Senior Secure Software Analyst

Job description

Who we are & How we work

As a SIG consultant in the security & privacy team you perform technical assessments and you advice clients. You are involved in software quality in general and your focus is on controlling security and privacy risks in mission-critical systems. Working in the state of the art of this field, you play a central role in world leading analysis of source code, design and the development process. You work in small teams during mostly short-term projects mainly at our headquarters in Amsterdam, (during the COVID-19 epidemic from home), by working with fellow experts and using special tooling. Next to analyzing source code and design, part of your work is interviewing developers and architects, discussing your results with them in workshops and coaching them as part of long-term engagements. Apart from this, you help to further develop capabilities through R&D activities.

Where you come in

  • Typically, your work will consist of:
  • In-depth analysis of code, development practices and design in the SIG certified laboratory, strengthened with the best proprietary and third-party tools
  • Technical workshops with (lead) architects and (lead) developers to understand the technological context, discuss and verify your findings
  • Coaching development teams to help them build security & privacy in
  • Coaching/training SIG colleagues on Security & Privacy assessments
  • Presenting results and providing recommendations to the client
  • Contributing to our methodologies and products with your ideas

You will receive rigorous training in the SIG proprietary toolset and methodologies. We will help you achieve your goals through continuous professional development and regular career progression sessions.

We are not looking for people who just want a job. We are interested in people who want to change the world of software! SIG has high ambitions in making information technology successful.

What's in it for you

We offer you a unique opportunity to join us on the forefront of getting software right. At SIG you can make a difference for the biggest organizations and for critical software systems that have become important in our lives. If you too believe that it is essential to do something about how software is engineered, to get it under control and to prevent serious incidents, then you can be at the heart of progress at SIG.

We offer a job with much variety, continuous learning opportunities and access to unique knowledge. We have close academic relations and our education level is high. 85% of our employees have university degrees and about 30% have a PhD. Our organization structure is flat, providing much room for your initiatives and ideas.



  • Strong expertise on Software Development with a specialization in "Secure Software Development" and a clear vision on typical topics (e.g. OWASP ASVS, static analysis tooling, MS-SDL, threat modelling, privacy by design, cryptography)
  • Knowledge of software security tools
  • 3+ years in software engineering or analysis
  • You have experience with evaluating software systems for vulnerabilities (e.g. pentest, code review)
  • Strong opinion on software security/privacy and the ability to get this across
  • Great team player, to help further grow the security and privacy practice
  • Analytical and able to simplify complex issues
  • Excellent command of English and preferably Dutch
  • Willing to travel occasionally to perform on-site analysis