The IT Security Production Tribe supports core identity and access services across a major Belgian bank, and this role exists to operate and harden those services. You will work in the Squad IAM Technologies on authentication and authorization, CyberArk-managed privileged access, scripting (batch and PowerShell), and incident response as part of second/third-line security operations.

The mission

The squad manages end-user access, privileged access provisioning, access recertification and security monitoring for risk-sensitive applications and services. Work covers Windows and SQL Server hosts, Java/.NET tooling, web servers (Tomcat, IIS) and directory services (Active Directory, Red Hat Idm). Your work contributes to vulnerability management, audit evidence, and the squads migration of assets to the group's cloud infrastructure.

On a day-to-day basis you will provide second/third-line support for authentication and authorization issues, manage CyberArk and RBAC configurations, write and maintain secure runbooks and audit artefacts, and tune monitoring and SIEM alerts. You will work with internal stakeholders and external suppliers to close vulnerabilities, respond to security incidents, and support disaster recovery and control campaigns.

Your responsibilities

Own resolution of complex authentication, authorization and privileged-access incidents, reducing mean time to resolution and limiting business impact
Maintain and configure CyberArk and associated PAM tooling to enforce RBAC and lifecycle workflows
Develop and maintain scripts and automation (Windows batch, PowerShell) to provision, reconcile and recertify access
Produce clear, auditable documentation and evidence for controls, standard operating procedures and post-incident reports
Tune security monitoring and SIEM rules, investigate alerts and escalate incidents to response teams when needed
Drive remediation of assigned vulnerabilities and contribute to recovery and disaster recovery exercises

Your profile

Essential skills

Minimum 3 years experience in IT or cybersecurity operations, including 2nd/3rd-line support
Proven capability in authentication and authorization, and in operating IAM RBAC role based access control
Hands-on experience with CyberArk and privileged access workflows
Strong scripting skills with Windows Batch and PowerShell for automation and operational tasks
Solid understanding of Active Directory, computer networking and core IT-security principles
Good technical writing skills for runbooks, audit evidence and operational documentation

Preferred skills

Experience with Identity Access Management solutions (SailPoint IIQ, reconcilers), Single Sign-On and PAM architectures
Familiarity with SIEM, monitoring tools (SCOM, Dynatrace, Elasticsearch, Splunk) and EDR/anti-malware tooling (Trellix, Tanium, Qualys)
Exposure to ServiceNow, GitLab and CI/CD pipelines, Tomcat/IIS administration, and vulnerability management solutions

Languages

French, B2
English, C1

Education

Bachelor or Master degree in IT or equivalent professional experience

Operational Security Engineer Senior

Apply for this role