Сучасна диджитал-освіта для дітей — безоплатне заняття в GoITeens ×
EIS empowers Property/Casualty and Group insurers to out-innovate and out-perform their competition with customer-centered, digital-ready core software solutions for rating, underwriting, policy administration, claims, billing, distribution management and customer engagement.
18 лютого 2020

Infrastructure Security Engineer (вакансія неактивна)

Одеса

Необхідні навички

Possesses deep technical/functional expertise and knowledge in information security
Utilizes security tools, utilities and processes
Performs manual security analysis
Possesses good knowledge of Linux and Windows administration
Experience working with Azure/AWS clouds
Proficient with settings of webservers — Nginx/Apache and cloud load balancers
Experience with firewalls linux/windows settings
Experience tcpdump/iptables/wireshark and similar debug tools and commands for the investigation root cause of issues
Understanding basic principles of CICD workflow, build/deploy/reports/integration security verification into CI processes
Candidate must be able to automate routine processes or workflows: bash, python, go, jenkins pipelines (similar)
Experience in settings of database and identifying bottlenecks, especially in security scope: postgress, mysql, oracle, MSSQL
Possesses knowledge of ISO27001
Knowledge of OWASP SAMM is good to have

Пропонуємо

Variety of new knowledge sharing and training opportunities
Unique international working environment
Сompetitive salaries
Paid vacation and sick leave
Medical insurance
Various social & team-building activities
English lessons
А comfortable location in the heart of Odessa

Обов’язки

Providing technical solutions to identify security vulnerabilities
Detection and patching vulnerable OS libs and software
Involvement in infrastructure solutions and automation efforts regarding security aspects such as passwords, tokens, ssl, secrets management, secured deployment
Monitoring and designing AWS/Azure security rules, patches and solutions
Kubernetes and Docker security aspects, Kubernetes authentification and secrets storage
Nessus management settings/reports, security scan adjustment for infrastructure
Performing Static code analysis as Sonar and reporting vulnerabilities
Source dependency checks — OWASP plugin for verification source code by NIST
Providing guidance in assessing the security of cloud infrastructure, networks, and systems
Developing auditing methodologies to manage and protect data in cloud computing environments
Monitors vulnerability disclosure lists to identify issues affecting EIS systems and infrastructure
Working with ISO project team to identify and implement security controls to meet ISO 27001 compliance requirements
Participating in Risk Assessment and Risk Management as is part of the Information Security Management System
Identifying new security threats by conducting security systems review / monitoring through active watch and review of reported events
Performing testing of the ISO controls
Escalating issues from vulnerability bulletins and discusses countermeasures necessary to protect EIS assets

Про проєкт

EIS Group is a global innovator, providing the insurance industry with transformational platforms to enable their success. We are committed to delivering tools, digital enablement, and exploring emerging technologies that drive efficiency and empower clients to reimagine the possible.
EIS Group is looking for a Infrastructure Security Engineer to join our security team within DevOps. In this role, you will be responsible for ensuring the EIS cloud environments are configured to the highest security standards to prevent cyber-security breaches before they happen. You will play multiple roles, including security engineer providing technical solutions to identify security vulnerabilities, product manager defining and translating risk management requirements into treatments, and iso consultant developing auditing methodologies to manage and protect data in cloud computing environments. The ideal candidate comes with a strong sense for security, a DevOps mindset and shares our vision and values to bring their best in solving these challenges together.

Гарячі вакансії

Всі вакансії