The Cyber Security Officer will join the Solutions and Services team within the NMBS CISO organisation (Cyber and Information Security Office), a team consisting of technical specialists.

Your main activities will consist of

  • assist in different cyber security projects and coordinate third parties, to deliver the security solutions required to protect the NMBS organization
  • perform the third level support of the incident response activity in collaboration with the NMBS CSIRT team, which includes root cause analysis, remediation and forensics
  • facilitate the necessary penetration tests to protect NMBS’s applications and infrastructure in collaboration with the business and third parties
  • centralise all vulnerabilities and manage the remediating actions.

Additionally you will

  • extend and improve security solutions & services
  • define and check the use cases for Security Incident Event Management (SIEM)
  • validate IT projects (and changes) and solutions (Ypto, business) are built according to the requirements and standards of solutions and services.

The Cyber Security Officer will work closely with operational managers and IT project managers to identify or mitigate cyber security issues, with IT Project Management Office to align with existing IT processes, with Information Security Officers to align on risk and compliance and with the NMBS Data Protection Officers to guard privacy.


We are looking for an all-round cyber security expert with a deep technical understanding of a wide range of security concepts.

  • Bachelor's degree or equivalent experience
  • 3 to 10 years of relevant experience in cyber security
  • Spoken and written fluency in English
  • Spoken and written fluency in Dutch or French
  • Good knowledge of the OWASP top 10, testing guides and verification standards
  • Knowledge of red team - blue team tactics
  • Experience with penetration testing web/mobile applications, networks and systems
  • Familiar with vulnerability management process
  • Knowledge of SIEM (Sentinel), Forensics and Malware analysis
  • Hands-on experience with Linux distributions such as Redhat and Ubuntu
  • Familiar with Azure cloud security concept
  • Programming experience with Python and/or Front-end Angular/Html/CSS/Bootstrap
  • Ability to query and manipulate databases using SQL
  • Able to use PowerShell and Bash to automate tasks and administer machines
  • General technical IT security knowledge such as encryption, PKI, OS hardening, anti-virus, etc are a plus

Our offer

Within our open corporate culture, you contribute to the digital transformation of SNCB. You will have a job with social impact and ample opportunity to make your own contribution. In addition to a good work-life balance and a market-related salary, you have:

  • the possibility to work remotely for up to three days per week + flexible working hours;
  • 35 days of leave;
  • a company car + a public transport pass;
  • a target bonus;
  • a hospitalisation insurance (including dental care) for the entire family, a group insurance and a disability insurance (cafeteria plan), without own contribution;
  • meal cheques and eco-vouchers;
  • net allowances for remote working and carwash + internet budget.
Apply for this job
Apply for this job
Location icon


Department icon

IT Security

Contract type icon


Share this vacancy


3 reasons to choose Ypto 

Icoon uitdagingen: bergtop

Challenging projects

At Ypto, you never stand still. Every day is different and offers the opportunity to be challenged to innovate in order to find the best solution for our customer.

Maatschappelijke impact icoon

Social impact

Through your work, you contribute to the future of Belgian railways and have a tangible impact on millions of people.

Doorgroeimogelijkheden icoon

Growth opportunities

Initiative, trust and self-management are key. You will have the support of your colleagues to develop and the opportunity to grow.

Application procedure

Did you apply for a position at Ypto? Or are you curious about how our application procedure works? We follow the four steps below each time. Depending on the position, an additional interview or assessment may be required.


CV screening

We take a close look at your CV and check whether it matches the profile you are looking for. We may call you briefly to ask about your motivation and experience.


Interviews and questionnaire

If the outcome of this screening is positive, you are invited to a (video) interview with your direct supervisor and your HR Business Partner. During these interviews, we discuss your motivation, knowledge, experience and skills as well as the content of the job. We also talk about the online questionnaire you filled in prior to the interview.


Reference analysis

Finally, we contact the references you will have provided. This way, we can make you out better.


We have a match: welcome to Ypto

Have you been selected? If so, we will be happy to draw up an attractive proposal and welcome you to our organisation.

Spontaneous application

Would you like to work with us on the future of SNCB but cannot immediately find the right vacancy? Then feel free to submit a spontaneous application. Who knows, you might soon be part of our team!