IT Security Officer
ITSync
Amsterdam,
Noordholland,
Netherlands
Information Technology
Financial Services
EU Blue Card
Highly Skilled Migrant
Job posted on December 2, 2025
APPLY NOW
Job Description:
Job Information
About Bank Mendes Gans
Bank Mendes Gans (BMG) is the only bank in the world dedicated exclusively to global liquidity and information management for Fortune 500 multinationals. Operating independently from local banks, we deliver multi-currency, multi-country, and multi-bank overlay solutions that simplify complex liquidity environments. As a subsidiary of ING, we combine the stability of a global bank with the agility of a specialized fintech-like organization.
Working at BMG Delivery
Customer satisfaction drives everything we do. We work in cross-functional DevOps squads that own their applications end-to-end—from user story refinement to deployment and production support. Feedback, collaboration, and continuous learning are part of our daily rhythm.
We follow a hybrid working model: 2 days in the office, 3 days from home.
We expect every colleague to bring:
About the BMG IT Security Team
BMG IT Security advises on all matters related to cybersecurity, risk, and secure engineering practices. We partner closely with DevOps squads, architects, and business stakeholders to ensure that our technology landscape remains secure, compliant, and resilient. Our mission is to support innovation while keeping risk within appetite.
Role Overview – IT Security Officer
As an IT Security Officer, you play a key role in strengthening the security posture of our applications, pipelines, and infrastructure. You provide practical, hands-on security guidance to our DevOps teams and contribute to secure development practices throughout the entire software lifecycle.
You are comfortable switching between technical deep-dives, risk-based decision making, and clear communication with teams and stakeholders.
What You Will Do
Requirements Experience & Background
Technical Security Expertise
Risk & Compliance
Soft Skills & Working Style
Nice to Have Requirements
Technical & Tooling
Certifications
Professional security certifications such as:
Industry & Domain
Experience working in:
Additional Skills
Benefits What we offer:
Ready to strenghten the Bank Mendes Gans team? Do you recognize yourself in this profile and are you ready for a new challenge? Send us your resume and motivation and who knows; you might soon be our new colleague!
APPLY NOW
- Date Opened 01/12/2025 Industry Financial Services Salary €4.596 - €7.460 Job Type Full time Work Experience 4-5 years City Amsterdam Province North-Holland Country Netherlands Postal Code 1017 CE
About Bank Mendes Gans
Bank Mendes Gans (BMG) is the only bank in the world dedicated exclusively to global liquidity and information management for Fortune 500 multinationals. Operating independently from local banks, we deliver multi-currency, multi-country, and multi-bank overlay solutions that simplify complex liquidity environments. As a subsidiary of ING, we combine the stability of a global bank with the agility of a specialized fintech-like organization.
Working at BMG Delivery
Customer satisfaction drives everything we do. We work in cross-functional DevOps squads that own their applications end-to-end—from user story refinement to deployment and production support. Feedback, collaboration, and continuous learning are part of our daily rhythm.
We follow a hybrid working model: 2 days in the office, 3 days from home.
We expect every colleague to bring:
- A customer-first mindset
- Clear, effective communication
- Dedication and ownership
- A hands-on, proactive working style
- Team spirit and collaboration
- Commitment to delivering high-quality work
About the BMG IT Security Team
BMG IT Security advises on all matters related to cybersecurity, risk, and secure engineering practices. We partner closely with DevOps squads, architects, and business stakeholders to ensure that our technology landscape remains secure, compliant, and resilient. Our mission is to support innovation while keeping risk within appetite.
Role Overview – IT Security Officer
As an IT Security Officer, you play a key role in strengthening the security posture of our applications, pipelines, and infrastructure. You provide practical, hands-on security guidance to our DevOps teams and contribute to secure development practices throughout the entire software lifecycle.
You are comfortable switching between technical deep-dives, risk-based decision making, and clear communication with teams and stakeholders.
What You Will Do
- Act as a trusted security advisor to DevOps squads across development and operations.
- Translate security and IT risk requirements into actionable specifications, controls, and testing criteria.
- Support teams during penetration testing activities and guide them through issue remediation.
- Provide expertise in secure coding, static/dynamic code analysis, and vulnerability mitigation.
- Help secure CI/CD pipelines, tooling, and automation processes.
- Collaborate with engineers, architects, and business stakeholders to design secure solutions.
- Contribute to continuous improvement of BMG’s security practices, standards, and processes.
- Promote a culture of security awareness, open feedback, and shared responsibility.
Requirements Experience & Background
- 3–4+ years of hands-on experience in IT Security, ideally in a DevOps, software, or financial environment.
- Experience advising engineering or DevOps teams on secure development and operational security.
- Practical experience with secure coding principles, code review, or remediation.
Technical Security Expertise
- Strong understanding of security vulnerabilities and their mitigation (e.g., OWASP Top 10).
- Knowledge of network and web protocols such as TCP/IP, UDP, IPSEC, HTTP, HTTPS.
- Experience with SAST/DAST or other secure code analysis practices.
- Ability to support and interpret penetration testing results and guide fixes.
- Understanding of secure SDLC and DevSecOps concepts.
- Familiarity with securing CI/CD pipelines and related tooling.
Risk & Compliance
- Working knowledge of at least one recognized security framework: ISO2700x, NIST, CIS, or equivalent.
- Ability to translate risk requirements into actionable controls, testing specifications, and documentation.
Soft Skills & Working Style
- Strong communication skills (technical and non-technical audiences).
- Customer-focused mindset.
- Hands-on mentality with clear ownership and urgency.
- Analytical thinking and problem-solving ability.
- Collaborative, team-oriented approach with resilience under pressure.
- Commitment to continuous skill development.
Nice to Have Requirements
Technical & Tooling
- Experience with secure code scanning tools (e.g., Checkmarx, SonarQube, Fortify, etc.).
- Background in cloud security or modern infrastructure practices.
- Exposure to threat modelling or security architecture.
Certifications
Professional security certifications such as:
- CISSP, SSCP, Security+, CEH, CISM, or similar.
Industry & Domain
Experience working in:
- A financial institution
- A complex multinational environment.
- Large-scale DevOps or distributed systems
Additional Skills
- Experience with automation, scripting, or basic coding for security workflows.
- Familiarity with agile security practices or DevSecOps coaching.
Benefits What we offer:
- 12 months contract with the possibility of extension, aiming for internal employment at ING after 18 months.
- A 36 or 40 hour workweek with flexible hours and a hybrid working model (office and home-based).
- Salary range: €4.596 - €6.460 gross per month (based on 36 hours per week, based on experience).
- Additional benefits: holiday allowance, 13th month and pension contributions .
- Relocation services avaialable for international candidates.
Ready to strenghten the Bank Mendes Gans team? Do you recognize yourself in this profile and are you ready for a new challenge? Send us your resume and motivation and who knows; you might soon be our new colleague!