EGI Federation Home
About
EGI Foundation
EGI Federation
EGI Infrastructure
EGI Community
EGI Digital Innovation Hub
Foundation Team
Frequently Asked Questions
Services
Services for Research
Services for Business
Services for Federation
Solutions
Use Cases
Success Stories
EGI for Data Spaces
EGI for EOSC
Projects
ENVRI-Hub NEXT
EOSC Beyond
iMagine
interTwin
RI-SCALE
SPECTRUM
Project Archive
Resources
EGI on Zenodo
Magazine
Newsletter
Publications
Training Materials
Media Kit
News & Events
News
EGI Conference
Community Events
Trainings & Webinars
Participate
Join the EGI Federation
EGI Access Call
Careers
Share Your News and Events
Contact Us

Job: Information Security Manager

Deadline: 10 April 2025
Matthew Viljoen
Service Delivery and Information Security Lead
Description
Requirements
Offer
Procedure

Job description

We’re looking for an Information Security Manager to assist in the coordination of the EGI production infrastructure, focusing on Information Security of the delivered services. The ISM Manager’s role is to maintain the EGI Foundation’s ISMS which is certified against ISO/IEC 27001 and to work with the suppliers of the EGI Foundation services and the members of the EGI Federation to effectively manage the delivery of secure and reliable services to customers through well-defined and agreed policies, processes and procedures.

The Information Security Manager and Service Delivery Officer works within the Service Delivery and Information Security Team and reports to the Information Security and Service Delivery team lead.

Job Purpose and Responsibilities

Specific responsibilities include:

Information Security Management
  • To manage the ISMS, defining and enforcing Information Security policies for the Organisation, in collaboration with the EGI Security Policy officer and the EGI Data Protection Officer, making sure the Organisation conforms to relevant national and European regulations.
  • To participate in the Integrated Management System Coordination team at EGI Foundation. 
  • To maintain the ISMS conforming to ISO/IEC 27001 requirements and ensure the Organisation retains certification of these standards through participation in auditing activities.
  • To raise proper Information security awareness of the staff by ensuring they are trained appropriately and providing documentation, advice and support.
  • To implement physical, technical and organisational information security controls to reduce the probability and impact of identified information security risks. 
  • To periodically review security policies and controls at planned intervals. 
  • To manage information security events and incidents, liaising with the EGI CSIRT Manager and coordinating with and supporting the EGI CSIRT as needed.
  • To manage the control and provision of access rights for information-processing systems and services supporting the Organisation activities.
  • To liaise with the EGI Security Policy Group to represent the Organisation interests.
  • To follow policies-related and other security-related activities to represent the Organisation interests.
  • To ensure that Information Security is duly considered in the context of all Organisation activities.
  • To work with the SMS Manager on Information Security Management activities.
  • To periodically report to the management on Information Security activities he is responsible for.
Service Delivery
  • To supervise the status of the EGI Foundation and EGI Federation services.
  • To support the Operations Centers of the EGI Federation.
  • To take responsibility for specific activities, procedures and processes within the Integrated Management System of the Organisation.
  • To participate in incident and problem management handling issues that concern multiple providers and/or multiple service components and technologies.
  • To liaise with the operations teams of other digital infrastructures to ensure interoperation and compatibility of policies and procedures of service management processes.
  • To provide reports and participate in audits as required.
  • To contribute to the gathering, development and maintenance of documentation.
  • To represent the organisation at conferences, symposia and workshops.

Relationships

  • With the Service Delivery Lead and the members of the Service Delivery Team to contribute to the definition, implementation and monitoring of the Service Delivery Annual Plan.
  • With the Operations Management Board and other operational teams to define, maintain and evolve service management system policies for the EGI Federation.
  • With the members of the EGI Federation who evolve the tools which support the Integrated Management System.
  • With the Integrated Management System process managers to support the implementation of processes and procedures.
  • With the Solution Managers to report issues and participate in piloting activities.

Requirements

Essential requirements

  • Computer Science university degree
  • 5+ years of cyber security experience (7+ years required to be considered the senior level)
  • 3+ years experience in running large, diverse and complex IT operations environments
  • Technical knowledge of Cloud computing and related technologies (e.g. virtualisation, containerisation, standards and service models) is required.
  • Demonstrated experience in delivering and managing IT tools,  such as Confluence, Jira, mailing lists, etc. 
  • Ability to travel, mostly in Europe and occasionally worldwide
  • Training in formal IT Service Management (e.g. ITIL, FitSM) and Information Security Management (e.g. ISO27k) is a plus.

Offer

  • This is a full-time (40 hours per week) position, preferably in Amsterdam, with options for remote work within Europe. The 40 hours are spread over five eight-hour days. We offer flexible working hours: outside the core hours, you can adjust your daily start and finish times to suit your own schedule and commitments.
  • Remote and teleworking options. If employed in the Netherlands, you can opt to work from home up to 3 days per week. If employed elsewhere in Europe, you can work from home, depending on your location, for up to 100%. Remote and Telework is foreseen from your principal residence in the country of your workplace. Other workplaces are possible for up to 3 months in a calendar year. 
  • The position is offered for a period of one year, with the possibility of renewal upon satisfactory performance.
  • Depending on experience, for an employee working in the Netherlands, gross salary for a full-time position will be in the range of €5,830 – €6,702 per month, with additional holiday (8% annual gross) and end-of-year (5% annual gross) bonuses. For employees stationed outside the Netherlands, the salary will be determined by applying the country-specific coefficient correction, and bonuses and benefits will be aligned with the local regulations of the respective country.
  • In the Netherlands, employees are entitled to 31 days of annual leave (pro rata). For employees residing in other countries, the specific number of leave days may vary depending on the applicable national labour law regulations.
  • Non-native employees new to the Netherlands may be eligible for a special tax benefit if moving to the Netherlands.

Equal opportunities

The EGI Foundation is committed to creating a diverse environment and is proud to be an equal opportunities employer. All qualified applicants will receive consideration for employment without regard to race, colour, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age or veteran status.

Process and timeline

  • Closing date for applications: 10 April 2025
  • Expected starting date: as soon as possible.

 

To apply

To apply, we invite you to send us the following two items by email, to jobs@egi.eu

  • A cover letter (in PDF format), explaining your motivation for applying and how you meet the requirements outlined above.
  • A CV (in PDF format), max 3 pages.

Incomplete applications will not be considered.
We only accept applications via email: jobs@egi.eu.
No recruiters please.