Security Engineer
Appsbroker
- Iași
- Permanent
- Full-time
- Your career matters - You will find ongoing coaching, mentoring, evaluation and feedback to help you grow.
- Amazing colleagues - Work won’t come easy unless we have the right people around us.
- Transparency - We keep you posted every two weeks about our accomplishments and future plans.
- Excellent Life-Work balance (notice the order) - Have commitments outside of work? Let us know - we will make it work for you.
- Regional events and regular socials (in person/remote) to stay connected
- Working with customers to perform active remediation of security findings and proactive management of the security Backlog
- Understand resilient, load balanced and secure platform systems
- Support the continuous improvement of the team’s performance
- Passion for security best practices
- Security Engineering with a DevOps mindset
- Cloud Security operations extensive experience in at least one: GCP, AWS or Azure for enterprise customers.
- Previous experience in implementing and using Security Logging & Monitoring, SIEM integration tooling
- Hands on experience in handling security incidents, working with the customer to drive remediation
- Experience in modern platform architectural patterns such as Automation and IaC using Terraform would be nice to have knowledge
- Experience in Threat & Vulnerability management
- Awareness on Validating controls and provisioning guardrails
- Exposure/ experience in Mapping on-prem controls to Cloud native alternatives
- Excellent English, written and verbal
- Ability to work well independently as well as effectively across multiple teams
- Ability to speak directly to customers (either technical or business teams), managing customer escalations, acting as point of escalation
- You handle security alerts/incidents that have been escalated by the SecOps Analysts/ Specialists
- You will handle security alerts and incidents together with your team
- You do DFIR assignments, including DFIR readiness assessments
- You enable/drive the weekly Threat Hunting duty to proactively chase threats through novel Tools, Techniques & Procedures (TTPs)
- You will perform compromise assessments to identify potential compromises and their scope
- You collect & share Threat Intelligence (IOCs and TTPs)
- You will contribute to the Detection Engineering in SIEM, xDR,
- You enable & contribute to the creation of a scenario in SOAR
- You will be responsible to highlight & implement any improvements that you identify for the processes and procedures related to Security practice
- You will be part of our incident response on call service.
- You have at least 5+ years of experience within the Security industry
- As a specialist or engineer, you already have a good knowledge of Security Monitoring with SIEM technologies.
- You are passionate about the following security capabilities: Security Monitoring, Digital Forensics, Incident Response, Threat Intelligence, Threat Hunting
- You already have the reporting and analytical skills with attention to detail.
- You own strong problem-solving skills with the ability to resolve complex technical issues.
- You are a self starter and able to self-motivate
- You are able to work with limited/reduced supervision as well as contribute in a team and professional environment
- You are willing to learn: Google Cloud Platform, Kubernetes, BigQuery, CloudSQL, Compute Engine, Ansible, Docker.
- You want experience with administration of a major cloud platform
- Networking SSL/Encryption/Security protocols are part of your interests
- Availability for on-call
- Annual leave: we start with 25 days and for each year within Appsbroker we grant loyalty days (1 per year, up to 28 days/year) for more fun and family time
- Every year we can pack our laptops and enjoy up to 30 days of work from a destination of our choice
- Meal tickets
- Health Care package
- NN Assurance package (life and health)
- Transportation costs*
- Remote work, whenever possible
- Floating Bank Holidays
- Bonusly Platform
- Bookster Platform
- Google Certifications relevant to each profile
- Intensive and continuous Google training
- Social Events