Expert in Secure Development - Hybrid

We currently have a vacancy for an Expert in Secure Development fluent in English, to offer his/her services as an expert who will be based in Belgium. The work will be carried out either in the companys premises or on-site at customer premises. In the context of the first assignment, the successful candidate will be integrated with the Development team of the company that will closely cooperate with a major clients IT team on site.

Your tasks:

• Support the design of secure IT architectures and ensures compliance with Commission security policies and standards;
• Assist in defining and implementing security requirements within IT projects;
• Support security control integration in development and infrastructure;
• Help maintain security documentation for audits and compliance;
• Assist in drafting security assessments, architecture security blueprints, and configurations;
• Work with DevSecOps teams to strengthen security in software development;
• Coordinate vulnerability assessments and penetration testing follow-ups;
• Support incident classification and response prioritization;
• Assist in defining security plans, access management strategies, and risk mitigation Frameworks.

Requirements

• University degree in IT or relevant discipline, combined with minimum 15 years of relevant working experience in IT;
• At least 3 years of specific expertise in IT security applied to software development ;
• At least 3 years of specific expertise cloud security frameworks and guidelines, such as the Cloud Security Alliance (CSA) Cloud Controls Matrix;
• Experience in coaching and training;
• In-depth understanding and experience with the General Data Protection Regulation (GDPR) and the proposed ePrivacy Regulation (EDPR), etc.;
• In-depth understanding of OWASPs top security risks and ability to apply these practices in software development;
• Good knowledge of secure coding frameworks and guidelines;
• Good knowledge of security practices for cloud environments;
• Comprehensive knowledge of ISO 27001 (Information Security Management), ISO 27002 (Code of Practice for Information Security Controls), and ISO 27005 (Information Security Risk Management);
• Awareness of developments in the AI Act and its potential implications for IT security and data protection;
• Knowledge of the NIS2 Directive for network and information systems security in the EU;
• One of the following certifications are required: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP) or equivalent;
• Excellent command of the English language.

Benefits

If you are seeking a career in an exciting, dynamic and multicultural international environment with exciting opportunities that will boost your career, please send us your detailed CV in English.

We offer a competitive remuneration (either on contract basis or remuneration with full benefits package), based on qualifications and experience. All applications will be treated as confidential.