Information Security Engineer

<p><strong>Responsibilities:</strong></p> <ul> <li>Design, develop, implement and support various security technologies, controls and tools in corporate environment.</li> <li>Hands on experience in assessing, hardening and patching security systems.</li> <li>Respond and investigate potential security, events, alerts and incidents.</li> <li>Collaborate with business owners, product managers, DevOps, IT operations, and development teams, to provide subject matter expertise for information security matters.</li> <li>Identify weak or missing controls and vulnerabilities while suggesting improvements and remediation.</li> <li>Implement and manage security tools like Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Software Composition Analysis (SCA) within the CI/CD pipeline.</li> <li>Hands on experience in Nessus Scanner or any other vulnerabilities scanning tools.</li> </ul> <p>Requirements:</p> <ul> <li>3-5 years of relevant work in a hands-on position as Security Expert/Engineer.</li> <li>Strong understanding of Networking principles, IT/Information Security.</li> <li>Solid experience in Crypto/Blockchain industry, at least 3 years in Web3 industry.</li> <li>Deep understanding of blockchain security, in particular as a Security SME of Exchange and/or Hot/Cold Wallet.</li> <li>Proven experience with: 1.Firewalls (preferable Fortigates), 2.VPN (ipsec between on-premise firewall and Cloud, SSLVPN for user access), 3.Endpoint Security Systems and Technologies to support both Linux and Windows operating system flavors &<br>4.Incident Response and Methodologies.</li> <li>Experience with Microsoft 365 Security - Microsoft Defender (Defender for Endpoint, Defender for Identity, Defender for Office 365, Defender for Cloud Apps) is an advantage</li> <li>Experience with AWS / Azure Cloud security.</li> <li>Experience with DDOS and WAF protection on Cloudflare, Imperva.</li> <li>Security mindset with business enablement strategy thinking</li> <li>CCNP Security, Microsoft Certified: Security Operations Analyst, Identity and Access Administrator or similar security certifications is an advantage.</li> </ul> <p><br></p>