Въведи своя e-mail и парола за вход, ако вече имаш създаден профил в DEV.BG/Jobs

Забравена парола?

Създай своя профил в DEV.BG/Jobs

За да потвърдите, че не сте робот, моля отговорете на въпроса, като попълните празното поле:

60 - 61 =

Забравена парола

Въведи своя e-mail и ще ти изпратим твоята парола

Една от всички 1030 обяви за Infrastructure в София

Виж всички
Chief Specialist, Application and Data Security

Обявата е публикувана в следните минибордове

  • Sofia, Bulgaria
  • Съобщи за проблем с обявата

Съобщи за проблем с обявата


    Какво не е наред с обявата?*
    Моля опиши ни, къде е проблемът:
    За да потвърдите, че не сте робот, моля отговорете на въпроса, като попълните празното поле:

    Roles and responsibilities:

    • Develop strategies and frameworks for Information security risk management
    • Analyze and assess all identified information security risks, according to established frameworks
    • Analyze the current state of information flows and propose optimization of the existing system architecture in order to prevent internal and external attacks and unauthorized access to critical information systems and data
    • Watch out for emerging cybersecurity threats and trends (Ransomware attacks, DDoS attacks, Remote and Cloud attacks, Zero-Day Exploits etc.) and offers adequate measures (key security controls implemetation) to defend the organization against them
    • Identify and analyze phishing, spam and other types of cyber-attacks and take immediate actions to block them in a timely manner
    • Organize vulnerability scans to identify any information systems that are subject to known vulnerabilities and propose measures for reducing security risk by fixing or neutralizing detected weaknesses
    • Perform analysis and periodic reviews of generated, into the Bank`s centralized security information and event management system, offences and report for identified violations and incidents
    • Perform review, classification, analysis, investigation, processing and registration of all identified incidents related to information security, in accordance with the established internal information security standards and guidelines
    • Strictly implement the internal Bank incident response process in order to reduce the negative impact on Bank’s information assets and data
    • Define security requirements in order to protect information from unauthorized, accidental or intentional access, modification, destruction and/or disclosure
    • Define system-specific security policies and rules in all information systems, ensuring Bank’s information security framework is set
    • Control the continious compliance with established internal standards and guidelines for information security
    • Develop and/or update all internal standards and guidelines as part of the unified information security framework

    Qualifications and Requirements:

    • Bachelor’s/Master’s Degree – Information Technology/ Cyber security
    • Good written and verbal English communication skills – level B2
    • At least 2 years` professional experience on a similar position
    • At least 2 years` experience with some of the following technologies: SIEM, IDS/IPS, EPP/EDR, WAF, MDM, VM tools
    • Knowledge of common types of cyber-attacks and methods of cyber-attacks
    • Very good knowledge in the field of server operating systems (Windows, Linux)
    • Very good knowledge of the principles and standards for system hardening
    • Knowledge of the international frameworks and standards for information security
    • In-depth understanding of theweb applications architecture
    • Good skills and knowledge in the field of network protocols, devices and services (OSI model)
    • Knowledge of scripting programming languages
    • Good skills for working with relational databases – Oracle, MySQL, MSSQL
    • Good skills for processing large data sets with SQL queries
    • Good understanding of tools than can be used to assist in investigations like VirusTotal, Passive DNS, WHOIS etc.
    • Good skills for reading and analyzing configuration files and system logs
    • Strong team player, self-driven work habits, shows initiative, aspiration, creativity, maturity, self-assurance and professionalism. Ability to collaborate and cooperate with members of his team and members of other teams
    • Demonstrated analytical and problem-solving skills and thinking
    • Time management skills and ability to multi-task and prioritize assigned tasks, problems and requests in a high pressure environment

    Additional Requirements:

    • Comfortable with high-tech work environment
    • Ability to pro-actively and constant learn new technology, tools and processes
    • Ability to pro-actively search for solutions from knowledge bases, technical documentation and other information
    • Keen interest in continual learning and professional development

    To be considered an advantage:

    • Certificates in the field of cyber security
    • Advanced knowledge of the following technologies and experience in configuring them: IPS/IDS; NGFW, SIEM, DLP, WAF, VM, Email Protection, Web Protection, MDM, Certification Authority.

    If you feel that this is your dream job, we expect you to submit your CV.

    All documents will be considered according to LPPD/GDPR.