Location: 100% Remote (Possibility to work in Warsaw office)
Rate: up to 230 PLN/h
Contract period: 12 months + possible extension
Assignment type: B2B
responsibilities :
We are looking for new team members with aim to define vision, lead and develop cloud, IT and network infrastructure security solutions and who are able manage most of the following topics:
securing cloud, IT and network infrastructure by defining secure architecture and hardening standards,
developing and implementing cloud, IT and network infrastructure security solutions, standards and good practices
maintenance and development of cloud and infrastructure security toolset including CNAPP, CWP, CSPM, CIEM, EDR/XDR, MFA, PAM, SASE, anti-DDoS, identity protection solution, next-generation firewalls and other
securing identities and accesses (IAM) to systems in the organization
monitoring and responding to vulnerabilities, threats and security events relevant to the organization
increasing maturity of cloud, network and IT infrastructure protection, detection and response capabilities
configuration reviews of cloud and IT infrastructure (Windows and Linux servers, network devices, workstations and other)
strengthening DevSecOps culture in the organization
monitoring progress of security related activities in the different areas of the organization and defining action plans
advising IT teams and business on security topics
conducting workshops or trainings to raise knowledge of IT teams.
requirements-expected :
great understanding of security concepts in network, operating systems (Windows, Linux, MacOS), identity and access, databases, virtual environments, Active Directory
knowledge of vulnerability management, system hardening and access management best practices
understanding of key concepts of AWS, Azure or GCP cloud protection and security monitoring
knowledge of docker security principles
knowledge of key security technologies like EDR/XDR, NDR, firewalls, IPS/IDS, PAM, MFA, CNAPP, CSPM
ability to perform cloud & IT infrastructure reviews
understanding of secure architecture concepts and security good practises
knowledge of NIST Cybersecurity Framework, CIS Controls, MITRE ATT&CK and OWASP recommendations and other security good practices
strong analytical skills, including data analysis and reporting
ability to develop automations using simple scripts or tools
great communication skills
At least 6 years of experience in security area
B.Sc. or M.Sc. in cybersecurity, IT, telecommunications, or similar
Security certifications like: CISSP, CISM, CCSP, CEH, Security+, OSCP, CEH or others are a plus
Practical experience with security technologies like EDR/XDR, NDR, firewalls, IPS/IDS, PAM, MFA, CNAPP, CSPM
Understanding of security concepts in network, operating systems (Windows, Linux, MacOS), databases, virtual environments, Active Directory and cloud
offered :
Co-financing of private medical care (Medicover) and Multisport card.
Occasional company integration meetings.
Referral program.
emagine mobile application – easy reporting of working time, quick access to new offers.