We are currently looking for an
IT Security Engineer (mid-level/senior)
with a passion for cybersecurity and a sweet spot for the healthcare sector and the higher education landscape.
If you are someone who can translate abstract technical frameworks into concrete, defensible IT architecture, then do read on…
The Challenge:
Our SHIELD Validated Design (SVD) The reality in healthcare and education is complex: outdated medical devices that cannot be patched, the need for "zero downtime", and a constant tension between ease of use (speed in the emergency room), security (Zero Trust) and policy objectives (ISMS, Audit).
To solve this, we are building the SHIELD Validated Design (SVD). This is not a theoretical document, but a living blueprint of end-to-end best practices based on a realistic reference case: the SHIELD University Hospital (SUH). As an engineer, you will help build, test and validate this model, so that our members have a "menu" of proven solutions at their disposal.
Your Role As an IT Security Engineer, you are the technical force that bridges the gap between policy (the SHIELD Library and CyFun) and the daily reality of the workplace. You will work closely with the Security Officers of the affiliated members and partners, under the operational leadership of the SHIELD Security Architect.
Your focus will be on two important pillars: building and protecting.
I. Building – our architecture and design
You design and validate the building blocks of the SHIELD Validated Design.
· Developing the SVD: You develop specific solutions according to the "Why-What-How" principle. You translate a business need (e.g. protection against ransomware on building management systems) into an architectural design and concrete configurations.
· Policy to Execution: You translate standards frameworks such as CyFun (Cyber Fundamentals) and ISO27001/ISO27002 into technically validated measures. You ensure that policy does not end up in a drawer, but becomes "technically enforceable" in the network and system layers.
· Vendor Integration: You determine how different security products (firewalls, EDR, NAC, SIEM) from various vendors integrate seamlessly with each other within the SUH model.
· Design Validation: You test whether the designed architectures can withstand the realistic scenarios of the fictional, but representative Shield University Hospital (SUH).
· Compliance Mapping: Translating standards frameworks (specifically CyFun) into concrete technical measures within the design
II. Protect – Threat Intel
You act as the "eyes and ears" of the sector by proactively analysing threats and hunting for potential dangers (Threat Hunting).
· Sectoral Threat Analysis: You analyse the current threat landscape specifically for hospitals and universities.
· Threat Hunting: You don't wait for the alarm to go off. You proactively search for indicators of compromise (IOCs) and weaknesses within the infrastructures of the members.
· Advising: Based on your threat intelligence, you feed the SHIELD Validated Design with new requirements to structurally prevent future attacks.
Your profile
Education:
Minimum Bachelor's degree in IT or Cybersecurity.
Experience
:
You have demonstrable, real-world system/security experience as a Security Engineer or Architect. Experience in healthcare or higher education is a strong asset.
Framework Knowledge:
o You have in-depth knowledge of CyFun (Basic/Important/Essential levels).
o You are familiar with standards such as NIS2, ISO27001 and CIS Controls.
Technical expertise:
o You are not tied to a single vendor, but understand the architecture of various security stacks.
o Strong knowledge of Network Security (Segmentation, NGFW), Endpoint Security (EDR/XDR) and IAM (MFA, PAM).
o Understanding of SIEM/SOAR principles and monitoring is essential for your threat hunting tasks.
Language skills:
You are native Dutch and/or French and you can speak and write fluently in English
Other interesting skills:
o You can communicate complex matters clearly to various stakeholders.
o You find your way on uncharted paths and create structure where none yet exists ('greenfield' mentality).
o You are analytically strong and dare to make decisions.
o You enjoy working in a small team, you are curious and eager to learn and you have the ability to communicate complex problems clearly.
About SHIELD
SHIELD vzw is a progressive alliance between hospitals and higher education institutions, with the aim of creating a leading IT infrastructure and (cyber) security architecture. Founded by Jessa Hospital, Hasselt University and East Limburg Hospital, SHIELD strives to harmonise the approach of our members and support them on their path to NIS2 compliance and CyFun certification. From our headquarters in Hasselt, we build bridges between policy and practice.
What we offer
· Impact: You don't work for just one company, but help build the digital security of an entire sector. Your work protects patient data and research results.
· A unique working environment: You will be joining an innovative project (SHIELD Validated Design) that is unique in Belgium: a modular architecture that connects theory and practice via a "living lab".
· Team & Culture: A full-time position within a dynamic team of experts, with ample opportunities for initiative.
· Attractive terms and conditions: A competitive salary commensurate with your experience, supplemented by extensive training opportunities to further develop your expertise in security and privacy.
· Flexibility: Every Monday, you will find the entire SHIELD team at the Corda Campus in Hasselt. You plan the rest of your working week yourself together with your team; everyone can work from home up to three days a week, to be scheduled, depending on what needs to be done that week.
Interested?
Would you like to be one of the architects behind tomorrow's digital defence? Send your CV and cover letter to Kurt Gielen, COO ) or Wendy Roodhooft, Security Architect (wendy.-).
We are recruiting employees on payroll for this position. Freelancers and recruitment agencies, please refrain from applying.
SHIELD has an inclusive recruitment policy. We encourage everyone to apply, regardless of gender, origin, age, disability or background.
Join SHIELD vzw and make a significant difference in the cybersecurity world of healthcare and education.