Your Career @ Yonder

Security Officer, Mid/Senior Level, Cluj-Napoca

You’re welcome to join the fun and… embark in a learning journey full of continuous technical & non-technical development opportunities.

If you’ll join us you will have…

Experience and skills:

  • Information Security Mindset
  • Network Architecture and Audit skills
  • Good understanding of web application architecture and their security relevant aspects
  • General knowledge of Authentication and Access Control (Principle of Least Privilege, Authentication, Authorization, Access Control Models – DAC, MAC, RBAC, ABAC, SSO)
  • General knowledge of knowledge of Cryptography (Foundations, symmetric/asymmetric encryption, PKI, PGP, SSL/TLS, Kerberos)
  • General knowledge of knowledge of Threat Modeling (common attacks: web, protocol or network based, Intrusion Defense/Detection/Prevention, Firewalls, Malware, Honeypots)
  • General knowledge of knowledge of Vulnerability Management (Network, Application Scanning, WAF)
  • General knowledge of Networking concepts (Firewalls, TCP/IP, UDP, ICMP, DNS)
  • General knowledge of Scripting languages (Bash, Python, Ruby)
  • General knowledge of Web Servers (e.g. Nginx, Apache, Tomcat)
  • General knowledge of Database engines, backups
  • General knowledge of Physical security
  • General knowledge of Wireless technologies & VoIP
  • Experience with Linux/Windows Administration (General/Networking Utilities, Security Tools, Configuration, File, Process, Software, System, Patch, User, Log Management)
  • Experience with Version Control Systems (e.g. Git, SVN)
  • Experience with Logging and monitoring solutions (e.g Graylog, Elasticsearch, Kibana, Logstash)
  • Experience with Configuring, troubleshooting, deploying Web applications
  • Preferred experience as an internal auditor for ISO/IEC 27001
  • Preferred experience using configuration management tools
  • Passion and curiosity
  • Sense of ethics, integrity
  • Proactive mindset and drive to find and address root causes
  • Understanding of the business context of the projects
  • The ability to challenge (the client, the team)
  • Analytical, detail oriented and creative problem-solving skills
  • Good written and verbal communication skills
  • Great communication and presentation skills
  • Ability to explain technical issues to both technical and non-technical audiences
  • Good organizational skills
  • Ability to organize and prioritize tasks
  • Entrepreneurial, innovative and continuous improvement mindset

Responsibilities:

Acting as an Information Security Officer for ISO 27001 compliance in the Iasi and Cluj Offices:

  • Responsible for implementing Security and Compliance requirements, keep ISMS up to date
  • Performing internal audits to ensure the effectiveness of the ISMS and continuous improvement
  • Develop and improve operational and engineering practices and procedures
  • Consultancy for projects on security challenges

Respond to information security events and incidents by:

  • Performing assessment on information security incidents, report and derive next actions
  • Reviewing changes inside the organization with an impact on information security
  • Reviewing asset requests from information security and data privacy perspective
  • Conducting risk assessment with stakeholders to identify, mitigate risks and monitor treatment

Assure that network and endpoint setups are compliant by:

  • Performing internal network audit and endpoint security
  • Developing or integrating, together with the Internal IT team, a system that ensures endpoint security (phones, tablets, laptops, workstations)
  • Streamline manual reviews of processes, assets, security events, controls

Requirements:

  • 3+ years of network and security experience (combined) or equivalent combination of education and experience
  • Linux Fundamentals, MSCA, ICND Certification, Comptia Security+, CEH are considered a plus

What values are we looking for?

  • Continuous improvement mindset
  • Sense of ethics, integrity
  • Entrepreneurial and innovative mindset
  • Professional and positive attitude

For more details feel free to get in touch: Mircea.Motogna@tss-yonder.com

*Please note that by applying for this role you give your consent to have your personal data processed by Yonder for this role and for future ones.
You can find more details about our policy 
here.



Follow us

Copyright © 2019 Yonder • SitemapPrivacy policyCookies policy