Верхняя Красносельская улица 3с2
KEY RESPONSIBILITIES
• Participating in security incident investigation
• Participating in design and deliver security policies for company
• Ensure compliance with applicable Policies, Standards, Requirements and Directives
• Manage collecting and monitoring logs, improve log-analytics system
• Operate WAF and SIEM solutions
• Work in a cross-functional portfolio team alongside peers from Data and Systems Integration
• Assess new technologies, build PoCs and measure their success against desired outcomes
• Design, implement and review architectural and configuration changes in our security systems
• Opportunity to learn and implement security IaC systems with CI/CD environments and pipelines for our SaaS and on premise firewalls
PLEASE APPLY IF THE POINTS BELOW DESCRIBE YOU
• Experience as a security engineer
• Understanding security concepts, routines and principles in cloud and on-prem
• Basic knowledge of SIEM and WAF security solutions — understanding the purpose and typical structure of these solutions, as well as the main types of web application vulnerabilities; especially interested in the experience of operating these solutions to investigate incidents, simulating typical attacks when testing the operation of these solutions
• Basic knowledge in networking (CCNA level or higher) — OSI model, switching, routing, common protocols, classless networks, IPv4 subnetting, VPN types
• Basic skills of OS administration (Windows, Linux) — command line, network configuration, users and rights management, working with a domain, information about processes and services, typical troubleshooting, logging set up
• Troubleshooting applications and performance problems in a mixed Linux-Windows environment including networking
• You are results-focused and able to clearly demonstrate success via proven metrics
• You are apt at building working relationships across the business to facilitate the accomplishment of goals, leverage learning and share best practice
• You deliver presentations clearly and succinctly convey information and ideas
WILL BE A PLUS
• Scripting languages (Powershell, Bash, Python, JavaScript…)
• Monitoring systems and time series databases (Prometheus, Grafana, etc.)
• IaaS, SaaS security solutions (Azure Sentinel, CloudFlare)
• Basic knowledge in security appliances (like Fortigate, CheckPoint, Cisco ASA, etc.) — understanding the principles of operation of filtration systems
• Infrastructure As Code (Terraform, Salt, Ansible, Puppet, Chef, etc.)
