Information Security Analyst

About DHB Bank
Demir-Halk Bank (Nederland) N.V. (DHB Bank) was established as a commercial bank under Dutch law in 1992. Headquartered in Rotterdam, the bank conducts its activities through locations in The Netherlands, Germany and Belgium. We also have a representative office in Turkey. DHB Bank is a Dutch bank that plays a unique role within the European financial community. Our retail banking business provides our customers with a wide range of essential products, from deposit and savings accounts to retail and mortgage loans to a lesser extent. But we also have a specialized area of expertise: delivering financial services to Turkish commercial ventures abroad and/or to their European business partners. Our business is centred on client’s first principles. Furthermore, all our clients - both individual and corporate - benefit from our innovative, solution-oriented financial advice and services that can be tailored to specific needs. The company atmosphere is dynamic and pleasant, and thanks to our international focus there is a great diversity of nationalities among our employees. English is the business language of our bank. Our Head Office in Rotterdam is located in the First building within walking distance of the Rotterdam Central Station.

Position Profile
The information security analyst is positioned within Information Security Department and reports to the Head of Information Security Department.
The Information Security Analyst acts an internal control function acting as a watch dog over privilege users digital identities & works closely with first line units to detect infiltration attempts geared towards DHB Bank and provides effective monitoring to ensure timely & effective response with a goal to ensure robust and secure IT infrastructure where confidentiality, Integrity and availability of information can be ascertained.
Analyst works closely with the Information Security Officer for information security related matters and identifies and addresses potential exposures to accidental or intentional destruction, disclosure, modification or interruption of information. After identification of the potential exposures, the analyst   consults/informs the respective team in information technology and other business related groups. 
Analyst also acts as a catalyst to follow up on regulatory requirements thereby pushing related parties to be abreast and in control of regulatory compliance at all times. This in turn helps the bank at climbing the maturity ladder further thereby enhancing the overall organization performance and security posture thereby increasing the cyber resilience measures.
Analyst is also designated as the deputy coordinator for Business Continuity Planning and along with the BCP coordinator responsible to help with carrying out Business Impact Assessments, updating BCP plan, coordinating BCP testing and preparations. Also acts as a coordinator to arrange Committee meeting & follow up on developments & decisions with relevant stakeholders.

Tasks & Responsibilities
Information security management:

  • Monitoring the threat landscape and ingest security information.
  • Proactive follow up, evaluate risks related to infrastructure & ensure timely compliance by IT.
  • Threat monitoring within DHB Bank’s infrastructure.
  • Follow daily trends and where applicable release early warning notifications to different  sections of IT
  • Assist in reviewing/updating the information security policies & keep the procedures updated.
  • Assist in performing Business Impact Assessment & regular upkeep of BCP Plan.
  • Assurance on Vulnerability Management of Servers & workstations.
  • Assist in user Awareness & other trainings.
  • Follow up on regulatory changes, assist in performing gap assessments and ensuring compliance status at all times.
  • Meeting Coordinator for IT-IS Steering committee & SART meetings & follow-up on action items.
  • Educational background; HBO/ University, preferably a technical study like computer science or information science. Preferred job related certifications and/or trainings like C|EH/OSCP. Certifications & education background are not a must for right candidate.
  • One or more years of technical and business experience required, preferably in the banking sector and the IT security environment. Knowledgeable about latest cyber-attacks and techniques, tactics & procedures used by adversaries. A knack of finding weaknesses in the IT echo system and assist at performing triages/root cause analysis.
Skills & Languages:
  • Excellent social and communication skills required, as well as general and project management. Key features are: motivated, analytical, quality oriented, team player, eye for organization, efficiency and flexibility;
  • English language skill is required both in verbal and in writing. Turkish and/or Dutch are desirable.

Are you interested?
To apply, please send a cover letter and CV to (CV in Word or PDF format).
More info can be obtained via HR, reachable at number + 31- (0)10 440 66 65 / 06-51619495.