Application Security and SSDLC professional

What impact will you make?

The first SQL injection became known to the world around Christmas 1998.  Almost 20 years later, the world of software and application security is still extremely complex, challenging, and attractive for hackers as well as skilled security software engineers. The Deloitte Netherlands Cyber Secure team provides consulting services to customers across the industries (from multinational corporations to small regional players), working together on the quest of increasing the security in software and applications. We are looking for builders, breakers and defenders. 

This is how

Topics and type of engagements you can expect to work on:

  • Manual security code reviews.
  • API security.
  • Static and Dynamic application security test using tooling such as Checkmarx, Fority, Webinspect, Veracode, and others.
  • Building security into the software development life cycle, and Agile SCRUM sprints.
  • Security within Continuous integration, development and releases processes.
  • Providing secure coding training to customers.
  • Vulnerability management.
  • SSDLC.

 Role related activities

  • Directing team members in terms of content and professional skills.
  • Be able to communicate a strong vision towards clients regarding SSDLC.
  • End to end project management of SSDLC related projects.
  • Perform a QA role on project deliverables and provide a high quality result.
  • Financial monitoring of projects you manage.
  • Advise customers and propose technical solutions which both fit within the customer environment and that might be integrated with other Cyber Risk Advisory services.
  • Client relationship management.
  • Manage relations with market, suppliers and SSDLC security expert groups.
  • Be proactive on the topic of business development and acquisition of new projects and in your field of expertise.
  • Adding value to commercial processes and expanding the network of senior stakeholders at our clients.


We are a team of technology enthusiasts, hackers yet professionals who are passionate in helping our customers improve and become ready to enter the world of hacktivists, organized crime, and even nation state actors.  We work as part of one big team of more than a 100 geeks, where each has its area of expertise: SSDLC, red teaming, medical device security, SCADA, incident response, infrastructure protection, cloud security, etc. We collaborate, share and learn from each other.

With offices throughout the Netherlands and well over 5,500 employees, Deloitte is a leading firm in Audit, Tax, Consulting, Risk Advisory and Financial Advisory. Our auditors are market leaders in several market segments. It means you will be working with ambitious, highly educated colleagues, often in multidisciplinary and international teams. Our business culture is pleasant, open and leaves much room for innovation and starting your own initiatives. Our employment benefits suit your ambition and needs and include an excellent leased car scheme, a laptop, an Iphone, and an excellent pension scheme. Top talent rises fast in our organization. Of course we will help you where we can, with a balanced training program, a customized competence model and continuous feedback.

What we offer

  • In addition to a fixed salary, you participate in the profit with us;
  • growth opportunities;
  • development program through which you continue to develop continuously;
  • flexible working hours and the possibility to work from home;
  • 26 days off per year and the possibility to purchase 15 days off per year;
  • a time-for-time regulation for overtime hours;
  • the possibility to take one month of unpaid leave once a year;
  • a good mobility scheme: choice of a lease car with a fuel pass for Europe or a cash option, a public transport annual pass or a travel allowance;
  • a laptop and an iPhone, which you can also use privately;
  • a good pension plan;
  • possibility to participate in the collective health insurance scheme;
  • the opportunity to benefit from tax-attractive matters, such as company fitness and a bicycle plan.

What you offer

Candidates should have at least a Computer Science (Bachelors) degree or similar and a drive to keep developing themselves. Education as Application Security professional will never stop and we expect our professionals to keep developing themselves and keep up-to-date with current techniques and new vulnerabilities.  In exchange, we provide an extensive training and development program, access to conferences. We welcome you in our Capture the Flag Hack.ERS team.

We expect understanding of security concepts (e.g. OWASP, SANS, CVE) and experience and passion in software engineering (coding background).

As the majority of the work will be performed on-site for Dutch and international client base, we expect strong communication skills, and professional proficiency of the English language.

 What are we looking for?

  • Minimum 6 years of relevant work experience
  • Knowledge of secure software development processes, such as SAMM, BSIMM, ISO27034.
  • Extensive experience in conducting and managing SSDLC projects.
  • Good leader, excellent communication skills (spoken and written), the ability to lead a project, able to head teams (Customer and/or Deloitte team) and build good business relations.
  • A holistic understanding of security, good overview of all aspects within security (prevention, detection and response) and relevant certifications (such as such GICSP, CISSP, CISM) are value added.
  • A team player who is eager to both experts in their own field, as well as with experts from other Deloitte collaborate on the best solutions for our customers.
  • Experience in working in a commercial environment is a plus.
  • Stress-resistant, flexible and accurate.

Above all, we are looking for a new colleague who combines a passion for security with a keen interest in creating secure software. Do you want to combine fast software development with creating secure software? Do you think security should help organizations to move faster? Then we might share the same line of thinking and approach and would love to get to know you!

Lets make impact. Apply now!

We would like to receive your application for this position. At Deloitte we are open to all people who bring quality and ambition.

Meer weten? Vraag het aan Lonneke.

Lonneke Machielsen, Experienced Recruiter Risk Advisory

Onze collega's

Profielfoto van Colin Schappin

Colin Schappin

Senior Security Consultant

"Over elk onderwerp loopt er een expert rond binnen ons team."

Profielfoto van Michel van Veen

Michel van Veen

Senior Manager, Teamlead ICS Cyber Security

"Ik word blij van zo veel slimme, enthousiaste en ambitieuze collega's."

Profielfoto van Inge Philips-Bryan

Inge Philips-Bryan

Partner Risk Advisory

"Aanjagen hoeft niet: de nieuwe ideeën vliegen me hier om de oren."

Alle verse vacatures in je mailbox?

Meld je aan voor Deloitte job alert
Naar boven