We are looking for a hands-on Senior Information Security Engineer to take ownership of our day-to-day security operations.

This is a key individual contributor role within a growing InfoSec function. You will work closely with our external SOC partner, internal IT teams, and clients to ensure effective monitoring, incident response, and vulnerability management.

KEY RESPONSIBILITIES

Security event monitoring & incident response: Oversee SIEM monitoring in collaboration with an external SOC provider, review and investigate alerts, coordinate incident response, and act as a point of contact for clients during security incidents.
Vulnerability management: Review and prioritize vulnerabilities identified through tools such as Tenable, support remediation with IT teams, and coordinate penetration testing activities, ensuring timely follow-up and resolution of identified issues.
Security operations development: Support the development and continuous improvement of security operations processes within a growing InfoSec function.
Risk & compliance support: Perform internal risk assessments and support ISO 27001 and GDPR-related processes, audits, and documentation.
Security advisory & awareness: Support IT teams in security investigations, provide technical security expertise, and contribute to security awareness initiatives across the organization.
Client & external engagement: Support client-facing security activities and participate in external assessments, audits, and investigations when required.
Reporting & metrics: Prepare operational and management reports, track KPIs, and monitor security performance.
Threat awareness: Stay up to date with emerging threats and industry trends to continuously improve the organization's security posture.

Core experience

Strong hands-on experience in Security Operations, including incident response, SIEM monitoring, and vulnerability management.
Experience working with SIEM tools and external SOC providers, including alert investigation and incident handling.
Practical experience with vulnerability management tools (e.g. Tenable) and remediation processes.
Experience coordinating or supporting penetration testing and remediation activities.
Experience working in environments with high security and client requirements.
Good understanding of modern cyber threats, attack vectors, and data exfiltration risks.
Ability to work independently, take ownership, and operate effectively in a changing environment.

Security & compliance exposure

Working knowledge of ISO 27001 processes and security controls.
Experience supporting security audits, documentation, and compliance activities.
Familiarity with GDPR and data protection requirements.

Education & certifications

Relevant certifications (e.g. CISSP, CISM, CEH or similar) are expected.
Experience with ISO 27001 (Lead Auditor or similar) is a plus.
Degree in Cybersecurity, IT, or a related field is preferred.
Full-time contract.
Hybrid type of work.
Medical healthcare and Multisport card.
Opportunity to shape and improve security operations in a growing global environment.
High level of ownership and autonomy.
Friendly and open-minded teams.