What will you do?
 

As a Cybersecurity Specialist you will be responsible for defining requirements and developing the overall IT security architecture for GFT customers and GFT internal projects. You will advise to GFT customers in implementing security controls and help the stakeholders in any affair concerning cybersecurity. You will be responsible for conducting security assessments. For this position we need a passionate specialist who will be keen to keep updated on the latest security threats and cloud technologies.

Your tasks

• Reviewing security architecture for deployments of IT systems, defining minimum safeguards, introduce security baselines
• Supporting customer stakeholders in any affair concerning cybersecurity topics
• Providing technical advisory to the customers and internal IT teams to follow the best cloud security practices.
• Deploying and maintaining 3rd party security products
• Conducting risk, network and vulnerability evaluations against defined security requirements. Managing findings (preparing recommendations, guiding owners and administrators, verifying mitigations and fixes)
• Support internal IT teams in implementing security requirements security good practices
• Researching for latest cloud security threats, analyse the current situation and provide feedback for internal cloud security knowledge base. Provide the solutions or workarounds to mitigate the risks
• Conducting risk, network and vulnerability evaluations against defined security requirements
• Supporting stakeholders with managing any security topics, performing analysis on both high level (architecture) and low level (configuration, communication, protocols)
• Providing deep technical advisory to the internal IT teams to follow the best security practices

Your skills

• A Bachelor in Computer Science or similar
• At least 5 years of experience in IT required (2 years of experience in IT Security required)
• Good English written/verbal communication skills
• Being familiar with the basic security concepts: CIA triad, least privileses, need-to-know, defence-in-depth, AuthZ, AuthN, RBAC, fail securely, avoid “security by obscurity”, data security "at rest” and  “in-trasit”
• Good architectural knowledge in the area of at least one of the leading cloud providers is needed (Azure)
• Demonstrated understanding of IT Security domains: security and risk management, asset security, security architecture and engineering, communications and network security, identity and access management, security assessment and testing
• Knowledge on Cloud Native Application Protection Platform (CNAPP) solutions would be of great advantage
• Cross-sectional knowledge of the basics of security technology is appreciated: SIEM, SOAR, IDAM, DLP, IAM, PIM/PUM, DLP; hands-on experience with the usage or deployments of at least one of those would be of a great advantage
• Good understanding of the primitives of cryptography and key management best practices
• Good presentation skills to provide clear and supportive information to non-technical audience
• Ability to work autonomously and to lead tasks assigned from the beginning to the end. It’s a must have skill for this position
• Being able to work with many tasks at the same time
• Good team skills, open for other cultures

We offer you

• Working in a highly experienced and dedicated team
• Contract of employment or B2B contract
• Hybrid work from office – 2 office days per week
• Competitive salary and extra benefit package that can be tailored to your personal needs (private medical coverage, sport & recreation package, lunch subsidy, life insurance, etc.)
• On-line training and certifications fit for career path
• On-line foreign language lessons
• Social events
• Access to e-learning platform
• Ergonomic and functional working space