Csirt Handler

CSIRT Handler

As a CSIRT Handler, you will take on a diverse range of responsibilities, including responding to security incidents, analyzing vulnerabilities, and coordinating large-scale notifications to protect organizations from cyber threats. Collaborating closely with the CSIRT team, you ensure that potential victims are notified and empowered to take action. Your responsibilities include:

• Responding to security reports and incidents.

• Assessing the severity of threats and incidents.

• Converting technical scan data into actionable contact information for affected organizations.

• Developing clear and practical advice how to mitigate risks

• Together with your colleagues you coordinate the entire process, from the first report to the final notification.

Your work directly strengthens the digital resilience of both the Netherlands and the global cyber community. Think of large-scale incidents such as the Citrix security issues in 2020 or the critical Log4j vulnerability. Your efforts ensure that organizations can protect themselves in time.

About DIVD
DIVD is the voluntary fire brigade of the Internet. At the Dutch Institute for Vulnerability Disclosure we aim to make the digital world safer by reporting vulnerabilities we find in digital systems to the people who can fix them. We operate on a global level, but do it Dutch style: open, honest, collaborative, and for free. We mainly work on cases with the volunteers in CSIRT and Research teams. And to support all these volunteers, many great people are in supporting roles.

More about the DIVD CSIRT team
The CSIRT (Computer Security Incident Response Team) is the beating heart of DIVD, responsible for scanning the Internet and notifying system owners of the vulnerabilities found in their systems. Within the CSIRT, the team of CNA Administrators is responsible for DIVD's role as CVE Number Authority (NA). They can independently assign CVE numbers and update CVE records for vulnerabilities within our scope. The team includes about 15 dedicated volunteers, with diverse (technical) backgrounds who give their time and expertise to DIVD.

What kind of skills do you ideally have? 

Technical Skills

• A solid understanding of cybersecurity principles and terminology

• Familiarity with tools and methodologies for vulnerability scanning, data analysis, and reconnaissance.

• Experience with scripting and automation (e.g., Python, Bash, Go, or similar languages) is a plus.

• Basic networking knowledge, including IP protocols, DNS, HTTP status codes, OSI and TCP/IP models.

Analytical and Communication Skills

• (Strong) analytical skills to assess threats and translate technical findings into actionable recommendations.

• Excellent written and verbal communication skills to draft clear, concise, and impactful emails and reports.

• The ability to simplify complex technical concepts for less- and non-technical audiences.

Soft Skills

• A proactive and solution-oriented mindset, with the ability to take ownership of tasks.

• Strong teamwork and collaboration skills, as you’ll work closely with a diverse group of researchers, developers, other handlers, and stakeholders.

• You are quite curious and possess determination.

• Attention to detail and the ability to work accurately under pressure.

This is why you want to join us

By joining us, you'll play a key role in improving global cybersecurity while learning and growing with a passionate team. You’re able to expand your knowledge of threat classification and risk mitigation while developing effective communication skills. This dynamic role combines operations, advisory work, and innovation, allowing you to make a tangible impact on global cybersecurity. 

Volunteer work, but no less important
We need volunteers who can commit to a set number of hours. Even though this is volunteer work, it still requires dedication and responsibility. Ready to make a difference? Apply via the button below and become part of our mission.