The financial world has never been more dynamic than it is today. Big tech, fintech and the American tech giants are challenging the traditional parties. Outsourcing, innovation, new products and services are the answer and help is needed. Visma Idella uses its knowledge, experience and products to make the financial sector faster, more agile and more innovative.
Visma Idella offers total solutions for banks, pension funds and investment institutions. Our solutions can be used for the (online) distribution and administration of pension products in the 2nd & 3rd pillar, for free capital accumulation products and for the benefit and reduction phase. We serve more than 4 million Dutch people from our software solutions, making us the largest supplier of its kind in the Netherlands.
What are you going to do?
You work closely with others in the Business Operations team, including the internal auditor, security manager and legal counsel. You are the Go To Person for all security related aspects, from cloud security to physical security measures in our office locations. Working closely with Product Development (SaaS) and Managed Services (BPO) teams within Visma Idella, you ensure that security maturity levels remain at par, meet Visma standards and provide comfort to our demanding customer base.
You actively contribute to the dialogue between certifying parties, the external auditor and our operational teams, in the context of the applicable control frameworks, evidence gathering and risk analyses for our ISAE reporting, ISO certification, SOCII and DNB Security Self Assessments. As a SaaS and BPO company that provides services to the financial sector, our licence-to-operate is a material component of our business.
Additionally, the security engineers in our development teams and yourself interact closely on application of our security related policies, incident management as well as GDPR related issues with our data protection officer (DPO).
You also assess the risk level of the control measures and you draw up a risk-oriented work program that guarantees effective and efficient risk management for security matters. Our ambitions on the assurance roadmap are material and in the coming years, we will further mature our license-to-operate for our demanding customer base.
Together with the team, your work will be reflected in timely ISAE statements (5 Type II’s per annum, heading for a few more in the years to come), delivery of ISO certifications (ISO27001, ISO27018) and a variety of regulatory components, in order for us to meet our assurance obligations in an appropriate manner.
What do we ask of you?
Master's or Bachelor's degree in related fields, preferably Engineering, Computer Science, Mathematics areas, with an overall minimum of 5 years of relevant experience in IT / BPO / tech sector
Understanding the IT Service industry as well as the relevant marketplace
Effectively drive service development and contribute to company development processes
Effectively cope with change; comfortably adjust to alterations in work activities; able to decide and act with limited information; effectively handle risk and uncertainty in ambiguous situations
Fluency in Business English is required
Customer oriented behaviour
Have demonstrated skill described as responsibilities herein:
Knowledge of technical infrastructure, networks, databases and systems in relation to information security and risk management
Most experienced in managing IT security controls in an organization
Experience with computer network penetration testing and techniques
Skills in implementing security solutions, in vulnerability testing, risk analysis and security assessments
Experience in security engineering, computer and network security, authentication, security protocols and applied cryptography
Experience in monitoring networks using a variety of tools to identify potential intrusions
Ability to identify and mitigate vulnerabilities and explain how to avoid them
In-depth technical knowledge within information security areas:
Managing security operations in regards of detection, response and threat intelligence
Intrusion offensives, detection and monitoring
Security automation and orchestration processes
Security Incident Response
Vulnerability assessments, web and infrastructure pentesting
Malware analysis and reverse engineering
Advanced digital forensics activities
Kill Chain detections
Tactics,Techniques and Processes behavior patterns
Demonstrated resilience, diplomacy, influence, relationship building, and problem solving skills in a variety of situation
SANS GIAC Auditor (GSNA) or equivalent
ISC2 Certified Information System Security Professional (CISSP) or equivalent
ISACA Certified Information System Manager (CISM) or equivalent
ISO 27001:2013 Lead Implementer/Auditor (PECB) or equivalent
Network security certifications (CCNA/CCNP/MSCP or equivalent)
You have a strong analytical mindset and good communication skills both verbal and in writing
You have a proactive attitude with an antenna for organizational needs
You can easily adapt to new demands and expectations in the position
You are ethical: honest, sincere and discreet
You are willing to consider alternative ideas and points of view
You can work independently, but you are also a team player
What do we offer you?
Working at Visma Idella means a lot of space to let your talent flourish, realize your ambitions and keep pushing your boundaries. We like to work with short lines of communication. Of course also to the Visma organization, of which we are proud to be a part of. You can learn a lot from your >200 colleagues, who are just as professional and ambitious as you are.
In addition, you regularly follow training courses and internal knowledge sessions here to remain the best in your field. And do you have a good idea yourself? Do you see something that you think could be better? If you are enthusiastic and can provide a good substantiation, your initiative will be appreciated and rewarded. Our clubhouse in Amersfoort allows for face to face interaction, but we are also very experienced in working online with remotely positioned colleagues. About 20% of our colleagues are already located in one of the Visma nearshore countries.
Do you have the Visma Idella mentality?
Are you enthusiastic about what you are good at and someone who challenges themselves and the organization to continuously improve? Do you not shy away from complex issues and are you ready to do the best work in your life? Do you also recognize yourself in the points mentioned? Then you have the Visma Idella mentality and we would like to meet you!
Piata Consiliul Europei, nr. 2, Centrul Comercial Iulius Mall, UBC3 300627 Timisoara