Aanbiedingen kunnen alleen gedaan worden via onze portal Select, anders kunnen we deze helaas niet in behandeling nemen. Mocht je hulp hierbij nodig hebben dan kan je contact opnemen met onze afdeling support.

ZP: NO

OPTIONEEL Voor deze aanvraag geldt een inwerkperiode van 2 dagen tegen nultarief. Bij een aanbieding dient hier akkoord op gegeven te worden.

RABOJP00070669

"As a Security Engineer you make a difference by ensuring Rabobank’s data and applications is running securely as a result a well-tuned SIEM system. As a member of strong detection engineering team you are responsible to develop and tune high fidelity analytic rules to detect malicious activities and security breaches in the bank. You must be able to manage stakeholder’s expectancy and translate their requirements to an efficient analytic rule to detect threats against their application and data. You are eager to keep abreast of the latest security threat landscape and SIEM technology by continuous learning.

Making a difference by
• At least in depth knowledge of Microsoft Azure security portals, Sentinel and one of the other two big cloud service providers: Amazon Web Services (AWS) or Google Cloud Platform services;
• Knowledge and experience in IT, Security, Cyber Threat Intelligence and executing Threat Hunting activities;
• Able to develop automation rule and playbook to automate the respond to security incidents;
• Knowledge and experience in analyzing different attack techniques and resources such as rootkits, malware, Trojans, man-in-the-middle attacks etc.;
• Experience with programming and KQL shell scripting;
• Experience with different security technologies such as Security Information Event Monitoring, Intrusion Detection Systems, Firewalls, Proxies, Vulnerability scanning, Cyber Threat Intelligence etc;
• Participate in cross functional agile scrum teams with a focus on becoming a center of excellence on security monitoring;
• Agile Scrum and DevOps mindset and experience.

Able to work independently in a cross functional team in your day-to-day duty, work closely with Data Integration and Platform team to ensure Rabobank SIEM system only ingests and processes good quality logs and is well-supported to minimise downtime time. You are enthusiast to coach less-experience members of the team with the goal to establish a highly capable detection engineering team. Together with the team, Security Operations and stakeholders you make a design, story map to ensure people & technology are available and complete the execution. As a result, the new system is on boarded in the SIEM and being monitored for security incidents by our colleagues of security operations. Quality is one of your core focus areas for these kind of implementations.

With each other
Working together as a team within the Cyber Defence Centre is a highly important and part of your day to day business. As a team member of a multi-cultural scrum team, you work together towards the best results. You are empowered to create the best solution for the bank and take full responsibility of the Security Information & Event Management platform in line with the DevOps mind set: Designing, Building, Testing, Supporting and Owning it! This means that you are capable of taking over the basic activities of other DevOps team members in your team when necessary, like performing business analysis, coding, executing tests or even support activities.

With you
Service Orientation attitude, ability to collaborate with people and teams, good communicative skillset, ability to develop and maintain good working relationships, agility and problem solving skills are clearly essential for the position of Security DevOps Engineer. You are a driven professional with a wide variety of knowledge and experience in IT security in general and Cyber Security in particular. You’re always up-to-date with the newest facts in cloud or on premises cyber security technology.

You have strong analytic capabilities and a passion for IT security. You are critical and you are not easily satisfied. You can think like a hacker, with the awareness of sensibilities of a multinational organization and the capability to convince people about the sincerity and severity of incidents. The nature of our work requires a high degree of flexibility of your efforts. You are able to set up excellent reports for different target groups. Targeted communication in writing and oral is not a problem for you. You are a team player and you know how to engage your colleagues in achieving the team goals.

• You have at least 5 years of experience in the cyber security domain;
• Bachelor's/Master’s degree in Computer Science/ Information Security;
• You have experience with Cloud Service Providers, their security models and shared responsibilities;
• Experience with the development of logic apps and playbooks;
• MS-500, AZ-500 and SC-200 certification are desirable;
• Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP) or related certifications;
• Cloud Platform and Infrastructure (Azure and/or AWS) related certifications are preferred;
• You have experience with Network Detection & Response (NDR) tooling and Mitre Att&ck framework;
• Extract Transfer & Load (ETL) tooling such as Advanced Security Information Model (ASIM) and Data collection Rules (DCR) in Azure;
• You have excellent debugging and troubleshooting capabilities."