Cybersecurity Engineer / Cloud & Application Security Engineer @ Devire Remote

Cybersecurity Engineer / Cloud & Application Security Engineer @ Devire

Remote

• Cybersecurity for applications and web technologies
• Offensive security knowledge (most common attacks on OS, web applications, CMS frameworks, etc.)
• Automation skills (using various automation platforms or scripting)
• Knowledge of AppSec and Web Security (OWASP Top 10, vulnerability testing)
• Experience with OS hardening (Linux/Windows, CIS Benchmarks)
• Cloud security (AWS, Azure, or GCP; CSPM tools)
• Task automation (Python, Bash, PowerShell)
• Familiarity with security tools (Burp Suite, Nessus, ZAP, Nmap)
• Experience with compliance and security KPIs (ISO 27001, NIST, GDPR)
• Collaboration with SOC / threat detection (SIEM: Splunk, Microsoft Sentinel)
• DevSecOps and CI/CD (SAST/DAST, GitLab CI, Jenkins)
• Creating and updating security standards (policies, procedures)

Devire Outsourcing IT is a form of partnership dedicated to self-employed IT specialists, executing projects for our Clients - leading IT Companies bringing innovations and the newest resolutions to market.

Our client is a multinational nutrition leader with global brands and >100k employees, headquartered in Europe, with EMEA tech hubs and end-to-end manufacturing and supply operations. We are looking for a Cybersecurity Engineer / Cloud & Application Security Engineer who will support and lead cloud & app security in the company.

• Salary: 130-170 PLN/h netto + VAT 
• Location: 100% zdalnie
• Language: communication in English on daily basis

• Salary up to 170 PLN/h netto + VAT on B2B contract
• Remote position in a multilingual environment
• Additional benefit package (medical healthcare, sport membership, etc.)
• Possibility to cooperate with an international company with a stable market position
• Long-term cooperation
• Flexible business work hours

,[Put in place automated and manual controls testing cybersecurity of applications and Web sites including OS hardening., Participate to governance meetings with Cyber teams and other relevant stakeholders., Review requested changes ensuring those changes will not jeopardize cybersecurity and implement relevant controls for the new changes., Follow-up on remediation with stakeholders to ensure each non-compliant control is fixed, Implement controls dashboards and cybersecurity KPIs, Coordination on remediation and remediation validation, Defined action plan to fix vulnerabilities and non-compliance and/or propose mitigation measures, Update cybersecurity standards for Applications, Web sites, OS Hardening taking into accounts cyber incidents and new threats, Define and document Cybersecurity Hardening rules, Help technical teams implementing hardening, Support threat detection and incident response teams] Requirements: Cybersecurity, Web technologies, Security, CMS, Web security, Testing, Linux, Windows, CIS, Cloud security, Azure, GCP, Python, Bash, PowerShell, Burp Suite, Nessus, ISO, NIST, GDPR, Splunk, DAST, GitLab CI, Jenkins

Kategorie

security

Odpovědět na inzerát