Вакансия: Junior Security Information Engineer/Analyst

Industry leader in online/mobile banking technology seeks information security professional responsible for AWS hosted (multi-tenant) infrastructure security monitoring.

This position is full-time remote.

Main responsibilities:

- Perform continuous event monitoring in context of security incidents and provide appropriate reaction

- Communicate with other teams (Tech Support, Dev teams) upon discovered security incidents

- Be ready to prepare various high level reports related to different aspects of InfoSec awareness (current security incident reports, current vulnerability findings report)

- Be involved in Vulnerability Management process: internal scan activities, periodic reports review, findings assessment, official vulnerability disclosures monitoring

Other responsibilities:

- Assist in TLS certificate management

- Be involved in risk management raised from infrastructure changes and enhancements

- Assist in log aggregation and event correlation activities

Assist in other InfoSec-related activities:

- Currently applied security controls effectiveness evaluation (firewall rules, user access permissions etc)

- Current security controls enhancements and new related projects implementation

- Internal workflows, procedures and instructions development

Main Requirements:

- 1-2 yrs experience related to security monitoring (and/or security systems administration, InfoSec solutions implementation)

- Familiar with Amazon Web Services

- Familiar with general well known security guides, recommendations and compliance docs (e.g. ISO/IEC 27001-27002, PCI DSS, NIST guides/recommendations, CIS Benchmarks, SSAE16/SOC2, OWASP)

- Familiar with general network and Web-services:

LDAP (MS AD)

Web publishing/proxying (IIS, NginX)

DNS, NTP

ssh

TCP/IP protocol stack knowledge

HTTP, SSL/TLS protocol knowledge, symmetric/asymmetric cryptoprotocols

- Familiar with OpenVPN/IPSec

- Familiar with OS-based security configuration aspects (MS Windows Server, CentOS)

- Experience with common security tools:

Any Network scanners (nmap, OpenVAS, Nessus, Nexpose, Qualys etc)

Any LogAggregation/SIEM (ELK, AlienVault/OSSIM, splunk etc)

Any WAF (NAXSI, ModSecurity etc)

- Familiar with InfoSec related community resources

IP reputation lists

IDS-IPS/AV signature lists

CVE MITRE, NIST NVD, OS/App security announcements

- Ready to work with multi-national teams

- Good written English (intermediate/upper-intermediate)

- Good communication skills

Be a plus:

- Experience with AWS security features:

ACL/SG

IAM

Amazon Inspector

GuardDuty

etc

- Experience with ELK-stack (especially Kibana visualizations)

- Familiar with configuration automation (Chef)

- Familiar with git (GitLab, BitBucket)

- Any security related certification (COMPTIA Security+, GIAC, AWS Certified Security, CCNA)