Security & Risk Control Specialist

You and your job

Delivering a significant contribution to effectively manage security, incident process management, and life cycle management within the Tech Domain of External Reporting, you’ll collaborate with energized and inspired colleagues. Together, you’ll support all our DevOps teams in maintaining control over the Stability, Continuity, and Security of their services during our daily IT operations (Operational Excellence).

As a member of the External Reporting Tribe, the W&R/Treasury Area contributes to Statistical, Prudential, Financial, Sustainability, and Transparency information (reports and datasets) for Rabobank’s Wholesale & Rural business globally. Our Tribe empowers individual and team ownership by decentralizing responsibilities to the lowest possible level

Top responsibilities:

Lead Security & In-control Backlog:

• Provide strong guidance for all parts of the Tech Domain.
• Establish connections with stakeholders, including infra, DCO, Compliance, Security, and Risk responsible persons.

Proactive Approach:

• Organize a structural approach that includes assessing, reviewing, advising, monitoring, evaluating, and reporting on overarching security topics.
• Address technical consistency and incident management.
• Introduce new Tech priorities and adapt to changing policies (e.g., regulators, security, in control, business continuity management).

Security & In-control Culture:

• Foster growth in behavior and mindset within DevOps teams.
• Promote a strong security and in-control awareness culture.

Implement Site Reliability Framework:

• Develop a shared process for all DevOps Engineers.
• Aim for excellence in daily IT operations.
• Specialize in authorization and coordinate RBAC roles, including periodic authorization checks.

You and your talent

Customer focus, critical thinking, clear communication and interpersonal skills are clearly essential for this role. In addition, it's important that you recognize yourself in everything in the checklist below:

• Bachelor or Academic grade in Information Technology or other relevant subject with additional courses related to IT / Information, Security or Risk management.
• >5 years of experience in different roles within Security, Risk Management, Audit, or Information Technology in a complex organization, preferably in the financial sector.
• Experience in specialized security-related roles (e.g. analyst, engineer, penetration testing, etc.).
• Knowledge of actual technology topics like e.g. security by design, secure cloud computing, Software Defined Infrastructure, Application Network Segmentation, security monitoring, networking technologies, secure architecture, etc.
• Experience with IT security and risk control Frameworks.
• You are familiar with working in DevOps teams and the rituals of Agile / Scrum.
• You have experience with .Net, Cloud, and API.

Key advantages to the role:

• Microsoft Certified Solutions Expert (MCSE): Cloud Platform and Infrastructure.
• Experience as a cloud engineer including platform design on open source technologies