Information Security Architect

Are you a visionary with a passion for safeguarding digital landscapes? We're on the lookout for an Information Security Architect who will have a crucial role in designing, developing and implementing comprehensive security architectures and protecting our organization's most valuable assets.

In this pivotal role, you will focus on identifying technical problems/risks, help with designing new processes, and will shape and implement advanced security strategies, ensuring our systems stay resilient in an ever-evolving threat environment. In this role you will collaborate with cross-functional teams and third parties and you will report directly to the Head of Information Security.

If you thrive on solving complex challenges and like to be balancing strategic planning with hands-on expertise, this is your chance to make an impact.

Key responsibilities

Security Architecture:

• Develop and maintain security architectures that align with business needs and industry best practices.
• Lead the design and implementation of secure systems and networks, ensuring robust defence-in-depth strategies across all layers of the IT infrastructure.
• Lead efforts to secure enterprise applications, systems, and databases through proactive security measures such as code reviews, vulnerability scanning, and penetration testing.
• Lead the development of cloud security strategies and frameworks, ensuring secure deployment of cloud-based applications and services (e.g., AWS, Azure, Google Cloud).
• Collaborate with cross functional teams including the Solution Architects to support the development and implementation of IT applications.
• Collaborate with DevSecOps teams to integrate security controls throughout the CI/CD pipeline.
• Drive the adoption of security as code principles, automation of security tests, and vulnerability scanning in development workflows.
• Conduct regular technical risk assessments within IT Service providers and application owners and work closely with the IS GRC Officer to recommend risk mitigation strategies.
• Participate in field research in pursuit of new solutions and to evaluate the applicability and usefulness of current solutions.

Third-Party Management:

• Oversee the security posture of third-party vendors, managed service providers (MSPs), and Security Operations Centres (SOCs).
• Establish and enforce security standards and SLAs for third-party partnerships.
• Ensure continuous monitoring of third-party access to critical systems and data, performing regular security assessments of third-party services.

Job Requirements

• Minimum of 8+ years of experience in information security, with at least 3 years in a security architecture role.
• Strong knowledge of security frameworks, such as NIST, ISO 27001, and CIS controls.
• Extensive experience with cloud security platforms (AWS, Azure, GCP), application security and IT infrastructure security.
• Industry certifications such as CISSP, CISM, CISA, or AWS Certified Security Specialty are strongly preferred.
• Excellent communication and interpersonal skills, with the ability to collaborate effective across technical and non-technical teams.

What we offer

This role offers you a great opportunity to work in a small team that could have a great direct impact on the business. Other than that we take care of the following:

• Competitive compensation and benefits such as;
• 25 vacation days + 12 ATV days
• STI
• Hybrid working model
• Travel allowance
• Free use of the gym at the Amsterdam office

About ERIKS Digital

We are ERIKS Digital. The global IT, technology, and data hub of ERIKS, a multinational industrial service provider with a strong presence in Europe and APAC. We’re a diverse and international team of smart, curious, hard-working colleagues who are energized to deliver our mission to become the world’s most digitally advanced specialized industrial service provider. Making not just ERIKS, but our entire industry more efficient, effective, and sustainable.

Every day, we work to digitally transform ERIKS; executing digital initiatives such as improving how all colleagues at ERIKS work with data, providing innovative digital solutions for our customers, and integrating digitally with all our trading partners: All while ensuring we improve the day-to-day operations of the thousands of our colleagues across ERIKS, that enable us to serve our customers.

Our strong team culture is fostered by an environment where you are encouraged to develop yourself, grow and with colleagues across ERIKS Digital and the rest of ERIKS.