We are looking for a Person - true enthusiast os cybersecurity field. We are starting to build a center of cybersecurity competencies - dedicated for Europe.
Responsible for the definition, implementation and management of IT security policies, standards and baselines, particularly in the area of application security (SDLC, shift-left security) and cloud security.
Responsible for application and cloud security strategic planning, delivery and reporting. Provides security support for business projects delivering new/changed IT business solutions.
Responsibilities:
• Define and update IT security requirements (policies, standards, baselines), in particular in the area of application and cloud security.
• Define and support implementation of application security strategy taking into account cloud operating model and shift-left security.
• Develop and support implementation of cloud security strategy, governance and controls.
• Support delivery and operations of DevSecOps security testing tooling used by delivery teams.
• Support delivery and operations of CyberSecurity solutions protecting applications exposed to the Internet – in particular WAF and DDoS protection.
• Provide security support for business projects – in particular define IT security requirements, support secure design of solutions, check if requirements are implemented and organise security testing prior go-live.
• Support delivery teams and architects community with security advisory.
• Collaborate with other Security team members and contribute development of overall cyber security governance and controls.
• Help manage security incidents and provide a rapid response service in the event of a security breach.
• Monitor cyber security industry, identify new emerging threats and protection solutions.
Requirements:
• Minimum 5 years of Information Technology and 3 year of Security experience,
• Foundational knowledge of all security domains and controls (ISO 27001/2),
• Understanding and working experience of cloud security, application security, secure architecture, DevSecOps tooling.
• Master’s or Bachelor’s degree (Information Technology),
• Excellent English verbal and written communication skills,
• Excellent communication and interpersonal skills,
• Problem solving approach,
• Great work organizational skills.
• Security skills proven with one of industry recognised certifications: CISSP, CISM, CISA, CompTIA, Security+, GSEC;
• Cloud computing knowledge proven with CCSK, CCSP and CSP specific (in particular AWS) certifications,
• Hands on experience with cloud computing security tooling,
• Experience with DevSecOps security testing toolig (SAST, DAST, SCA, etc),
What we offer?
• Rate from 130zł netto/h on B2B contract (it depends on your experience and knowledge)
• Semi-annual evaluation meetings and a clearly defined career path and salary forecast
• A friendly Buddy to guide you through the onboarding further training and career opportunities
• Training possibilities for personal development after completing the onboarding period
• Space to implement your ideas
• Access to language learning platform eTutor
• Fitness card (Benefit Multisport)
• An open and casual company culture filled with internal events
• The opportunity to quickly develop professionally on projects in Europe and all over the world
• Great integration events :)
• Parking space
• Employee Referral Program