Information Security Engineer

We're AD/01, the tech studio that builds the future of food retail. Whether it's in-store aisles, online baskets, or behind-the-scenes operations, we innovate the daily food experiences for farmers and families, grandmas and greengrocers, and pickers and packers alike.

We're part of the Ahold Delhaize network, one of the world's largest global food retail groups and a leader in both supermarkets and e-commerce. With 19 strong local brands in Europe, the United States, and Indonesia, we create a meaningful difference for our customers, our people, and the world around us. And we're looking for the freshest minds excited to create the recipe for change.

Your new role and environment.

As an
Information Security Expert
, you will contribute to building and maintaining a strong security posture across our technology landscape.

We are looking for candidates with expertise in a mix of the following areas. Please note, you do not need to check every box to apply

Key responsibilities of your role.

• Act as a subject matter expert for security controls, risk management, and incident response across the organization.
• Support the business (first line of defense) in identifying, assessing, and managing security risks, and in designing and executing internal controls.
• Provide oversight and assurance (second line of defense) by monitoring risk management practices, supporting compliance activities, and facilitating audits.
• Lead or participate in security incident investigations, root cause analysis, and remediation planning.
• Collaborate with engineering and product teams to embed security best practices into systems and processes from the start.
• Deliver security awareness and training sessions to technical and non-technical audiences.
• Contribute to the continuous improvement of our security frameworks, policies, and procedures.
• Support the implementation and operation of security tools and technologies (e.g., IAM, endpoint protection, vulnerability management, SIEM, cloud security controls) without disclosing specific vendor names or configurations.
• Participate in threat modeling, risk assessments, and security reviews for new and existing systems.
• Foster a security-first culture and act as a bridge between technical teams and compliance functions.

What's in it for you?

We ask a lot. (We're looking for the best, after all). But we offer a lot, too.

So, what do we have in store for you? We offer flexible hours and a hybrid working model, allowing you to work both from home and at the office. We provide competitive benefits to support health, well-being and your professional growth. This includes: a significant budget on benefit platform and a yearly bonus. At AD01 we welcome everyone, just the way you are, and encourage individual growth with valuable opportunities and a worldwide across-brand network.

Requirements.

• Security Automation / DevSecOps:
  Develop, maintain, and improve security automation pipelines, including integration with CI/CD platforms.
• Cloud Security:
  Design and enforce cloud security guardrails, participate in cloud security posture management (CSPM), and support secure cloud migrations.
• Vulnerability Management:
  Oversee vulnerability scanning, triage, and remediation processes for infrastructure, applications, and containers.
• Network Security:
  Support network segmentation, policy enforcement, and secure network architecture.
• Endpoint Security:
  Implement and manage endpoint protection solutions and telemetry tuning.
• Security Architecture:
  Develop and maintain secure reference architectures and cross-domain security patterns.
• Threat Modeling:
  Participate in threat modeling, risk assessments, and security reviews for new and existing systems.
• Security Awareness & Training:
  Design and deliver security awareness programs, including role-based training and phishing simulations, for both technical and non-technical audiences.
• Security Program Management:
  Contribute to security program planning, reporting, and cross-team orchestration.
• Foster a Security-First Culture:
  Act as a bridge between technical teams and compliance functions, promoting security best practices throughout the organization.

Apply now

If you're excited to help us grow, then please apply now. If you feel like you might
not
tick all the boxes but have the skills and personality we're looking for, then please also apply now

Got questions? Don't be shy. Madalina Pungaru at , has answers.

For us, diversity means being inclusive of thoughts and skills, generational differences, LGBTQ+, gender, race and ethnicity, disabilities, nationalities and more. We accept everyone for who they are.