Cyber Security Specialist - EU (Germany, Belgium, Netherlands, Luxembourg) - Remote - We are working exclusively with a Global highly respected service provider who works with major EU Government organisations They currently have a unique opportunity for a Cyber Security Specialist to join their talented Senior IT Delivery team. You will need to be based in one of the countries listed above. This is a remote position with some travel (10 - 15%) The Role Our client is committed to protecting all their services from threats, whether internal or external, deliberate, or accidental, that might have an adverse impact on individuals, their activities and our reputation. However, providing the right balance of security controls to protect an information system is a complex task: overly stringent controls will hamper the ability to conduct business, but conversely, if the controls are too weak, information (and organisational reputation) is put at risk, with potentially significant financial and legal consequences. The key purpose of the Cyber Security Specialist role is to provide subject matter expertise to guide the design, implementation and ongoing operation of the systems and services used by the business to provide security-enforcing functions. This role spans ‘Security Architectural Design’ and ‘Security Operational’ activities and will provide technical leadership of functions within the Security Tower and support wider design and bidding activities across the business. The role is primarily proactive in identifying and mitigating existing and potential security weaknesses in the business. The role will report to the Europe CIO. The individual will be self-motivated, able to work with autonomy, and will take accountability for the broad scope of deliverables. The role will be required to manage relationships with and influence senior stakeholders (both internal and external). Responsibilities Provide Technical security leadership within the Business’s operations, covering bids, acquisitions, projects, and BAU operations. This will include security requirements definition, architectural design work in collaboration with the Enterprise Architect Europe and his team of Solution Architects, advice and guidance on security issues, technical risk assessment, guidance on residual risk and mitigation strategies, application of security design patterns and best practices, etc. You will be responsible for providing assurance, management and control of cyber security and enhancing the Security posture in the business’s entities by staying abreast of the latest cyber security trends, threats, and technologies Ensure that the company knows as much as possible, as quickly as possible about potential security risks. You will be responsible for seeking, identifying, and reporting risks and systemic weaknesses in control effectiveness within the business Eliminate (or mitigate) reputational and security risks within the business including identification of weaknesses, improvement areas, non-compliances, and technical debt Security review and analysis of proposed changes to operational services within the business and providing security expertise on likely impact, mitigations, alternative strategies, etc. Engagement with internal and external audit and assurance providers, including IT Security Health Check suppliers, scoping test plans and helping stakeholders interpret the results of the tests and audits, as well as supporting the implementation of any remedial actions, where required Highly engaged in vulnerability management activities across the business (such as identification, reporting and mitigation/resolution) to reduce risk of exploit Contribute to on-going Security improvement initiatives, to ensure that our standard operating procedures, approaches, and protocols remain appropriate and align to Cyber Security best practice Skills & Experience The candidate should have a broad Information Security knowledge, with a deep and current technical understanding of security relating to applications, infrastructure, and cloud services. Excellent communications skills (written and oral) are essential, as is detailed knowledge and practical experience of security-enforcing technologies (firewalls, SIEM tools, Identity and Access Management, etc.). Familiarity with risk management frameworks and methodologies is required. The candidate’s profile is rounded out by non-technical skills, behaviours, and approaches to be an effective Security Lead, e.g., security-minded, curious, investigative, persevering, and thorough. Candidates will have a background in Technical Security, i.e., must have a minimum 6 years’ experience within Information Technology, including at least 4 years’ experience in a Technical Security related discipline (such as Security Operations or Network Security) It is desirable to have an intermediate or advanced level Security qualification (such as CSIM, CISSP or equivalent. Only candidates that are EU citizens will be considered for this position