Security Engineer

Engineering · Volunteer · Global

Job description

Security Engineer

Department: IT Services Voluntary work, 8 hrs / week

About DIVD

DIVD is the voluntary fire brigade of the Internet. At the Dutch Institute for Vulnerability Disclosure we aim to make the digital world safer by reporting vulnerabilities we find in digital systems to the people who can fix them. We operate on a global level, but do it Dutch style: open, honest, collaborative, and for free. We mainly work on cases with the volunteers in CSIRT and Research teams. And to support all these volunteers, many great people are in supporting roles.

At the head of DIVD is our board, who provide guidance and direction and are responsible for strategic decisions. The day to day operations are led by a management team, consisting of our director, department heads, the CISO, and crisis manager.

IT Services

This department is responsible for our own applications and infrastructure, including our own AS and the infrastructure CSIRT and Research & Development teams use to scan the internet. They are responsible for the technical maintenance of our websites and have a development team that supports CSIRT and Research by building tooling to automate tasks. In addition, the IT Services department runs the help desk, to solve operational change requests, account issues with accounts or other incidents logged by volunteers.

Description

We are looking for an enthusiastic Security Engineer. As a Security Engineer, you are helping us with risk assessments and making our applications and infrastructure more secure. The Operations team aims to support our operational units, projects, and central staff departments of DIVD.

Security Engineer Responsibilities:

  • The concepts behind security-by-design and privacy-by-design are essential to you, and you implement them in every project.
  • Protect data, software, and hardware by coordinating, planning, and implementing security measures.
  • Develop best practices and security standards in collaboration with other volunteers and security experts.
  • Help teams within Operations with risk assessments and make applications and infrastructure more secure.
  • Constantly broadens and deepens knowledge of security principles within team Operations.
  • Create awareness and implementation of security and compliance guidelines
  • Answer questions from other volunteers.
  • Actively participate in team meetings.
  • Help and guide new employees and interns.
  • You keep track of the status of all activities via ticket systems and planning and support tools.
  • You will do this by phone, chat, email, remote support, and video conferencing.

Security Engineer Requirements:

  • We consider motivation more important than knowledge and skills
  • Knowledge and understanding of security principles.
  • The ability to prioritize in a sometimes very demanding environment, strong attention to detail, and a flair for research and analysis.
  • Know how to evaluate measures in terms of risk assessment to make realistic mitigation and balanced choices.
  • A self-starter who can work independently but feels comfortable in a team.
  • Flexible and proactive attitude.
  • Affinity with processes such as ITIL is preferred. The focus is on preventing and solving incidents and on structured changes
  • Keeping good records is a MUST!

Nice to have:

  • A bachelor's degree in an Information Technology-related field of study, preferably specializing in (cyber) security.
  • At least three years of experience in a (similar) network infrastructure related environment
  • It is desirable to have IT security certifications (CISSP, GSEC, Security+, etc.) and ITIL Certifications.
  • Experience with databases
  • Knowledge of Docker Containerization and Virtualisation is a plus.
  • Experience with infrastructure as code (Ansible, Terraform, Kubernetes)
  • Experience working within cloud environments (AWS, Azure, GCP)

Varied work

As you can read, this position is very diverse and offers you various opportunities to grow your technical expertise. Due to the diversity of the group of people we support at Operations, you have a lot of varied work, so we expect you to switch easily.

Competencies:

  • Affinity with security;
  • Customer-oriented thinking
  • Result and solution-oriented working
  • Accurate
  • Flexible
  • Independent
  • Analytical

Our websites

Development

We believe that you develop best when you are doing something you enjoy and at which you are good. Depending on your knowledge and interests, we will work with you to see how we can help you grow further in the direction in which you would like within DIVD.

What to expect when you join us?

At DIVD, we believe that our volunteer researchers are the backbone of our mission to make the digital world safer. Whether you have a day job in IT security or just want to do a bit extra for the rest of the world, we welcome all passionate individuals to join us! Our informal company culture offers plenty of autonomy and flexibility, allowing you to structure your role in a way that best fits your needs. And with opportunities available exclusively to volunteers based in The Netherlands who hold valid EU work permits, there's never been a better time to join our one-of-a-kind volunteer tech collective! Apply below today and help us build a safer digital future for all! #DIVD

Wherever your personal goal is, we will try to make your routine as a volunteer impactful, enjoyable, exciting, and comfortable. You can choose if you want to work remotely or from our office in the Netherlands. You'll receive a set of benefits to improve your work experience. They include a flexible schedule, multicultural environment with colleagues in the Netherlands, a vibrant and dynamic organizational culture, and free access to our online learning platform as you help build a safer internet.

Today, we are one of the most effective volunteer organizations globally that actively makes the digital world safer by reporting vulnerabilities we find in digital systems.

Our researchers typically have a day time job in IT security, but feel the need to do a bit extra for the rest of the world. This position will give you the opportunity to experience our one of a kind volunteer tech collective. Our company culture is very informal and offers plenty of autonomy to structure the role in a way that best fits you as a person. Please note, we require you to be currently based in The Netherlands and to have a valid EU work permit. If you feel excited about this role, please apply below!


Org chart