Freelance Cybersecurity Architecture (ZZP)

About the Role:

As a Medior/Senior Security and Cloud Specialist, you will be a key player responsible for the hardening of the systems and cloud infrastructure we aim to deploy for the Dutch MOD. You will work closely with security architects and development teams to ensure the integrity, confidentiality, and availability of data within a highly classified environment.

You will proactively identify, manage and mitigate the unique security risks and challenges associated with a sovereign cloud. You will be instrumental in ensuring the entire platform adheres to the stringent security standards  

Key Responsibilities:

• Lead the analysis, design and implementation of security controls for a cloud infrastructure operating at a highly classified level.

• Architect and implement advanced cryptographic solutions, including data encryption and Key Management, tailored for high-security environments.

• Drive the development and implementation of stringent security protocols and standards (e.g., NIST, ISO 27001).

• After bid> Facilitate accreditation of the the solution (e.g. execute risk analysis, define mitigating measures, setup technical file)

• Act as a subject matter expert, staying ahead of the latest threats and trends in cybersecurity and proactively proposing solutions.

• Advise stakeholders on security best practices, from strategic planning to implementation and ongoing operations. 

Requirements:

• Education: Minimum of a Bachelor's or Master's degree in Cyber Security, Computer Science, or a related field. A CISM, CCSP, or CISSP certification is a strong plus.

• Experience: 5+ years of demonstrable experience in a similar role within a high-security or high availability IT environment.

• Knowledge of Cryptography: Advanced understanding of cryptographic principles (e.g., hashing, symmetric/asymmetric encryption, PKI, HSM) and their practical application.

• Knowledge of IP network infrastructure: Understanding (e.g. DNS, IAM, NTP, PNAC, firewalls) and ability to manage relation with security aspects (e.g. regarding hardening, segmentation and availability)

• Knowledge of Cloud Platforms: Extensive experience with or certifications for major cloud platforms such as AWS, Azure, or Google Cloud Platform (GCP). GCP-AG deployment experience is a plus

• Knowledge of Cloud technologies: Understanding processor- and network virtualization and application containerization (e.g. Kubernetes, Docker) 

• Specific Skills: Proven experience with government-level security classification requirements is a significant advantage.

• Soft Skills: Exceptional communication skills, strong analytical and problem-solving abilities, and the capacity to work both autonomously and as a lead within a team.

• Dutch and English on B2 level