IT Security Specialist

Project information:

• Industry: IT infrastructure management services; IT consulting
• Type of project: IT Security Operations Services
• Location: Warsaw city center
• Working hours: 8/9 – 16/17
• Project language: English
• Remuneration: to be confirmed; depends on experience
• Project length: 3 months + indefinite
• Assignment start: ASAP (depends on availability)

Job description:

• Provide support in defining, designing, and implementing security related to IT systems
• Evaluate results of security audits and tests, security findings, priorities, plans, and implements remediations
• Identify possible business risks resulting from implementation of remediations
• Provide forensic analysis in response to information security incidents
• Assesses security controls of new applications to establish compliance level and appropriate configuration
• Assists in the support of security technologies such as user access, Internet filtering, email security, antivirus, data loss protection, document management, forensics, vulnerability assessments, collaboration technologies and mobile platforms
• Actively participates in information security reviews and audits
• Updates the technical documentation and operating procedures
• Monitors security systems, responds to events and alerts
• Designs, oversees and/or perform comprehensive technical threat assessments to identify vulnerabilities, exploits, and potential attack patterns. This includes providing reporting on assessment results as well as risk mitigation and remediation recommendations and plans
• Analyses security incidents to determine root cause and identify process or system changes to prevent reoccurrence
• Recommends & evaluates security tools to identify improvements in security measures
• Implements changes according to ICT change management procedures

Requirements:

• Higher education in computer science or related field
• One of the certificates: CISSP, GCIA, GPEN, CEH, ISSAP or equivalent is a must
• At least 6 years of proven professional experience in IT sphere
• At least 4 years of experience in a technical security role, with knowledge and hands-on experience with multiple security technologies, including (but not limited to) patching vulnerabilities in complex systems
• English, at least at B2 level
• Good understanding of security concepts and knowledge of security tools available on the market
• Detailed knowledge of system security vulnerabilities and remediation techniques, including penetration testing
• Good knowledge of network protocols: SMTP, NTP, DNS, LDAP, DHCP, PKI/CA
• Good knowledge of: Windows Server, Workstation, and Linux operating environments
• Strong technical background in storage options, server infrastructure, operating systems, database technologies, and desktop operating systems and security
• Demonstrated understanding of security related technologies and practices, including: authentication and authorization systems, endpoint protection, encryption, segmentation strategies, vulnerability management, secure remote access, firewalls, and intrusion detection/prevention systems
• Experience with security information and event management technologies
• Ability to translate security policies/procedures into technical architecture & configurations
• Understanding of exploitation techniques for various vulnerabilities
• A proactive attitude, team-work spirit, being self-motivated with a strong user orientation

We offer:

• Clear and real opportunities for further career development
• Various external and internal training
• Stable employment contract (B2B or regular employment contract)
• Competitive salary range, wide bonus program
• Good working atmosphere in a brand new business center
• Multisport card and private medical care (premium plus)
• Regular team building / Integration meetings
• Chill out areas
• Free internal language courses and many many more