Locations
- Bulgaria
- Georgia
- Moldova
- Poland
We are seeking an experienced Information Security Engineer to help design and implement the organization’s information security roadmap. This role is pivotal in ensuring the security of IT systems and data, supporting key processes such as risk management, incident management, audits, and compliance management. The position also involves participating in or leading security projects, such as establishing Data Loss Prevention (DLP) and enhancing Security Operations Center (SOC) practices, while also developing security policies and conducting training sessions.
What You'll Do
- Plan and execute the organization’s information security roadmap;
- Develop and implement InfoSec processes such as risk management, incident management, and access management based on industry standards (e.g., ISO 27001/27002);
- Lead or participate in security projects, such as DLP implementation and SOC improvement;
- Create and enforce security policies and procedures;
- Conduct training sessions for employees on security practices and awareness;
- Collaborate with IT groups such as network/system administrators and DevOps teams;
- Leverage threat intelligence platforms for proactive security measures;
- Manage and optimize security technologies, including SIEM, NGFW, antivirus/EDR, and vulnerability assessment tools;
Job Requirements
- 3+ years of experience in the IT industry;
- 2+ years of experience in the Information Security field;
- Process knowledge: ability to develop and implement InfoSec processes;
- Understanding of core security processes such as risk management, incident management, and access management;
- Knowledge of InfoSec standards and frameworks, such as ISO 27001/27002 and NIST;
- Familiarity with system technologies (e.g., AD, DHCP, DNS, SMB) and network technologies (LAN/WAN, TCP/IP, and other protocols);
- Experience with security technologies like SIEM, NGFW, patching, vulnerability assessment, and antivirus/EDR;
- English proficiency at B1 or higher;
- Strong team player with excellent interpersonal and conflict resolution skills;
- Ability to plan daily and weekly tasks independently;
- Willingness to learn and explore new areas in Information Security;
Desired Skills
- Technical knowledge of IT security, including penetration testing and tool customization (e.g., DLP);
- Cloud Security experience, particularly with securing AWS environments;
- Security certifications such as CISSP, CompTIA Security+, or CISA;
- Russian language proficiency;
What Do We Offer
The global benefits package includes:
- Technical and non-technical training for professional and personal growth;
- Internal conferences and meetups to learn from industry experts;
- Support and mentorship from an experienced employee to help you professional grow and development;
- Internal startup incubator;
- Health insurance;
- English courses;
- Sports activities to promote a healthy lifestyle;
- Flexible work options, including remote and hybrid opportunities;
- Referral program for bringing in new talent;
- Work anniversary program and additional vacation days.