Cybersecurity Engineer

• Planning, implementing, managing, monitoring, and upgrading security measures for the protection of the Solar Digital’s data, systems, and networks.
• Participating in the change management process by reviewing release work items (RWI)
• Testing and identifying network and system vulnerabilities / Work with the GIS/CAT security team to perform tests and uncover network/application vulnerabilities.
• Automation of security controls and support to application development teams throughout the secure software development life cycle (S-SDLC) on a variety of security domains
• Responding to all system and/or network security breaches.
• Ensuring that Solar Digital’s data and infrastructure are protected by enabling the appropriate security controls
• Participate in application threat modeling and attack and penetration testing activities
• Conduct cybersecurity risk assessments of Solar Digital/Caterpillar developed and purchased applications (incl. CSIRT reviews)
• Perform/participate in Log Analysis for/with teams
• Develop best practices and security standards for the organization
• Understand various standards and regulatory compliance requirements (such as SOC-2, ISO 27k,IEC62443)
• Participate in the construction of a “cyber-safe culture” within the company by supporting the various teams and customers in the implementation of good safety practices
• Daily administrative tasks, reporting, and communication with the relevant departments in Solar Digital/Solar Turbines
• Employee is also responsible for performing other job duties as assigned by Solar Digital management from time to time
• You have advanced English and communication skills (B2/C1): clear and concise communication; able to address stakeholders of different backgrounds and technical expertise

Basic qualifications:

• Bachelor's Degree or relevant experience in Cybersecurity, Computer Engineering, Information Technology, Information Systems or related field
• Proven record of strong technical understanding (penetration & vulnerability testing, Identity & Access Management, Application security & encryption technologies)
• 3 years or more of relevant industry experience
• Strong understanding of Agile methodology, preferable Scaled Agile Framework
• High level experience with computer network penetration testing and techniques
• Ability to identify and mitigate network vulnerabilities and explain how to avoid them
• You communicate in Slovak and English

Top candidates will also have:

• Interest in working collaboratively with engineering leadership, product owners, software developers and other key stakeholders.
• Ability to work independently without any (or minimal) degree of supervision.
• Passion for technology and an eagerness to contribute to a team-oriented environment
• Some degree of Cloud experience
• Pro-active thinking - being flexible and creative
• Self-motivated mentality - individual with passion in latest technology trends
• Strong communication skills and the ability to collaborate with other team members
• Ability to adapt quickly to a complex environment
• Experience with secure coding practices (SDLC), DevSecOps, Pen testing and Threat modeling
• Triaging, categorization & escalation of vulnerabilities
• Understanding of OWASP Top 10 (Web, Mobile & API), SANS 25, CVE's
• Proficient experience with leading vulnerability management tools
• Have basic programming language skills (Java or .Net or Python) and scripting skills (Python, Powershell, Bash)
• Have an associate-level IT certification from a vendor such as Cisco, CompTIA, AWS, ISC2 or another, ideally in the cybersecurity/information security field. Other IT-related certifications are also welcome

• Extraordinary opportunity for personal and professional growth in both local and international, friendly and fun environment of growing Fortune100 company in Slovakia
• Competitive Compensation
• Generous Pension Plan (Company’s Contribution to “3rd pillar”)
• Life Insurance
• Extra 5 days’ vacation on top of the legislative entitlement
• Employee assistance program for employees and their family members
• Employee Referral Program
• Flexible working hours
• Remote Work / Home Office