+

Вход

Въведи своя e-mail и парола за вход, ако вече имаш създаден профил в DEV.BG/Jobs

Забравена парола?
+

Създай своя профил в DEV.BG/Jobs

За да потвърдите, че не сте робот, моля отговорете на въпроса, като попълните празното поле:

26 + 44 =
+

Забравена парола

Въведи своя e-mail и ще ти изпратим твоята парола

Една от всички 668 обяви за Infrastructure в София

Виж всички

Mid-level Security Engineer

ArmadilCo | дистанционно
Remote
Тази позиция позволява отдалечена работа

Only in

dev.bg

Тази обява е публикувана само в DEV.BG Jobs: Преглеждаме значимите български сайтове за обяви за работа (с поне 400 IT обяви за работа). Тази обява не е публикувана в нито един от тях.
22 апр.
Обявата е публикувана в следните минибордове
  • Plovdiv, Bulgaria
  • Съобщи за проблем с обявата

Съобщи за проблем с обявата

×

    Какво не е наред с обявата?*
    Моля опиши ни, къде е проблемът:
    За да потвърдите, че не сте робот, моля отговорете на въпроса, като попълните празното поле:

    Although the role is remote, we are looking only for candidates that reside in Bulgaria. Relocation packages are not offered.

    ArmadilCo Ltd. is looking for Mid level Security Engineer with experience in Vulnerability Assessment & Management, Secure Development Lifecycle (SDLC), Threat Modeling and security tools for Static Code Analysis, Software Composition Analysis, Dynamic Vulnerability Scanners and Security Risk and Prioritization Analysis.

    At this position you will have the opportunity to work with top Medical Device, Critical Infrastructure and Financial companies primarily from the United States, expanding your knowledge and experience in a niche that is in extremely high demand now and in the foreseeable future.

    You must be a growth minded individual thriving when learning new things and committed to always expanding, personally and professionally.

    Joining our startup, you should be ready to help with not just the technical aspects outlined in this job description, but also things like promoting the company’s offerings, talking to prospect clients and partners, doing competitors research, creating whitepapers, presentations, etc. As one of the first employees of the company you will be involved in various aspects of the business of the company and will experience yourself as an intrapreneur (Intrapreneurship is the act of behaving like an entrepreneur while working within an organization).

    Responsibilities

    • Provide world class customer service to ArmadilCo’s clients, by efficient and timely communication, reliable project deliveries and thorough documentation.
    • Use various security tools to identify, manage and maintain vulnerability and threat data as part of pre-market & post-market Vulnerability Assessments and Vulnerability Management for mission critical products.
    • Conduct Security Risk Assessments, Threat Modeling and Code Reviews.
    • Review tech specs and suggest feedback to build secure products
    • Help Medical Device companies meet and maintain security standards, security regulatory guidance and compliance – ISO/IEC 27001, FIPS 140, HIPAA, FDA 510(k), Pre/Post Market Guidance.
    • Create and maintain Manufacturer Disclosure Statements for Medical Device Security (MDS2).
    • Create and maintain Software Bill of Materials (SBOM).
    • Identify and implement security mitigations and remediations, including updating and patching components, system hardening, deployment of compensating controls, etc.
    • Setup and configuration of security systems like VPN, Firewalls, IDS/IPS, SIEM, NSM, etc.
    • Present findings, recommendations and results to leadership

    Experience

    • Fluent English is a must, as you will be interacting with the company’s clients and their teams
    • Vulnerability Assessment & Management
    • Secure Development Lifecycle (SDLC)
    • Threat Modeling
    • Static Code Analysis
    • Software Composition Analysis
    • Dynamic Vulnerability Scanners
    • Security Risk and Prioritization Analysis
    • Computer networking concepts and protocols, application and network security methodologies
    • Ability to work independently with minimal supervision
    • Scripting experience to automate and scale your impact
    • Background in programming is a plus
    • Capture the flag (CTF) experience is a plus
    Кандидатствай