Home
Jobs
Ypto
Junior Cyber Security Specialist

Junior Cyber Security Specialist

Hybrid

Brussels, Belgium

Full Time

03-04-2025

Share this job:

Score my CV Apply

Job Specifications

Job Description

Join Ypto and Protect the Future of Sustainable Mobility

At Ypto, the IT backbone of NMBS/SNCB, we're dedicated to securing a digital future for the railway industry. We're seeking talented individuals to join our dynamic Cybersecurity team and contribute to critical security initiatives.

Your Role

Security Enhancement: Work on projects that strengthen NMBS/SNCB's security posture.
Technical Expertise: Gain hands-on experience in Identity and Access Management, Monitoring, and Cryptography systems.
Professional Development: Benefit from continuous learning and mentorship from experienced cybersecurity professionals.

Job Requirements

Your Profile:

Academic Background: A Master's degree in a relevant field such as Engineering, Applied Sciences, Management Sciences, Legal Studies, or IT/Technology, with an excellent academic track record. A PhD or Master's thesis in a relevant area like Cryptography or Risk Management is a plus
Technical Skills: A strong foundation in IT and a passion for cybersecurity.
Analytical Mindset: The ability to identify and address potential security threats.
Communication Skills: Effective communication with both technical and non-technical stakeholders.
Language Proficiency: Fluency in Dutch or French, with excellent English language skills.

What We Offer

Impactful Work: Contribute to the digital transformation of a vital public service.
Career Growth: Advance your career through personalized development plans and opportunities.
Work-Life Balance: Enjoy flexible work arrangements, competitive compensation, and comprehensive benefits.
Collaborative Culture: Work alongside a supportive and innovative team.

Ready to Make a Difference?

Apply now and join our team of cybersecurity experts.

Our offer

Benefits

Within our open corporate culture, you contribute to the digital transformation of SNCB. You will have a job with social impact and ample opportunity to make your own contribution. In addition to a good work-life balance and a competitive salary, you will receive the following benefits:

the possibility to work remotely + flexible working hours;
35 days of leave;
a company car + a public transport season ticket;
a comprehensive insurance package (affiliation without own contribution, excl. outpatient costs for family members);
hospitalisation and dental care for the whole family;
outpatient costs (= medical costs separate from hospitalisation);
group insurance: supplementary pension, work disability and death (cafeteria plan);
accidents at work (extralegal);
meal vouchers and eco-vouchers;
net allowances for remote working and carwash + internet budget.

About the Company

As part of the railway family, we supply the necessary IT expertise to SNCB. Together with SNCB, we look for the best way to take travellers comfortably to their destination by fully focusing on modern and efficient railway traffic. Know more

Related Jobs

Company Name: Binit Consulting and Services (Binit C&S)
Job Title: Chief Information Security Officer
Job Description: About Us: Binit C&S is a dynamic consultancy firm based in Amsterdam and Paris, specializing in delivering innovative technological solutions to empower our clients in competitive markets. We collaborate with industry leaders to implement cutting-edge technology that creates real value and drives business success. Role Description For our client, a prominent player in the European insurance sector, we are recruiting an experienced Chief Information Security Officer (CISO) to join an international and forward-thinking work environment. The successful candidate will be responsible for overseeing and advancing the Information Security and Cybersecurity strategy across multiple operating countries. This includes key functional areas such as Workspace, Service Desk, Infrastructure, and Cloud Security. You will ensure that employees and customers operate in a secure, compliant, and uninterrupted digital environment supported by modern technologies, including Microsoft Azure cloud services. The CISO will report to the Head of Infrastructure & Cybersecurity. This is a direct hire with our client. Key Responsibilities Define, maintain, and enhance group-level information security and cloud security policies and procedures. Drive compliance with ISO 27001, DORA, and NIS2 regulations across all relevant entities. Ensure the implementation and effectiveness of security controls across on-premise and cloud environments (with a focus on Azure). Lead efforts to obtain and maintain ISO 27001 certification for all applicable group entities. Perform regular risk assessments and develop mitigation strategies across hybrid infrastructure, including Azure workloads and services. Develop and enforce Azure-specific security configurations and monitoring mechanisms aligned with Microsoft best practices and Zero Trust principles. Monitor compliance and security posture in Azure, including the use of tools like Microsoft Defender for Cloud, Azure Security Center, and Sentinel SIEM. Lead the Security Operations Center (SOC) and ensure efficient response to incidents and breaches. Liaise with stakeholders to promote a security-first culture and provide advisory on information security risks. Track and report on KPIs/KRIs at the group level related to Information Security and Cloud Security. Respond to client RFPs and questionnaires concerning information security. Required Qualifications Degree in IT, Cybersecurity, or related Engineering discipline. Minimum 5 years of professional experience in Information Security or Cybersecurity leadership roles. Proven experience with Cloud Security, particularly in Microsoft Azure environments. In-depth understanding of security frameworks (e.g., ISO 27001, NIST, CIS, COBIT). Relevant certifications such as CISSP, CISM, Azure Security Engineer Associate (AZ-500), or ISO 27001 Lead Implementer are highly desirable. Strong grasp of regulatory compliance including DORA, NIS2, GDPR. Fluency in English and French (both written and spoken). Strong analytical and problem-solving capabilities with a structured and pragmatic mindset. Exceptional communication and stakeholder management skills. Ability to lead cross-border projects and influence security strategy at all organizational levels. What We Offer A competitive salary package based on experience and market benchmarks. A comprehensive pension plan to support long-term financial well-being. The opportunity to join a multicultural, mission-driven organization with a strong focus on security and innovation. The chance to shape and influence the group’s information and cloud security posture at a strategic level.

Company Name: UCB
Job Title: Head of Enterprise Security Architecture
Job Description: Make your mark for patients We are looking for a Head of Enterprise Security Architecture who is experienced, strategic, and innovative to join us in our Digital Technology team, based in our Brussels office, Belgium. About The Role As the Head of Enterprise Security Architecture, you will lead a team of architects and manage the design, development, and implementation of information security solutions across our global enterprise. You will also ensure security standards are met and guide the team in maintaining up-to-date security policies. Who You’ll Work With You’ll work closely with senior stakeholders across the organization, collaborating with IT and business teams to align security initiatives with business objectives. You will also lead a team of architects and consultants. What You’ll Do Ensure alignment with business and IT objectives Lead a team of architects, engineers, and consultants Enhance security team capabilities by delivering solutions and addressing technical inquiries Implement and maintain an Enterprise Security Architecture framework Conduct security reviews for new projects and provide assessments and recommendations Advise on security requirements in line with security standards and emerging trends Interested? For this role, we’re looking for the following education, experience, and skills Security-related certifications (e.g., CISSP, CISM, GIAC) A master’s degree in computer science or Cybersecurity is preferred Over 10 years of experience in IT, specifically cybersecurity At least 3 years of experience as a Security Architect or similar role Strong understanding of cloud computing, data protection, and security design Knowledge of AI security measures is a plus Are you ready to ‘go beyond’ to create value and make your mark for patients? If this sounds like you, then we would love to hear from you! About Us UCB is a global biopharmaceutical company, focusing on neurology and immunology. We are around 8,500 people in all four corners of the globe, inspired by patients and driven by science. Why work with us? At UCB, we don’t just complete tasks, we create value. We aren’t afraid to push forward, collaborate, and innovate to make our mark for patients. We have a caring, supportive culture where everyone feels included, respected, and has equitable opportunities to do their best work. We ‘go beyond’ to create value for our patients, and always with a human focus, whether that’s on our patients, our employees, or our planet. Working for us, you will discover a place where you can grow, and have the freedom to carve your own career path to achieve your full potential. UCB and its subsidiaries encourage diversity and inclusion in the workplace; we are an Equal Opportunity Employer. We do not discriminate on the basis of race/color/religion/sex/national origin/veteran/disability/age/sexual orientation/gender identity. Should you require any adjustments to our process to assist you in demonstrating your strengths and capabilities contact us on EMEA-Reasonable_Accommodation@ucb.com . Please note should your enquiry not relate to adjustments; we will not be able to support you through this channel.

Company Name: AlmavivA de Belgique
Job Title: PEP- Security Specialist-18/04/25
Job Description: Nature Of The Tasks Advises the IT Units in any area and domain related to information and IT security, in close collaboration with the LISO. The security expertise can range from policymaking to operational control, architectural design, training, products and technology knowledge with concern for their updating and maintenance. Assists DG TAXUD in monitoring and coordinating information security and IT security issues, acting as a facilitator to align all efforts towards project objectives. Translates security requirements into technical requirements and architecture design. Verifies compliance of DG TAXUD’s information and information systems with the Commission’s security policy. Assesses the performance of the contractors in the implementation of DG TAXUD’s security requirements. Reviews the quality and conformance of the technical deliverables (specification, software, documentation, security plans) and services with a focus on security and continuity. Monitors the operations and advises on business continuity and disaster recovery. Assists DG TAXUD in the definition of its Information Systems Security Management (ISSM). Clarifies security issues and prevent potential security incidents. Performs technical security assessments and studies. Proposes technical solutions in security-related areas (i.e. privileged identity management, firewalls, vulnerability management). Conducts security assessments and vulnerability scans to identify and mitigate risks. Ensures compliance with industry standards and regulations (e.g., GDPR, HIPAA). Collaborates with development and operations teams to integrate security into the DevSecOps pipeline. Responds to security incidents and provide recommendations for improvements. Ensures the necessary security requirements are complied with from the perspective of data sovereignty, cybersecurity, availability, confidentiality, integrity, etc. Identifies and proposes mitigation actions to avoid security incidents. Ensures technical aspects of the design, implementation, and operations are aligned with security principles, requirements, and expectations. Supports procurement and contract management activities from a security perspective. Reports on the status, risks, and mitigation actions in this respect. Specifically for cloud: o Develops and implements security strategies to protect cloud-based systems and data. o Follows up and coordinates all efforts on design, implementation, and operations of a cloud solution from a security perspective Level:Senior Delivery Mode: Near Site (Brussels) EQF Level 6 in Information Security, Cybersecurity, Computer Science, or a related field.

Company Name: Spektrum
Job Title: Cybersecurity Change Management Specialist
Job Description: Spektrum have a wide range of exciting opportunities in several global locations. We are always looking to add great new talent to our team and look forward to hearing from you. Spektrum supports apex purchasers (NATO, UN, EU, and National Government and Defence) and their Tier 1 supplier ecosystem with a wide range of specialist services. We provide our clients with professional services, specialised aerospace and defence sales, delivery, and operational subject matter expertise. We are looking for personnel to join our team and support key client projects. Who We Are Supporting The NATO Communication and Information Agency (NCIA) is responsible for providing secure and effective communications and information technology (IT) services to NATO's member countries and its partners. The agency was established in 2012 and is headquartered in Brussels, Belgium. The NCIA provides a wide range of services, including: Cyber Security: The NCIA provides advanced cybersecurity solutions to protect NATO's communication networks and information systems against cyber threats. Command and Control Systems: The NCIA develops and maintains the systems used by NATO's military commanders to plan and execute operations. Satellite Communications: The NCIA provides satellite communications services to enable secure and reliable communications between NATO forces. Electronic Warfare: The NCIA provides electronic warfare services to support NATO's mission to detect, deny, and defeat threats to its communication networks. Information Management: The NCIA manages NATO's information technology infrastructure, including its databases, applications, and servers. Overall, the NCIA plays a critical role in ensuring the security and effectiveness of NATO's communication and information technology capabilities. The program Assistance and Advisory Service (AAS) The NATO Communications and Information Agency (NCI Agency) is NATO’s principal C3 capability deliverer and CIS service provider. It provides, maintains and defends the NATO enterprise-wide information technology infrastructure to enable Allies to consult together under Article IV, and, when required, stand together in the face of attack under Article V. To provide these critical services, in the modern evolving dynamic environment the NCI Agency needs to build and maintain high performance-engaged workforce. The NCI Agency workforce strategically consists of three major categorise's: NATO International Civilians (NIC)'s, Military (Mil), and Interim Workforce Consultants (IWC)'s. The IWCs are a critical part of the overall NCI Agency workforce and make up approximately 15 percent of the total workforce. Role Background The NATO Cyber Security Centre (NCSC) is a team of over 200 members working to monitor and protect NATO networks. In the NCSC’s role to deliver robust security services to the NATO Enterprise and NATO Allied Operations and Missions (AOM), the centre executes a portfolio of programmes and projects around 219 MEUR euros per year, in order to uplift and enhance critical cyber security services. Mission The NCSC Service Delivery Support Section (SDSS) is dedicated to centralizing the coordination of cyber security services delivery in a matrix organizational environment. Our mission is to orchestrate the entire service lifecycle, ensuring that services align to and follow enterprise strategy, policy, and directives established by the NCI Agency management, Chief Operating Officer, Chief Service Operations, Chief Technology Officer, Finance and Acquisition departments. We work closely with Service Area Owners and Service Delivery Managers to enable standardized and effective service delivery. In order to execute this work, the NCI Agency requires support with the work undertaken by the NATO Cyber Security Centre (NCSC) in the area of Communications and Information System (CIS) security and cyber defence. This Statement of Work (SoW) specifies the required skillset and experience. Our vision at the NCSC Service Delivery Support Section (SDSS) is to become the central coordination point for cyber security service delivery, enabling seamless and transparent end-to-end delivery of services to our customers. We will achieve this by operating in and leading three core areas that are detrimental for quality service delivery: Service Design, Service Transition, and Service Operations. These areas leads will guide the Service Area Owners and Service Delivery Managers, provide advice and ad-hoc support with their challenges in Service Management. SDSS will also act a single source of truth in Service Delivery metrics and quality, and will provide centralized and coordinated responses to enterprise-level inquiries and reporting requirements. Role Duties And Responsibilities Daily Service Requests review The purpose of daily service requests review is to monitor all incoming Change Requests as well as Service Requests that do not meet the criteria of the pre-approved “Standard Changes” and re-direct them through the Change Management process. The personnel will: Support the team by routinely reviewing the tickets queue to ensure 4 hours response time Multi-channel support (phone, email, internal chat) for change reporting Develop and maintain a change and configuration management dashboard to reflect up-to-date change status at all times Provide regular reporting on change and configuration management performance Escalate critical requests to appropriate channels within 4 hours Technical Review Board The personnel will: Provide meeting minutes The primary purpose of TRBs is to ensure that all Change Requests are properly prepared (investigated, evaluated and risk assessed) for consideration by the D-CAB based on input from all stakeholders who have a vested interest in the Change Requests. Change Manager is expected to lead the meetings and should have sufficient knowledge in Hardware, Systems, Networks, and Cyber Security Tools. Release and Governance Board The personnel will: Provide meeting minutes The primary purpose RGBs is to control the Release and Deployment of all CRs approved by the D-CAB. The RGB maintains the scheduling for deployment, cutover and testing of the CRs to ensure the correct implementation of the changes and verify that implementation has not caused any regression of other services, and report them to the D-CAB. Should RGB would not be required or applicable for the week TRB may replace the activity. Domain Change Advisory Board The personnel will: Provide meeting minutes of analysis of change request monitoring and analysis of events across the Client's networks Internal Change Advisory Board that is chaired by Infrastructure Branch Head to make an informed decision on the Change Manager outputs (assessment, compliance, risk, recommendation). Ad-hoc SME support sessions The personnel will: Attend the meeting with various stakeholders and senior decisions-making staff Create reports that ...