Location: Almelo, The Netherlands
Department: Team DevSecOps
Deployment: 32-40 hours per week

Group 2000 is a professional company for legal compliance, resilient and smart networks. We contribute by creating intelligent security solutions for law enforcement, intelligence agencies, telecom providers, and internet service providers. Today we are present in more than 40 countries divided over all continents.

As a DevSecOps Engineer, you are part of our security team, which consists of skilled engineers who work in multidisciplinary Scrum teams. The teams are responsible for the security of the products in the following domains: LIMA Lawful Intercept, LIMA Data Retention, and LIMA Network Protect. You continuously improve our products with your team by delivering new increments.

About us

In today’s society Group 2000 takes a pivotal role when it comes to safety and intelligence. As a cyber tech company we enable governments, intelligence agencies and telecommunication operators to collect the right data. We are always on the look-out for the next chapter when it comes to new techniques for our customers. For our customers and employees we co-create, we innovate, we differentiate in an ever-changing world.

Your main tasks

  • You are responsible for secure software development, recognizing security threats, and configuring the network infrastructure;
  • You implement the security measures in consultation with the Security Architects and the Product Managers. Programming is mainly done in Java;
  • You will contribute to testing, selection, and implementation of technologies, tools, and working methods for validating Group 2000 software;
  • You create and/or update the technical documentation of the defined LIMA platforms;
  • You will participate and/or perform Red Team testing on LIMA Product releases; You will translate the result of the Red Team tests to work packages for DevSecOps, R&D, and Customer DevOps;
  • You will perform (security) audits on various deliverables to ensure every element is compliant to security market standards;
  • Integration and validation of common standards for example, SSDLC to further professionalize Group2000 and support R&D with ‘Shift Left Security’;
  • You are willing to make business trips;
  • You implement CI/CD processes with high degree of test automation and security controls;
  • You will configure and finetune the predefined quality gates of the CI/CD processes;
  • You make valuable contributions to the roadmap of our LIMA products;
  • You provide security support and training to various departments;
  • Participation in or lead the security awareness program;
  • Participation in the Group 2000 Watch Desk;
  • You can Identify technical security challenges and propose the best technical solutions;
  • Participation in the incident management & customer audits.

Job requirements & skills

  • At least a bachelor’s degree (University or HBO), e.g. (Technical) Information Technology;
  • You have knowledge of the implementation of risk assessment techniques and the latest security best practices;
  • At the technical level, the DevSecOps engineers must be able to work in a specific environment: Jenkins, Docker, Java, Python, Scripting YAML, SAST (Static Application Security Testing), DAST (Dynamic Application Security Testing);
  • You are able to adapt the DevSecOps culture and principles. Proficiency in security architectures, cybersecurity skills, and knowledge of risk assessment techniques are also required;
  • A few years of work experience in designing and implementing security controls;
  • You are good at working independently, but also in a team or together with seniors;
  • You are able to work within a team and come up with initiatives;
  • Group 2000 works with multidisciplinary scrum teams. In the future, the ‘shift security left’ program can lead to adding DevSecOps to the different R&D teams. Ensuring that security is addressed in the earliest stage of software development;
  • Innovative and self-motivated attitude;
  • Good knowledge of Dutch and English (spoken and written);
  • SSDLC, DSOCP.

Advantages

  • Service- and component-oriented architectures;
  • CEH, OSCP, ISC, CISSP;
  • CIS Benchmark, NIST;
  • Code analysis, Design patterns;
  • Network & telecom protocols (i.e. IP, e-mail, DNS, TLS, SIP, applications, 2G/3G/4G/5G);
  • Network Function Virtualizations (NFV)Containers and CI/CD;
  • Linux;
  • Databases (SQL, Oracle, Postgres, Apache Cassandra, etc.);
  • Security (Pentesting, system hardening, network security, etc.);
  • (Unit) Testing of your own software and peer reviews;
  • Agile / Scrum working method;
  • OWASP, Secrets Management , Vault.

Our offer

  • In addition to your base salary, you also receive holiday pay, 25 vacation days, an annual performance-based company bonus, healthcare compensation, travel or home work compensation, commuting arrangements, laptop, pension plan, training possibilities and more. Working from home is also one of the possibilities.
  • We plan various fun initiatives and activities, such as staff parties, team outings, Friday afternoon drinks and outings of the activities committee.
  • A great working environment within an inspiring company.

Application

Do you want to become a member of our Group 2000 family? For more information or in case you have any further questions, please do not hesitate to contact our HR Manager Mrs. Fleur Knuif-Witkop by mail: jobs@group2000.com or phone: +31 (0)546 482 400.

Before employment, you will need to provide Group 2000 with a Certificate of Conduct (VOG). A personal screening can also be a part of the job application.

Please do not make use of this vacancy as an acquisition opportunity.