Москва
We are looking for a DevSecOps/Security Engineer focusing on infrastructure security.
We offer a chance to build complex solutions using cutting-edge technologies and best security practices in an atmosphere of creativity and collaboration.
Your responsibilities will be:
- Perform vulnerability management.
- Ensure network and cloud security (AWS).
- Write Ansible and Terraform scripts for infrastructure management.
- Perform Linux hardening
- Write Python/Bash scripts for automatization
- Perform in-depth security audits to identify misconfigurations
- Design and facilitate comprehensive cybersecurity awareness trainings
- Enhance and implement SIEM and EDR solutions for advanced threat monitoring.
Skills and Experience:
- 3+ years of commercial experience in security roles.
- Proficiency in implementing secure development tools such as SAST/DAST/SCA
- Expertise in containerization and orchestration with Docker or Kubernetes.
- Familiarity with cybersecurity frameworks, such as the MITRE ATT&CK Matrix and NIST standards, for effective threat and risk management.
- Solid expertise in Unix-like operating systems.
- Proven experience with SIEM and EDR for advanced threat detection and response
Will be nice to have:
- Hands-on experience with Privileged Access Management (PAM) and Web Application Firewalls (WAF).
- Practical knowledge of cloud platforms such as AWS or GCP.
- Experience with Ansible and/or Terraform
What we offer:
- Being a part of a modern international technology team, with zero bureaucracy, legacy, and technical debt;
- Great opportunities for professional growth and personal fulfilment: great mentors, a cool atmosphere, professional conferences around the globe;
- Remote work from anywhere in the world, flexible schedule;
- A real wage, pay in hard currency, compensation for VMI, corporate sports, and non-core training.