IT Security Analyst

Job description

Trasys International offers IT Consulting jobs at the European Institutions and International Organizations.

For a project at the European Commission premises in Brussels, Trasys International is looking for a Security Analyst to contribute in the analysis and improvement of security procedures.

Your main responsibilities:

  • Perform IT Security Risk assessments (Evaluate risks, threats and consequences) applying the Commission ITSRM methodology;
  • Draft and review IT security plans;
  • Support System Owners, System Managers and Project Managers on the security risk assessment of client's Information System;
  • Raise awareness of information technology cybersecurity and potential value to a business;
  • Contribute to the definition and the implementation of the security policy and standards;
  • Identify areas for improvement in business processes providing possible Cyber Security solutions compliant with the ICT strategy;
  • Make recommendations on security measures and procedures to senior management;
  • Ensure the reliability, confidentiality, security and integrity of Information Systems;
  • Elaboration and translation of the security monitoring policy into monitoring rules;
  • Provide advice on how to optimize the use of existing tools and systems;
  • Participate in the assessment and choice of Cyber Security solutions;
  • Draft Security Operating procedures (SecOps);
  • Develop or review security configurations / security baselines;
  • Implement (security policy) technical or operational controls at operational level including in products and systems;
  • Provide security training and education;
  • Monitor security developments to ensure data and physical security of the ICT resources.


  • You have a Master's level or 5 years of higher education in Information Technology or equivalent by experience;
  • You have at least 8 years of experience in similar tasks;
  • Minimum 2 years of experience in drafting and reviewing and writing Security Plans
  • Knowledge of risk management methodologies such as ITSRM², EBIOS, CRAMM, PILAR or equivalent
  • Deep knowledge of web application security;
  • Deep knowledge of IT vulnerability and remediation management;
  • Good knowledge of Risk Management methodologies;
  • Good knowledge of Information System Security Incident Management;
  • Good knowledge of Secure Systems Development;
  • Good knowledge of Technical Vulnerability Management;
  • Experience with risk assessment methodologies such as EBIOS, CRAMM, PILAR or equivalent;
  • Experience with ISO 27000 series;
  • Excellent communication / writing skills
  • Capability of working in an international/multi-cultural environment, rapid self-starting capability and experience in working in team; leadership capability
  • Excellent verbal communication skills and ability to participate in multilingual meetings in English and to understand, speak, and write in English (C1 level).

Nationality and Security Clearance

As a Personal Security Clearance of level "EU SECRET/SECRET EU" might be requested for this profile, only candidates with a valid EU citizenship will be taken into consideration.

About us

We are TRASYS International, NRB Group, an ICT company with over 30 years of a successful track record working with European Institutions and Agencies, offering IT consulting, solutions and services. Our Mission is to help our clients keep up with the challenges of digital transformation by providing the right talent at the right time for the right job. To this end, we are constantly looking for talented professionals who are interested in working on challenging international projects and able to deliver high-quality results within multicultural environments. Our services include (but are not limited to) modernisation solutions, digital workspaces, cloud technologies and IT security. Our Headquarters are in Brussels and we have active accounts and offices across Europe (i.e. Luxembourg, Amsterdam, Athens, Stockholm, Geneva).