Information Security Engineer

Responsibilities:

• Design, develop, implement and support various security technologies, controls and tools in corporate environment.
• Hands on experience in assessing, hardening and patching security systems.
• Respond and investigate potential security, events, alerts and incidents.
• Collaborate with business owners, product managers, DevOps, IT operations, and development teams, to provide subject matter expertise for information security matters.
• Identify weak or missing controls and vulnerabilities while suggesting improvements and remediation.
• Implement and manage security tools like Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Software Composition Analysis (SCA) within the CI/CD pipeline.
• Hands on experience in Nessus Scanner or any other vulnerabilities scanning tools.

Requirements:

• 3-5 years of relevant work in a hands-on position as Security Expert/Engineer.
• Strong understanding of Networking principles, IT/Information Security.
• Solid experience in Crypto/Blockchain industry, at least 3 years in Web3 industry.
• Deep understanding of blockchain security, in particular as a Security SME of Exchange and/or Hot/Cold Wallet.
• Proven experience with: 1.Firewalls (preferable Fortigates), 2.VPN (ipsec between on-premise firewall and Cloud, SSLVPN for user access), 3.Endpoint Security Systems and Technologies to support both Linux and Windows operating system flavors &
  4.Incident Response and Methodologies.
• Experience with Microsoft 365 Security - Microsoft Defender (Defender for Endpoint, Defender for Identity, Defender for Office 365, Defender for Cloud Apps) is an advantage
• Experience with AWS / Azure Cloud security.
• Experience with DDOS and WAF protection on Cloudflare, Imperva.
• Security mindset with business enablement strategy thinking
• CCNP Security, Microsoft Certified: Security Operations Analyst, Identity and Access Administrator or similar security certifications is an advantage.