We seek a highly skilled Senior Cybersecurity Specialist to join our Cybersecurity team. The Cybersecurity specialist will take part in various consultancy projects, including (but not limited to) implementation of security operations practices (incident management, vulnerability management, access management, etc), performing security assessments and reviews, and conducting security testing. The ideal candidate will have experience in cybersecurity operations and a passion for various security domains (network, application, data, etc).
Responsibilities:
- Evaluate customer business needs and understand the related risks
- Define the measures and processes to mitigate customer risks, including
- Monitor security events and alerts from multiple sources, including SIEM and other security tools
- Analyze and investigate security incidents and events to determine the root cause
- Conduct risk assessments to identify vulnerabilities and potential threats
- Participate in incident response activities, including triage, containment, and remediation
- Develop and maintain security documentation, procedures, and guidelines
- Conduct vulnerability assessments and penetration testing
- Monitor and maintain security systems and technologies, including firewalls, intrusion detection systems, and antivirus software
- Collaborate with other teams to ensure the organization's systems and infrastructure security
- Implement secure application development practices
Knowledge and Experience:
- 3+ years experience in SOC, information security management team, or pentesting
- 5+ years of experience in the IT industry
- Solid understanding of enterprise technologies and security tooling landscape
- Understanding of standard security practices, like incident management, vulnerability management, etc
- Knowledge of modern application architecture (microservices/cloud / asynchronous communication) and threat landscape
- Ability to read application code including CI/CD configurations + Some scripting skills
- General knowledge of application vulnerabilities and related issues
- Professional certifications, such as CISSP, OSCP, CEH, and others are a plus
- At least an Upper-Intermediate level of English
Would be a plus:
- Endpoint protection toolset
- Familiarity with monitoring tools and SIEM solutions
- Network and vulnerability scanners
- Cloud experience
- Experience with BurpSuite is a big plus
We offer:
- Flexible working format - remote, office-based or flexible
- A competitive salary and good compensation package
- Personalized career growth
- Professional development tools (mentorship program, tech talks and trainings, centers of excellence, and more)
- Active tech communities with regular knowledge sharing
- Education reimbursement
- Paid vacation days, sick leaves, and days off
- Healthcare & Sport program
- Medical insurance
- Memorable anniversary presents
- Corporate events and team buildings
Romania, Poland, Colombia, Bulgaria
