Senior Cybersecurity Engineer

N-iX is a software development service company that helps businesses across the globe develop successful software products. During 22 years on the market and by
leveraging the capabilities of Eastern Europe talents the company has grown to 2200+ professionals with a broad portfolio of customers in the area of Fortune 500 companies as well as technological start-ups. N-iX has come a long way and increased its presence in nine countries - Poland, Ukraine, Romania, Bulgaria, Sweden, Malta, the UK, the US, and Colombia.

We seek a highly skilled Senior Cybersecurity Specialist to join our Cybersecurity team. The Cybersecurity specialist will take part in various consultancy projects, including (but not limited to) implementation of security operations practices (incident management, vulnerability management, access management, etc), performing security assessments and reviews, and conducting security testing. The ideal candidate will have experience in cybersecurity operations and a passion for various security domains (network, application, data, etc).

Responsibilities:

• Evaluate customer business needs and understand the related risks
• Define the measures and processes to mitigate customer risks, including
• Monitor security events and alerts from multiple sources, including SIEM and other security tools
• Analyze and investigate security incidents and events to determine the root cause
• Conduct risk assessments to identify vulnerabilities and potential threats
• Participate in incident response activities, including triage, containment, and remediation
• Develop and maintain security documentation, procedures, and guidelines
• Conduct vulnerability assessments and penetration testing
• Monitor and maintain security systems and technologies, including firewalls, intrusion detection systems, and antivirus software
• Collaborate with other teams to ensure the organization's systems and infrastructure security
• Implement secure application development practices

Knowledge and Experience: 

• 3+ years experience in SOC, information security management team, or pentesting
• 5+ years of experience in the IT industry
• Solid understanding of enterprise technologies and security tooling landscape
• Understanding of standard security practices, like incident management, vulnerability management, etc
• Knowledge of modern application architecture (microservices/cloud / asynchronous communication) and threat landscape
• Ability to read application code including CI/CD configurations + Some scripting skills
• General knowledge of application vulnerabilities and related issues
• Professional certifications, such as CISSP, OSCP, CEH, and others are a plus
• At least an Upper-Intermediate level of English

Would be a plus:  

• Endpoint protection toolset
• Familiarity with monitoring tools and SIEM solutions
• Network and vulnerability scanners
• Cloud experience
• Experience with BurpSuite is a big plus