Role description and tasks
As the main threat modeler within the security group, your job is two-fold.
Firstly, you are the service owner of the Threat Intelligence service. This service is available to internal customers within and outside the Vanderlande security group. The service is aimed at delivering briefing packages that help the requestor understand the identified cyber security threats relevant to their request and scope. These requests can be ad-hoc when triggered by an (pending) event (e.g., Russia-Ukraine war) or structural when part of a standardized process (e.g., feeding Risks into the Information Security Management System (ISMS)). The aim of this service and thus the content of these briefing packages is mostly at the Strategic and Tactical level.
Secondly, you are heavily involved in continuous improvement of the Threat Hunting service, and our Endpoint Detection and Response service. You contribute to, advise on, and in many cases write up (improved) Standard Operating Procedures (SOPs) and runbooks for the teams involved in operational threat hunting. In case of incidents (after initial triage and dispatch), you may be referred to and contribute to the actual threat hunting as the Subject Matter Expert (SME) supporting the 2nd and 3rd line responders. The aim of these activities is very Operational, using your Tactical SME knowledge.
Position in the team
You support the Corporate security team as follows:
As part of the ISO:27001 based ISMS-PDCA cycle, you provide SME insights into our corporate risk profile and help populate the risk register
Your insights in the Tactics, Techniques and Procedures (TTPs) of malicious and / or criminal hacker groups can be called upon when auditing existing security controls and identifying improvements
You may be called upon for SME advice as part of the security consultancy services provided in the Change Control Boards (CCBs)
You support the Solution security team as follows:
Your research into cyber security threats and trends also extends to the markets in which Vanderlande operates. As such, your knowledge and SME advice may be called upon to gauge the aim and effectiveness of the IEC62443 based Cyber Security Management System (CSMS)
You periodically feed relevant information briefings into the various security SME / champion groups chaired by members of the solution security team, for example in the form of threat landscape reports using 3rd party information and newsfeeds
To better understand risks that are specific to a customer, site, project or service, your expert advice may be called upon as part of the security consultancy services provided in the Business Units
Higher education in Information Security, or similar achieved professional level through experience
At least 5 years of experience within an Information Security related function
Information Security Certifications (CISSP, CEH, ESCA, OSCP, et cetera) are a plus
Languages: English at a highly professional level (C1/C2 level in the CEFRL)
Broad knowledge of cloud and on-premises enterprise IT infrastructures
Broad Information Security knowledge, extended with OT cyber security knowledge
Deep understanding of interpreting and analyzing computer and network related (log)files and traffic captures using a variety of automation tools, or simple PCAPs
Proficiency in PowerShell scripting, Python, interacting with APIs and utilizing the powers of automation
Knowledgeable about and experienced in working with OSINT processes, tools and sources (including the not so exposed or easily accessible ones)
Knowledgeable about and proficient in performing digital forensic investigations of (potential) malware infections, enabling effective transfer to law enforcement (LE) if needed
Knowledgeable about and experienced with analyzing impact of (geo)political movements in relation to cyber threats, e.g., state sponsored or state affiliated cyber-criminal groups
Capable in adopting a context specific narrative for audiences both within and outside IT, and with or without cyber security savviness
Appreciative of a highly culturally diverse work environment
Very capable of separating fact from Fear, Uncertainty, and Doubt (FUD)
Capability to translate business and customer requirements into security requirements and vice versa
Comfortable to deliver in a high-pace and agile work environment
Position within the organization.
Vanderlande is a growing international organization, that is renowned worldwide for its innovative material handling systems for distribution centers and parcel companies and for baggage handling systems for airports.
The Security department is a dynamic and diverse team of highly educated and skilled people within IT. The department fills a crucial role within Vanderlande for both corporate security and the security of our solutions.
As part of your role, you are also in close contact with the Toyota Industries Corporation (TICO) CERT with whom all TICO subsidiaries are cooperating in threat information exchange and cyber threat mitigation.
Note: A background screening relevant for the position may be part of the selection procedure.
What we offer
In the challenging and responsible position of Cyber Threat Modeler, you will have the chance to make a significant contribution to industry-leading projects and be connected to our dedicated people and customers. We offer a position in an informal, international and professional working environment with a lot of opportunities for personal development. By joining our profitable and growing company you will be able to reach your goals and focus on your future.
- On top of your fixed salary, you will receive the following secondary benefits:
- 40 vacation days (20 statutory days and a flexible budget worth 20 days).
- Flexible working hours.
- A hybrid workplace (40% working from home and 60% in the office).
- Commuting allowance, including full reimbursement of travel by public transport.
- Working from home allowance.
- Collective pension scheme and discount on health insurance.
- On-site company health centers with a gym, physiotherapists and occupational therapists.
- Vanderlande Academy and training facilities to boost your skills.
- A variety in Vanderlande Network communities and initiatives.
- And a great company restaurant and coffee bar with barista.
If the challenging profile of Cyber Threat Modeler appeals to you, apply now by filling in the application form and uploading you CV and cover letter. For more information about this vacancy, please contact Dèveny Stultjens, Recruiter, via +31 413 755 273.