Career in our company
IT Security Specialist
About the Role
- Perform specific security IT tasks related to the provision of the security assurance on the corporate IT and
in the same time to support in managing the physical security and safety related systems - Security configuration and operations standards for security systems and applications, including policy
assessment and compliance tools, network security appliances, and host-based security systems - Develop and validate baseline security configurations for operating systems, applications, and networking
and telecommunications equipment - Perform internal and external technical control and vulnerability assessments to identify
control weaknesses and assess the effectiveness of existing controls, and recommend remedial action. - Perform source code reviews
- Perform network and application penetration testing ( Black box, Grey box and White box)
- Defining detailed security architecture
- Performing technical security audits
- Security monitoring and log analysis
- Provide support during security incident analysis
- Perform IT infrastructure/ Application Security configuration reviews
- Design and implement technical security mechanisms and technologies
- Design and develop technical security standards and procedures.
- Support the monitoring and management of the IT elements of the physical security and safety-related systems
- Performing any other activity related to the security of the IT corporate infrastructure
Tasks
The study/analyze on the existing MSSQL installations gives an overview of the gaps that are currently existing and provides an insight to the area of improvement for better maintainability of databases.
The findings and the recommendations provided, based on the findings, will be helpful to optimize the existing databases setup and also helps define the requirements of upcoming database service in the Hyper-v environment.
The scope/requirements will be managed in TFS.
These requirements will be defined more in detail and prioritized for the first phase(s). Some requirements will be moved to execution phase.
Mandatory / Desired
Qualifications:
Education:
Minimum 4 years of relevant education (master or equivalent) after the secondary school.
Professional experience:
Minimum 6 years of relevant professional experience in IT security
Professional competencies
- Proof read communication, documents, draft emails, etc. as needed
- Maintain high level of accuracy, confidentiality and professionalism
- Ability to create professional documents and emails
- Run reports & handle special projects as assigned
- Implementing security best practice guidelines (ISO 27001, NIST, SANS Top 20 OWASP and etc.)
- Good practice in the secure configuration of servers, network devices and applications
- Networking protocols and application communications. TCP/IP, Network Security.
- Network analysis tools.
- Securing Unix and Windows operating systems; Linux, Active Directory and Microsoft
- Forefront Identity Manager administration;
- Securing middleware and applications.
- Network penetration testing
- Web application penetration testing
- IPerforming vulnerability assessments
- Performing forensic image collection and analysis
- Managing/deploying the following security technologies: Firewalls; Antivirus, IDS/IPS
- Intrusion detection/Prevention Systems, SIEM – Security information and event management; IAM –
- Identity and access management; APT – Advanced Persistent threat detection; DLP – Data loss prevention;
- VA – Vulnerability Analysis and mitigation; PKI – Public key infrastructure; Virtual environments;
- Endpoint security; Mobile security; Communications and data encryption ; Remote access methods;
- Backup and disaster recovery methodologies; Patch management technologies and processes;
- Wireless protocols and services.
- OWASP and secure software development standards
- Performing security code reviews.
- Security configuration reviews of IT Infrastructure and security devices, OS, Databases etc.
- Expected to possess at least one of the following qualifications:
- Certified Information Systems Security Professional with Information Systems Security
Architecture Professional concentration (CISSP-ISSAP) - Certified Information Security Manager (CISM)
- Certified Information Systems Auditor (CISA)OSCP, OSCE, GPEN, CEH, CCNA, CCNP
- Certified Information Systems Security Professional with Information Systems Security
Benefits of Working at 1datagroup:
Market leader in compensation and equity awards
Competitive vacation policy
Comprehensive health benefits
Paid parental leave, including adoption
Flexible work environment
Wellness programs
Stocked fridges, coffee, soda, and lots of treats
We are committed to building an inclusive culture of belonging that not only embraces the diversity of our people but also reflects the diversity of the communities in which we work and the customers we serve.
Primary Location: Germany
Job: Application Software & Development
Organization: 1DATAGROUP
Schedule: Contractual
Salary: Depending on experience
Shift: Standard
Job Type: Full-time / Day Job
Start Date: November
1Datagroup is an Equal Opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex including sexual orientation and gender identity, national origin, disability, protected veteran status, or any other characteristic protected by applicable federal, state, or local law.
We know that the happiest and highest performing teams include people with diverse perspectives and ways of solving problems so we strive to attract and retain talent from all backgrounds and create workplaces where everyone feels empowered to bring their full, authentic selves to work.
Please Email us your CV in pdf at: teams[at]1datagroup.com
Let’s Talk
Contact us now to discuss how 1Datagroup can help empower innovation across your organization