Remote Senior Cyber Security Engineer

Description:

• The Senior Cyber Security Engineer will direct and oversee the application security program, ensuring alignment with the broader security strategy.
• This role involves supporting the platform team in their day-to-day operations, projects, and personal development through guidance and mentorship.
• The engineer will manage the vulnerabilities management process in close collaboration with the Engineering teams, providing important metrics to the Security Director.
• The position requires championing the adoption of Secure Development Life Cycle practices within the Platform Engineering team.
• The engineer will maintain robust security architecture across Platform, Data, Development, and Product teams.
• Implementing threat modeling practices into product design and development processes is a key responsibility.
• The role includes aiding in the enhancement and upkeep of security tools used in the CI/CD pipeline.
• Organizing and facilitating penetration testing activities, including defining the scope, planning, and analyzing outcomes, is essential.
• Collaboration with infrastructure and cloud teams to ensure secure configurations across multi-cloud environments, including AWS, Google Cloud, and Azure, is required.
• The engineer will develop and implement security best practices for containerized applications and orchestration tools such as Docker, Kubernetes, GKE, and AKS.
• Providing leadership in incident response processes, ensuring robust cloud-based security incident management and recovery procedures, is part of the job.
• Conducting regular audits of cloud security configurations to ensure compliance with industry standards and frameworks is also expected.

Requirements:

• Candidates must have extensive experience leading application security teams, preferably within SaaS environments.
• Exceptional communication and interpersonal abilities are required to effectively collaborate with multidisciplinary teams.
• Advanced analytical and management skills are necessary for this position.
• A deep knowledge of common application security risks, such as those listed in the OWASP Top 10, and best practices in secure coding is essential.
• Expertise in cloud security services across AWS, Google Cloud, and/or Azure, including IAM, key management, and secure networking practices, is required.
• Proficiency with penetration testing tools and techniques is necessary.
• Experience in Security Incident management and/or operating within a SOC (Security Operations Center), including familiarity with SIEM systems, is advantageous.
• Familiarity with containerization and cloud-native security tools (e.g., AWS Security Hub, Google Security Command Center, Azure Defender) is required.
• Relevant professional certifications (e.g., CISSP, CISM, SANS GIAC, OSCP, AWS Security Specialty, Google Professional Cloud Security Engineer) are beneficial.
• Proficiency in both written and spoken English is mandatory.
• Prior remote work experience is not mandatory but is considered an asset.

Benefits:

• The position offers the opportunity to work in a dynamic and innovative environment focused on cutting-edge technologies.
• Employees will have the chance to contribute to significant projects in various fields, including Tourism Systems, Extended Reality, Blockchain Technologies, Game Development, and Financial Technology.
• The role allows for remote work flexibility, providing a better work-life balance.
• Employees will receive guidance and mentorship, fostering personal and professional development.
• The company promotes a culture of collaboration and teamwork, enhancing the overall work experience.
• There are opportunities for career advancement within a growing global company with a strong market presence.