IT Security Officer

As an IT Security Engineer, you are a hands-on subject matter expert who helps Eneco translate security policies, standards, and regulations into practical and effective security measures.

You work closely with IT colleagues, project teams, and external suppliers to ensure security is embedded by design. At the same time, you play an important role in strengthening Eneco’s security culture, addressing the human side of cyber security through awareness and collaboration.

With increasing regulatory demands such as NIS2, this role is essential in ensuring Eneco remains resilient, compliant, and prepared for future threats.

You are a pragmatic security professional who enjoys being close to the technology and the people using it. You like turning rules and frameworks into practical solutions, and you feel comfortable advising colleagues on how to work securely.

You take ownership, communicate clearly, and understand that good security is as much about behaviour and culture as it is about tools and controls.

• A bachelor’s degree or equivalent level of thinking in Information Systems, Cybersecurity, or a related field

• Several years of experience (typically 3+ years) in an IT security or security engineering role

• Practical experience with a selection of security topics such as firewall configurations, CIS controls, Microsoft Azure security, workplace security, vulnerability scanning, policy compliance scanning, Active Directory / Entra ID, ZTNA, and SSDLC

• Proven ability to translate regulations and standards into actionable security controls and to monitor their execution

• Strong communication skills and a collaborative mindset

• Relevant certifications (e.g. CEH, CISSP, CISM, CISA, CRISC, or Azure-related certifications) are considered a plus

• Translating security policies, standards, and regulations into concrete technical and organisational security measures

• Providing hands-on security consultancy to IT teams and project teams

• Participating in projects to ensure security-by-design principles are applied

• Validating security questionnaires and assessments for external suppliers and partners

• Supporting and executing disaster recovery (DR) tests

• Contributing to awareness initiatives and activities that strengthen Eneco’s security culture

• Monitoring the effectiveness of implemented security controls and proposing improvements

You will join the IT Security, Risk & Compliance team within Eneco’s Tech organisation. This first-line security team supports Eneco’s value chains and verticals in identifying and mitigating cyber security risks while ensuring compliance with internal and external regulations.

The team works closely with IT, projects, and suppliers, in a hybrid setup combining collaboration at the Rotterdam HQ with flexible remote working.

• You work hands-on on cyber security topics that directly support NIS2 and Eneco’s operational resilience

• You combine technical security work with real influence on projects, suppliers, and culture

• You join a professional security team where ownership, learning, and impact are valued