Security Architect (F/M)

Group 2000 is a professional company for legal compliance, resilient and smart networks. We contribute by creating intelligent security solutions for law enforcement, intelligence agencies, telecom providers, and internet service providers. Today we are present in more than 40 countries divided over all continents.

As a Security Architect, you are the captain of  (information) security for Group 2000 IT and our products. With a dedicated team, you will protect our customers from cyber-attacks and reduce the impact of security incidents by creating a secure (technical) architecture.

You will lead a security team of skilled engineers working in multidisciplinary Scrum teams. The team is responsible for the security of the products in the following domains: LIMA Lawful Intercept, LIMA Data Retention, and LIMA Network Protect. You continuously improve our products with your team by delivering new increments.

In today’s society Group 2000 takes a pivotal role when it comes to safety and intelligence. As a cyber tech company, we enable governments, intelligence agencies, and telecommunication operators to collect the right data. We are always on the lookout for the next chapter when it comes to new techniques for our customers. For our customers and employees, we co-create, we innovate, we differentiate in an ever-changing world.

• You are responsible for secure architecture, recognizing the security threats, and configuring the network infrastructure;
• You are capable of creating and maintaining a security roadmap that consists of a multitude of internal security improvement programs and security findings;
• You can contribute to testing, selection, and implementation of technologies, tools, and working methods for validating Group 2000 software;
• You will create and/or update the technical documentation of the agreed solution;
• You will participate and/or perform Red Team testing on Product releases; You are able to translate the result of the Red Team tests to work packages for various departments;
• You will perform (security) audits on various deliverables to ensure every deliverable is compliant to market standards;
• You will Identify technical security challenges and propose the best technical solutions;
• You will lead various security programs (for example, the ‘Shift Left Security’ program); to improve the security, modify architecture and infrastructure to withstand new threats or modifications that are required by (privacy) law;
• The security architect oversees security projects and policies, you need to delegate duties and coordinate with fellow team members;
• The security architect is able to define clear goals and lead his/her team towards those goals, including a definition of done;
• Plan and prioritize the security backlog and is responsible for providing the security team with an adequate workload;
• Timely, correct, and complete weekly and monthly reports based on clear and understandable KPI’s;
• Inform and present to the organization and stakeholders on (intermediate) achieved results;
• You are willing to make business trips;
• You implement CI/CD processes with high degree of test automation and security controls;
• You are able to define quality gates for the CI/CD processes;
• You are familiar with standards for Identity Access Management, KPI, Firewalls, IDS/IPS, encryption but also a securing cloud environments;
• You can design and implement security controls in areas like networks infrastructure, Firewalls. IDS/IPS, Identity Access Management, KPI, data protection, encryption, etc.;
• You make valuable contributions to the roadmap of our LIMA products;
• You are able to train and educate other departments to reach a higher level of security;
• Participation in or lead the security awareness program;
•  Participation in the incident management & customer audits.

• At least a bachelor’s degree (University or HBO), e.g. (Technical) Information Technology;
• You have knowledge of the implementation of risk assessment techniques and the latest security best practices;
• At the technical level, the security architect must be able to work in a specific environment: Jenkins, Docker, Java, SAST (Static Application Security Testing), DAST (Dynamic Application Security Testing);
• You have knowledge of the DevOps culture and principles. Proficiency in security architectures, cybersecurity skills and knowledge of risk assessment techniques are also required;
• A few years of work experience in designing and implementing security controls;
• Budget responsible for relevant project within the security team;
• Proven work experience as a team leader or supervising a team;
• Responsible for training and education of the members in the security team;
• Plan, coach and evaluate the performance of the relevant team members;
• Interview with potential candidates for the security team;
• You are good at working independently, but also in a team or together with seniors;
• You are able to work within a team and come up with initiatives;
• Innovative, self-motivated attitude and strong communication skills;
• Good knowledge of Dutch and English (spoken and written);
• Preferably in possession of one of the CISM, CISA, DSOCP certificates;
• ISMS related knowledge of for example ISO 27001 and NEN 7510.

• Service- and component-oriented architectures;
• CEH, OSCP, ISC, CISSP;
• CIS Benchmark, NIST;
• Design patterns;
• Network & telecom protocols (i.e. IP, e-mail, DNS, TLS, SIP, applications, 2G/3G/4G/5G);
• Network Function Virtualizations (NFV)Containers and CI/CD;
• Linux;
• Databases (SQL, Oracle, Postgres, Apache Cassandra, etc.);
• Security (Pentesting, system hardening, network security, etc.);
• (Unit) Testing of your own software and peer reviews;
• Agile / Scrum working method;
• OWASP, Secrets Management, Vault.

• In addition to salary, you also receive holiday pay, 25 vacation days, annual performance-based company bonus, healthcare compensation, travel or home work compensation, commuting arrangements, laptop, pension plan, training possibilities, and more. Working from home is also one of the possibilities.
• We plan various fun initiatives and activities, such as staff parties, team outings, Friday afternoon drinks, and outings of the activities committee.
• A great working environment within an inspiring company.

Do you want to become a member of our Group 2000 family? For more information or in case you have any further questions, please do not hesitate to contact our HR Manager Mrs. Fleur Knuif-Witkop by mail: jobs@group2000.com or phone: +31 (0)546 482 400.

Before employment, you will need to provide Group 2000 with a Certificate of Conduct (VOG). A personal screening can also be a part of the job application.

Please do not make use of this vacancy as an acquisition opportunity.