Security Infrastructure Engineer

We are toogeza, aUkrainian recruiting company that is focused on hiring talents and building teams for tech startups worldwide. People make a difference in the big game, we may help to find the right ones.

Currently, we are looking for a Security Infrastructure Engineer for Rockets Tech.

Company domain: Advertising / Marketing

Location: Remote

Job Type: Full-time

Company:

Rockets Tech ([https://rockets.tech/>) is a state-of-the-art product enterprise that creates sophisticated mobile and web solutions for millions of digital users worldwide.

Role overview:

Rockets Tech is actively seeking a Security Infrastructure Specialist who can safeguard our digital assets and fortify our defences.

Responsibilities:

• Event Collection and Analysis: Gather and analyze events from infrastructure components (websites, servers, databases).
• Security Rule Development and Implementation: Create and implement security rules for scenarios like fake registrations, mass registrations, and DDoS attacks.
• Monitoring and Incident Response: Monitor and respond to rule triggers/incidents, refine response rules, and handle blocking actions.
• Security Incident Investigation: Investigate security incidents.
• Resource and Service Registry: Maintain a registry of resources and services.
• Security Compliance Control: Ensure resource compliance with international security standards and apply the latest security patches.
• Collaboration with Subcontractors and Security Partners: Work closely with subcontractors and partner companies on security matters.
• Administration of Security Systems: Manage security systems such as MDM (Mobile Device Management), BYOD (Bring Your Own Device), SIEM (Security Information and Event Management), and CloudFlare.
• Risk Analysis and Mitigation: Assess existing risks and develop compensatory actions to minimize them.
• Risk Analysis for New Systems and Projects: Evaluate potential risks related to implementing new systems, services, or applications to enhance business processes.

Requirements:

• Experience: Minimum 3 years of experience in IT and/or information security.
• Understanding of IT Infrastructure and Network Security Principles: Familiarity with the workings of IT infrastructure protection systems and network security.
• IAM (Identity and Access Management) Experience: Experience with IAM systems.
• Vulnerability Management Experience: Proficient in vulnerability management systems.
• SIEM Configuration: Experience configuring SIEM tools (Open Search, Splunk, or others).
• Security Policy Configuration for Google Workspace/Office 365: Desired to configure security policies for these platforms.
• Tool Proficiency: Familiarity with tools like Terraform, GitLab, Prometheus, Grafana, Loki, Docker, Docker Compose, PowerBI, HaProxy, Nginx, and LEMP.
• Cloud Solutions: Familiarity with AWS, DigitalOcean, CloudFlare, GCP, and Kubernetes.
• External Audit Experience: Experience with external audits (either undergoing or conducting them).
• Risk and Incident Management Methodologies: Understanding of risk and incident management methodologies.
• Documentation Skills: Ability to write documentation (instructions, policies, guidelines).
• Scripting Languages: Familiarity with programming/scripting languages like Python, Bash/Shell scripts, SQL, and PowerShell (for automation, parsing, API work, and database tasks).
• Security Standards Knowledge: Understanding of general information security management systems (such as ISO/IEC 27001 and NIST).
• Antivirus Systems: Familiarity with antivirus systems; Desired experience with CrowdStrike is advantageous.
• Database Experience: Desired to deploy and administer databases.
• Operating Systems: Desired experience with Windows, Linux, and MacOS.
• English Language: Intermediate or higher proficiency (both written and spoken).

Benefits:

• Medical Insurance
• Vacation: 20 business days per year
• Sick leave without medical certificate: 5 business days per year
• Education budget
• Personal professional training balance

Interview process:

1. Recruitment call — 45 min;
2. Technical Interview — 60-90 min.

Thanks for your interest! In the case of your application, we will review it within 5 working days. If it meets the job requirements, we will arrange a call and will be happy to get to know each other better. Otherwise, we’d love to stay in touch waiting for other opportunities to become available.