Company details

Aluminium Duffel is a European leader in the manufacture and sale of aluminium rolled products for diverse industries worldwide. It features state-of-the art technology, including the widest Automotive cold rolling mill in Europe and a CALP-line (Continuous Annealing Line with Pre-Treatment).

Our state-of-the-art manufacturing facilities produce rolled aluminium for everything from highly designed cladding for building facades to automotive body sheet. Almost everything we make is manufactured to specific customer requirements. We employ around 1.000 people and produce 200.000 tons of high-value aluminium rolled products annually.

It is our purpose to create a sustainable future for our industry and society. We continuously work to develop innovative solutions that will better position aluminium as the material of choice for customers and consumers seeking high-performance and sustainable products.

The purpose of this function is to implement an information security framework and to protect the company information systems, both at strategical and operational level.

The function covers the management of security for the administrative and the production environment. The Information Security Officer is part of the IT management team and participates in setting the strategic and operational IT improvements.

Function

The most important responsibilities are:

• General IT Governance:

• Design, document, implement, control and improve IT processes & tools
• Manage and support internal and external audits: SOX, ISO, …
• Implement framework and policies for data classification (with regard to AI, cloud-based reporting tools, …)

- Information Security Governance:

• Develop processes and procedures to embed IT security in the organization

and to safeguard systems. This includes application development, network, operating systems, Microsoft toolset and OT.

• Support the teams in implementing the above.
• Embed security in (business) processes: SDLC, IAM, data classification, hire & retire, purchasing, risk
• Create information security awareness on a company level by excellent communication.
• Keep track on the newest evolutions in the IT and security landscape and assess the potential impact for Aluminium Duffel.

- Information Security Manage & Operate

• Handle security alerts and steer or participate actively in incident response and resolution (CIRP)

• Assess and prioritize vulnerabilities, and support remediation
• Analyze business impact and exposure based on emerging security threats,

vulnerabilities, and risks. Communicate security risks and solutions to business

partners and IT staff as needed.

• Collaborate on a daily basis with colleagues, coach and train them whenever

needed to make Information Security an integral part of IT.

Profile

Skills & competencies

• 5 to 10 years of IT work experience of which min 3 in a security function
• Knowledge of ITIL framework
• Knowledge of security frameworks (NIST, ISO 27001 & IS 27002, MITRE ATT&CK)
• Experience with EDR tools
• Experience with Vulnerability Management
• Familiarity with the latest exploits, tactics, techniques and procedures (TTP), vulnerability remediation and security trends
• Security certifications are an asset
• Critical thinker & Analytical

• Can get user buy-in when implementing difficult processes
• Good oral and written communication skills

Language

• Fluent in English and Dutch (knowledge of another language is an asset)

Offer

We offer you a market-conform salary package and interesting job in a challenging environment!