Information Security Engineer

Дата: 29.03.2021. Город: Санкт-Петербург. Компания: Veeam Software. Отклинуться.
Information Security Engineer
  • Требуемый опыт: От 1 года до 3 лет
  • График: Гибкий график
  • Тип занятости: Полная занятость

We create software solutions for saving and restoring data. We write code for cutting edge technology. Our software helps banks, hospitals, airports, airways, hotels, manufacturers (Hard Rock Hotel and Casino, Gatwick Airport, Telefonica Germany, Telecom Italia, Porsche Informatik, Jumeirah Group, L’Oréal Denmark, Volvo Car BeLux, to name a few) to protect and manage their data. We are 4,500+ employees, 355,000+ customers, 35+ offices around the world. Also, we are fun times, challenging tasks, friendly atmosphere — approximately 365 days a year.

Responsibilities:

· Advanced level of security investigation on following areas: Application Security, Cloud Security, Data Security, Network Security and Perimeter Security

· Cyber Security Incident analysis

· Gather data and drill down to root cause analysis, ability to dedicatedly recommend effective courses of containment and remediation

· Acquire and analyze digital evidence from a variety of workstation, server and mobile platforms

· Generate high quality forensic examination reports to communicate findings clearly and concisely to technical and non-technical business unit managers

· Develop and document cyber security incident response policies and procedures

· Collaborate with team members, leadership and stakeholders, including Legal, HR, R&D and IT

· Develop and suggest improvements to current information security policies, solutions, practices and procedures

· Develop incident escalation processes, and constantly seek to improve existing processes

· Participate in Information Security initiatives and projects

Basic Qualifications:

· Strong knowledge of industry standard security technologies

· Encryption/cryptography protocols and best practices

· Routing protocols and routing table configuration assignment

· Authentication, authorization and directory services

· Ability to develop specific proactive procedures for detection of security breaches and identifying security risks via architecture and design review as well as baseline accepted security standards

· Experience in operating system, application, and network penetration testing and vulnerability assessment

· Experience in liaising with system and network administrators to help remediate the impact of the identified risks and vulnerabilities at the platform level

· Conceptual, analytical and innovative problem-solving and evaluative skills, an ability to conduct independent research and analysis in the event of a security breach, identifying issues, formulating options, proactively closing the security loop-holes, and making conclusions and recommendations

· Knowledge of security controls for network, application and operating systems

· Strong knowledge and work experience with logical access controls to ensure confidentiality, integrity and assurance of proprietary information

· Interpersonal skills; including the ability to work effectively in a team environment

Competencies and technologies:

· Hardware, Network, Application and Policy Auditing

· Risk Assessment/Risk Mitigation

· HIDS, NIDS, Firewalls, Networking, Application, Data, Cloud and Perimeter Security Fundamentals and Best Practices

· Security Incident Handling/Response and Risk Management

· Proper Evidence Handling and Integrity Best Practices

· Knowledge of Viruses, Malware, Spyware, Trojans, etc.

· Log File Analysis and Cyber Security Incident Alerting

· Designing, Engineering and Review of Secure Architectures

· IDS/IPS, SIEM, Web Content Filtering/web proxies, AV/FDE/RME, IAM, MDM, Firewalls, DLP, Application Auditing, Vulnerability Scanning

· Reviews/updates Information Security and Information Services policies

Would be a great plus:

· Knowledge & usage experience of penetration testing tools and security scanners

We offer:

  • Excellent professional and career opportunities in the international team of talented and energetic people
  • Employment according to the Labor Code of the Russian Federation (all payments are fully "white" + 28-Day annual leave, etc)
  • Competitive salary and regular pay rises
  • Flexible working schedule
  • Premium health insurance program for you and your children
  • 100% compensation payments for sick leave
  • Professional training and education: unlimited access to e-library, professional courses and conferences, English classes
  • Sports / fitness compensation
  • Active corporate life: release pizzas, NY
  • Meal Benefit as a meal card with limit; fruits, cookies, coffee in the office.

Relocation package for candidates from another city: payment for tickets to St. Petersburg and one additional salary as a one-time payment.

Job

Об авторе Job

Публикую вакансии по информационной безопасности на CISO CLUB. Разместить вакансию на нашем сайте можно в разделе "Разместить публикацию".
Читать все записи автора Job