Security Specialist

    1 week geleden

    Subcon Valley Bank Amstelveen, Nederland

    Reageer uiterlijk: 3 redenen waarom dit jouw baan is · Omdat je veel verantwoordelijkheid, maar ook veel vrijheid hoe jij jouw werk indeelt. · Omdat je hart sneller gaat kloppen van (on)veilige software · Omdat jij je graag verder ontwikkelt in de richting die jij voor ogen he ...

  • Meijburg & Co

    IT Security Specialist

    1 week geleden

    Meijburg & Co Amstelveen, Nederland

    Wat ga je doen? · Als IT Security Specialist ondersteun je de NITSO (National Information Security Officer) bij het implementeren van informatiebeveiliging, het definiëren van beveiligingsrichtlijnen en het managen van de ICT-beveiliging voor KPMG Meijburg & Co. Je houdt daarbij ...

  • UWV

    Security Specialist Cyber Defense Center

    3 weken geleden

    UWV Amsterdam, Nederland

    Wat ga je doen · Een cyberaanval waarbij UWV betrokken is, heeft niet alleen gevolgen voor de interne organisatie maar raakt direct of indirect de burger die afhankelijk is van inkomenszekerheid vanuit UWV. Het solliciteren op deze functie doe je dus niet alleen voor jezelf én o ...

  • Lely Holding

    Senior Security Specialist

    1 week geleden

    Lely Holding Nederland

    In Lely's Product Development department about 500 engineers are developing smart solutions that that help automate dairy farms. We develop a wide range of products such as milking and feeding robots, automated guided vehicles, and farm management software. · With software devel ...

  • PwC Advisory N.V.

    Information security specialist

    1 week geleden

    PwC Advisory N.V. Amsterdam, Nederland Voltijd

    Description · & Summary We are looking for experienced consultants who are passionate about cyber security in our digital world and specifically security of digital products.Our team enables a more secure society by helping international and local organizations improve their sec ...

  • PwC

    Information security specialist

    3 weken geleden

    PwC Amsterdam, Nederland Voltijd

    We are looking for experienced consultants who are passionate about cyber security in our digital world and specifically security of digital products.Our team enables a more secure society by helping international and local organizations improve their security. · What are you goi ...

  • Translink

    Security Specialist

    5 dagen geleden

    Translink Amersfoort, Nederland Voltijd

    Opleiding: Een afgeronde hbo/wo-opleiding in ICT of informatiebeveiliging. · Ervaring: Minimaal 5 jaar relevante ervaring in systeem- en/of netwerk engineering. · Kennis: Van diverse informatiebeveiligingstechnologieën. · Persoon: Je bent accuraat, analytisch en neemt eigen ini ...

  • Schiphol

    Cyber Security Specialist

    4 weken geleden

    Schiphol Schiphol, Nederland

    Nice to know (you) · De Cyber Security Specialist is belast met de dagelijkse zorg voor de beveiliging en digitale beveiliging van systemen binnen het security domein. · Je bent het vaste aanspreekpunt vanuit Schiphol voor de overheid over alle beveiligingsaspecten en digitale b ...

  • Athora

    Security Specialist

    1 week geleden

    Athora Alkmaar, Nederland Voltijd_permanent

    Wij zijn op zoek naar een ervaren Security Specialist die ons team komt versterken. Als Security Specialist ben je verantwoordelijk voor het adviseren over en zorgen voor de veiligheid en het juiste gebruik van ICT-middelen. Je evalueert complexe risico's, signaleert bedreigingen ...

  • Pon

    Security Specialist

    1 week geleden

    Pon Leusden, Nederland

    Wat ga je doen · Ben jij de persoon die security vraagstukken kan vertalen naar praktische oplossingen in onze snel digitaliserende wereld? Heb jij affiniteit met het uitvoeren van security scans en ben je in staat security incidenten op een professionele wijze te onderzoeken en ...

  • Cimsolutions BV

    Security Specialist

    1 week geleden

    Cimsolutions BV Vianen, Nederland Voltijd

    Als Security Specialist/ Security Consultant draag je bij aan de implementatie van het informatiebeveiligingsbeleid van de organisatie door het veilige en juiste gebruik van ICT-middelen. Je definieert, doet voorstellen en implementeert noodzakelijke informatiebeveiligingstechnie ...

  • MUFG

    Regulatory Reporting Specialist, Securities

    2 weken geleden

    MUFG Amsterdam, Nederland Voltijd

    Do you want your voice heard and your actions to count? · Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), the 7th largest financial group in the world. Across the globe, we're 160,000 colleagues, striving to make a difference for every client, organization ...

  • UWV

    Security Specialist Cyber Defense Center Concern ICT

    2 weken geleden

    UWV Amsterdam, Nederland

    Wat ga je doen · Een cyberaanval waarbij UWV betrokken is, heeft niet alleen gevolgen voor de interne organisatie maar raakt direct of indirect de burger die afhankelijk is van inkomenszekerheid vanuit UWV. Het solliciteren op deze functie doe je dus niet alleen voor jezelf én o ...

  • Leger des Heils

    Security awareness specialist

    2 weken geleden

    Leger des Heils Almere, Nederland Deeltijd

    Taken en verantwoordelijkheden · Als ervaren security expert met een vooruitdenkende aanpak, ben je uitgenodigd om je bij het Leger des Heils aan te sluiten. Wij waarderen professionals met expertise in security en nodigen je uit om deel te nemen aan ons dynamische security team. ...