Cybersecurity Engineer

We're looking for a Cybersecurity Engineer to join our dynamic Cyber Security Monitoring department. In this role, you will work in a rapidly evolving environment and will be responsible for key areas such as Cloud Security, Penetration Testing, End-Point Protection, Infrastructure Security, Project Management, Security Awareness, and Security Monitoring.

Key Responsibilities:

• Cloud Security: Understanding of cloud services including Google Cloud Platform (GCP), Terraform, CI/CD Security, Kubernetes Security, GitLab, and product security features/fixes.
• Penetration Testing: Conduct Dynamic Application Security Testing (DAST) and Static Application Security Testing (SAST) for web, mobile, and API applications. Plan and execute infrastructure vulnerability assessments and penetration testing of critical systems.
• End-Point Protection: Implement and manage enterprise-level Anti-Virus (AV) solutions to protect against malware and other threats.
• Infrastructure Security: Review corporate IT infrastructure security, encompassing network security controls, Cloud Security Posture Management (CPM), Data Loss Prevention (DLP), and disaster recovery processes.
• Project Management: Collaborate with various product and engineering teams to prioritize security features, ensuring successful implementation and mitigation.
• Security Awareness: Facilitate phishing simulations and awareness exercises, and provide targeted training to bolster employee resilience against cybersecurity threats.
• Security Monitoring: Automate incident response procedures, monitor threats and vulnerabilities, and develop detection rules using various tools.

Skills, Knowledge, and Expertise:

• Degree in Information Technology, Computer Science, Software Engineering, or a related field.
• Knowledge of IT security issues and best practices, preferably in a fast-paced fintech environment.
• Security certifications such as CEH or CompTIA Security+ (preferred but not required).
• Strong communication, influencing, and stakeholder management skills.
• 2-3 years of experience delivering security solutions across teams.
• Experience in developing and delivering security training programs.
• Experience in a culturally diverse environment.
• Understanding of online technologies, payment methods, content delivery networks, REST APIs, microservices, and application development.
• Programming and scripting knowledge (e.g., Bash, Python).
• Strong cloud experience with AWS and GCP.

Language Requirements:
Proficiency in English is preferred, as there may be collaboration in a multicultural environment.