Information Security Engineer

The Information Security Engineer will be part of a team that will leverage their security expertise and experience to partake in design decisions, implement remediation solutions, and respond to security incidents. This role will interact and collaborate with business and security stakeholders to solve issues, meet requirements, and improve quality of security platforms. Technologies that this role will be using are Endpoint Detection and Response, security Information and Event Management, AWS Security tools, web proxies, among others.

This individual will be self-directing, organized, and an effective communicator (verbal and written) who can transfer business and stakeholder requirements into a useable and efficient solution. The individual is expected to perform safe and detailed security testing, use best practice approaches for solution designs, and document and train peers and/or recipients to effectively use/maintain solutions.

What will be your key responsibilities:

Responsibilities

• Serves as the Information Security POC for APAC presence to ensure information systems comply with corporate security practices and policies.

• Provide insight into IT architecture and provide security recommendations.

• Provide incident response for alerts triggered, triaging, containing, and remediating incidents.

• Provide security recommendations for vulnerability management, notifications on emerging threats, and recently announced threats and CVEs.

• Ensure security activities and change management tasks are implemented throughout the SDLC from beginning to end.

• Support development and maintenance of all security documentation such as Incident Response plan, Privacy Impact Assessment, Configuration Management Plan, Disaster Recover, Business Continuity, etc…

• Coordinates with appropriate stakeholders and system owners to ensure proper security controls are implemented and regularly assessed.

What experience should you have:

Required Experience

• Strong networking background with knowledge of security operations and incident response.

• Experience with SIEM; implementing and auditing rules, analyzing logs and using dashboards and reports to provide actionable data to improve security hygiene.

• Experience with endpoint protection tools triaging, containing, and remediating alerts.

• Experience with web proxy tools from a security perspective.

• Experience creating and updating documentation pertaining to Information Security across the enterprise such as ISO27001, Acceptable Use Policy, Incident Response Plan, DR, BCP, SOP.

• Experience with vulnerability management

• Experience with Change Control Methodologies

• Have knowledge of NIST, ISO27001, MITRE framework, and general security best practices.

• Possess strong written and oral communication skills to support customers, internal stakeholders, peers, and public audiences.

• Ability to communicate, both written and oral, to both technical and non-technical stakeholders

• Experience and knowledge of ITIL and how to apply the concepts and practices


What do you get in return:

Our team is composed of experts in their fields who are passionate about delivering high-quality work and maintaining a positive work culture. We value innovation, teamwork, and personal growth. As an experienced Information Security Engineer, you will have the opportunity to make a significant impact on our projects and contribute to the success of our organization. If you are ready to embrace exciting challenges and foster a culture of excellence, we encourage you to apply.

What do we offer:

  • Work remotely from anywhere in the world, with a fully remote team, and enjoy a mutually agreed schedule that fits your needs. 
  • Work primarily with US-based colleagues, providing you with the opportunity to collaborate with people from diverse backgrounds and skill sets.
  • Use your skills and expertise to make a significant impact on the delivery of projects in our company
  • Work in a supportive environment that values your contribution and provides you with the resources and training you need to grow in your career.
  • Enjoy a 40-hour workweek that provides you with a healthy work-life balance, and the time to pursue your personal and professional goals outside of work.


Mám zájem o tuto pozici

Poslat nabídku na e-mail

Další pozice v oboru Informační technologie, region remote

Cybersecurity Consultant

  • Citas
  • Praha hl.m.
  • Dohodou

Hledáme nové posily do našeho týmu! Využijte příležitosti stát se důležitým členem dynamicky rostoucí ryze české společnosti X Consulting, která udává tempo v oblasti síťové infrastruktury a IT…

Cybersecurity Consultant

Embedded Rust Developer

  • Datamole
  • Prague
  • By agreement

Hello, we’re Datamole: a friendly data & AI company of 80+ people based in Prague and Brno. We’re a mix of data scientists, data engineers, and fullstack developers. We develop custom AI, IoT & UI…

Embedded Rust Developer

Javascript/Typescript Engineer

  • Goodcall
  • Praha
  • By agreement

We are looking for a freelance Javascript Engineer for pricing quote solution implementation. Mostly customizations on front end.

Javascript/Typescript Engineer