Вакансия Security Engineer

22 вакансии
Специализация: Other
Уровень: Middle
Опыт: 2 года
Уровень английского: Не важно
Город: Минск
Режим работы: Полный день
Размер компании: 100

At Currency.com, we are on a mission to make the world of finance more accessible, engaging and useful. We are a Fintech company with a difference, using innovative technology to develop the most easy-to-use and transparent financial trading platform on the market. We are looking for a proactive security engineer to join our growing team.

The Security Engineer will be responsible for contributing to and implementing the company’s information security strategy and supporting the company’s business and technology strategies. The successful candidate will be responsible for monitoring and securing company systems, evaluating technology, and integrating IT and third-party systems with sound security policies and information protection strategies.

Key Responsibilities:

  • Understand the technology landscape and identify vulnerabilities that may affect the security, integrity, or reputation of the company, its applications, infrastructure, and data

  • Document the current state, the desired future state, and any gaps related to the IT Security function

  • Define practices and approaches to detect weaknesses in systems and propose ways to rectify them
  • Provide consultation, analysis, and guidance to improve the security plans for new projects

  • Participate in information security standard audit and evidence gathering activities
  • Monitor systems and review logs and alerts to proactively detect abnormal activity as a possible indicator of compromise

  • Participate in internal information security risk assessments and controls selection activities

  • Participate in vendor risk assessments and technology evaluation

  • Remain updated on threats, and vulnerabilities related to security, information security, and privacy and make that information available and consumable by a broad range of business and IT stakeholders

  • Participate as a member of the Incident Response Team.

Essential Requirements:

Demonstrated understanding of:

  • network fundamentals and design

  • system administration across multiple platforms

  • enterprise, role-based authorization tools, techniques, design, and best practices

  • intrusion detection and prevention, forensic IT

  • security methodologies, tools, and best practices

  • desktop, mobile, server, application, database, and network security principles for risk identification, analysis, and mitigation.

Alongside a demonstrated ability to implement security controls that comply with government, corporate, and local regulations.

Knowledge of:

  • server hardening

  • securing cloud and hybrid architectures

  • security baseline

  • secure configuration and change management

  • secure development practices

  • log monitoring and SIEM principles and tools.

Benefits:

  • Professional and friendly working environment

  • Exciting assignments in a local and international environment

  • An opportunity to grow and learn

  • Attractive benefit package

  • Medical insurance & additional sick-days and paid sick leave.

F6b2809f51ebb1c1615737d32302dc89
Представитель компании