Candidates 422
$1500 / mo
≈ $18000 / year net
Cybersecurity, Auditor of Information Security
Ukraine · 1 year of experience · Intermediate ·Published today
Ukraine · 1 year of experience · Intermediate ·Published today
IT Audit, Information Security Audit
Computer science
Journal Entry Testing (JET)
ITGC
PCI DSS
SWIFT CSCF
ISO27001, ISO27002, NBU №95
Windows, Linux, Windows Server 2012
Active Directory
Computer Networking
NMAP
Vulnerability scanning (Nessus)
OSSEC, Graylog, Wazuh
Snort, Suricata
Cryptography
OWASP Top 10
Git, GitHub
Python, Django, DRF
JavaScript, React
HTML5, CSS
SQL, MySQL, PostgreSQL
C/C++ (basics)
Teamwork skills
Time management
Problem-solving
Fast learner
Highly dependable
Excellent attention to detail
Communication
My experience includes auditing according to SWIFT CSCF (SWIFT Customer Security Controls Framework), PCI DSS (Payment Card Industry Data Security Standard) and others. I specialize in threat analysis, security audits, vulnerability detection, and the development of strategies for robust cyber defense in accordance with these critical standards.
I am constantly improving my knowledge and skills in line with the latest cybersecurity requirements and use my expertise to help clients establish a stable and secure infrastructure. My aim is to stay at the forefront of the cybersecurity field and contribute to the preservation of digital security in this ever-evolving digital landscape.
$4200 / mo
≈ $50400 / year net
Senior DevOps Engineer
Poland · 5 years of experience · Advanced/Fluent ·Published today
Poland · 5 years of experience · Advanced/Fluent ·Published today
- Architected and implemented a highly available WordPress environment on Amazon EKS using Terragrunt and ArgoCD, achieving 99.9% uptime.
- Optimized CI/CD pipelines, reducing deployment time by 80% through image size reduction and automation.
- Implemented cost-saving measures, transitioning to Multi AZ Databases, resulting in a 60% reduction in computing costs.
- Provided custom Helm Charts and Terraform mentoring to team members, enhancing their skills and productivity.
2. **Mochalabs d.o.o. (Senior DevOps Engineer)**:
- Led the upscaling to a multi-tenant environment, enhancing scalability and performance through capacity planning and IaC refactoring.
- Improved CI/CD pipeline speed by 80% through optimization of container orchestration and caching strategies.
- Refactored database security, ensuring resilience and redundancy of critical systems.
3. **IBM (Cloud Engineer)**:
- Managed global OS distributions (AWS Golden AMIs) and its entire process for global distributions shared over 1000 accounts.
- Acted as the primary point of contact for incident management and resolution, resolving critical issues promptly and effectively.
- Implemented custom monitoring solutions, improving operational efficiency and providing accurate alarm metrics for system health.
These accomplishments demonstrate my ability to architect innovative solutions, optimize workflows, and contribute effectively to team success. I'm always eager to take on new challenges and drive impactful projects that push the boundaries of what's possible in cloud architecture and DevOps.
$4000 / mo
≈ $48000 / year net
Senior DevSecOps / DevOps Engineer
Azerbaijan · 7 years of experience · Upper-Intermediate ·Published today
Azerbaijan · 7 years of experience · Upper-Intermediate ·Published today
* Administrating OS: Windows Desktop\Server, Ubuntu, CentOS, Kali OS
* Programming language: Python, Bash, PowerShell
* Cloud infrastructure providers: AWS, Azure, Digital Ocean
* Database : MySQL
* Containers: Docker, Kubernetes
* Monitoring tools: ELK, Prometheus, Grafana
* APM : Dynatrace, Newrelic
* Web Server/ Load balancing/ Reverse proxy: NGINX , HAProxy
* Virtualization: VMWare
* CI\CD tools: GitLab, Jenkins
* SCM : Bitbucket, GitLab
* Code Quality and Security: Sonarqube, Snyk.io
* Messaging System: Kafka
[ # ] Security
* Hands-on experience with DAST, SAST, and manual ethical hacking.
* Hands-on experience with SIEM, WAF, DLP, Kubernetes Security, Endpoint Security, etc.
* Working knowledge in security framework models such as GDPR, PCI DSS, and NIST.
* Designing and developing generic security patterns and guidelines to enable applications to stay compliant.
* Integrating security principles into the CI/CD pipelines to implement security measures from the beginning of the software development workflow.
Salary is open to negotiation.
$2200 / mo
≈ $26400 / year net
Security Operations Engineer
Ukraine · Lviv · 4 years of experience · Intermediate ·Published today · In passive search
Ukraine · Lviv · 4 years of experience · Intermediate ·Published today · In passive search
Position: Network Operations Center Engineer
Duties:
• Monitor a wide variety of information and network systems that include LAN/WAN systems, switches, firewalls, servers, backup, and operating.
• Perform basic systems testing and operational tasks (installation of patches, network connect)
• Performing network maintenance and system upgrades.
• Monitor performance and ensure system availability and reliability.
• Troubleshoot, isolate, and diagnose common problems network/systems problem.
------------------------------------------------------------
InCountry, San Francisco (remotely)
Position: Network Operations Center Engineer
Duties:
• Support of systems and servers, routine maintenance.
• Constant monitoring, optimization, troubleshooting.
• Writing and updating roles for automatic deployment.
• Maintaining environments on Cloud platforms.
• Patch Management.
• Support and develop CI/CD processes.
• Writing/supporting infrastructure documentation.
------------------------------------------------------------
InCountry, San Francisco (remotely)
Position: Security Operations Engineer
Duties:
• Vulnerability management.
• Access management.
• Setting up logs collection infrastructure and log management tools.
• Responding to Security Incidents.
• Building analytical queries in Splunk Enterprise for incident detection.
• Participation in incident recovery: installation of patches, recovery of information from backups, etc.
• Automating Security Processes.
• Designing and implementing security solutions such as Firewalls, Intrusion detection and prevention systems.
• Developing and implementing security policies and procedures.
• Experience in Linux/UNIX administration.
• Hands-on experience in production environments.
• Networking skills: TCP/IP, DNS, Load-balancers, network security.
• Understanding of network security protocols such as SSL/TLS, IPSec, SSH, and others.
• Knowledge and experience with CI/CD tools and version control (Jenkins, Git).
• Scripting skills with the following languages: Bash, Python.
• Knowledge and experience with Infrastructure Configuration Management Systems (Ansible, Terraform).
• Knowledge and experience with containers (Docker) and container orchestration (Nomad).
• Experience with security tools and technologies, such as SIEM and vulnerability scanners (Splunk Enterprise, Wazuh, Tenable Nessus Scanner).
• Practical experience in several of the following areas: security monitoring, threat/vulnerability/risk analysis and assessment, effective threat mitigation, network and security systems.
• Familiarity with security frameworks and standards such as ISO 27001 and CIS benchmarks.
• Experience with monitoring tools and services (Zabbix, Grafana, Kibana, Nagios, ElastAlert).
• Experience with cloud provider (AWS, Google Cloud, Alibaba Cloud, Microsoft Azure).
• Experience with Jira, Confluence.
• Ability to work under pressure and handle multiple tasks simultaneously.
• Attention to detail and ability to follow processes and procedures.
$3000 / mo
≈ $36000 / year net
Information Security Auditor
Germany · 8 years of experience · Intermediate ·Published today
Germany · 8 years of experience · Intermediate ·Published today
Ensured compliance with regulatory requirements and industry standards
Skilled in deploying and auditing ISO 27001 compliant Information Security Management Systems to ensure robust data protection policies and controls are in place.
Knowledgeable in vulnerability assessment methodologies and tools (Nessus, Qualys, OpenVAS) to identify and remediate security weaknesses.
Strong technical expertise in diverse areas of information security coupled with ability to communicate cyber risks and mitigation strategies clearly to executives and users.
Conducted comprehensive compliance audits and risk assessments, identifying potential vulnerabilities and attack vectors. Based on the findings, proposed effective risk mitigation measures.
$5000 / mo
≈ $60000 / year net
Chief Information Security Officer
Ukraine · More than 10 years of experience · Intermediate ·Published today · In passive search
Ukraine · More than 10 years of experience · Intermediate ·Published today · In passive search
- Development of an information security strategy.
- Audit of information security management system in accordance with ISO 27001:
- analysis of the current state of information security;
- inventory and classification of information assets;
- assessing information security risks and creating an action plan to address information security risks. - Audit of information security within the limits of audit of financial statements:
- testing of common IT management tools;
- development of recommendations on identified information security issues and deficiencies in related business processes. - Consulting assistance to a foreign IT company to implement controls in accordance with the requirements of SSAE 18 to further receive the SOC2 Type 2 report:
- identification of internal controls that meet the Trust Service Criteria SSAE 18;
audit of internal controls;
- developing a roadmap for improving information security in accordance with the requirements of SSAE 18. - Participated in developing initiatives to improve the information security of Ukraine's critical infrastructure for a project provided by USAID in Ukraine.
- Created the SOC 2 Type 2 report
- Development of regulatory documents. In particular, the procedures governing the work with confidential information, information security risk management, classification and inventory of information resources.
- Conducting trainings to increase user awareness in information security.
- Monitoring compliance by users with the rules for working with company information.
- Development of a self-assessment tool according to the NIST 800-53A standard.
- Development of a tool for self-assessment according to the IEC 62443 standard.
- Conducting training phishing events.
- Development and implementation of cryptographic protection management processes.
- Modernization of the information security incident investigation process
$1300 / mo
≈ $15600 / year net
Cybersecurity specialist
Slovakia · 1.5 years of experience · Upper-Intermediate ·Published today
Slovakia · 1.5 years of experience · Upper-Intermediate ·Published today
$5500 / mo
≈ $66000 / year net
Senior Cybersecurity Сonsultant, Penetration Tester, Read Team Leader
Thailand · More than 10 years of experience · Advanced/Fluent ·Published today
Thailand · More than 10 years of experience · Advanced/Fluent ·Published today
I'm a high-qualified Cybersecurity expert with extensive work experience and excellent skills for solving different kinds of Cyber- and Information Security issues, preferably Penetration Testing, Project Management, Web Application security audit, educating staff and Open Source Intelligence (OSINT), .
My extra professional benefits are in the effective communication area, including marketing and writing. This rare combination of skills lets me not only effectively work in the technical cybersecurity domain but also easily explain complicated cybersecurity issues to a wide audience; promote company products and strengthen company positions on the market.
You also may know me as the author of the educational video courses "Cybersecurity attacks (Red Team Activity)", "Cybersecurity: Methods of Protection (Blue Team Activity)" released by Packt Publishing House in 2018, "The Secrets of OSINT. Become James Bond of the Internet and Find Out Everything About Anyone" (2019), "How to Outwit a Social Engineer" (2020).
My main principles and approach for the work totally correspond with the fundamentals of cybersecurity: Confidentiality, Integrity, Availability.
$2000 / mo
≈ $24000 / year net
Фахівець захисту інформації
Ukraine · Kyiv · 5 years of experience · Beginner/Elementary ·Published today · In passive search
Ukraine · Kyiv · 5 years of experience · Beginner/Elementary ·Published today · In passive search
$5000 / mo
≈ $60000 / year net
Head of Information Security
Ukraine · Kyiv · More than 10 years of experience · Intermediate ·Published today · In passive search
Ukraine · Kyiv · More than 10 years of experience · Intermediate ·Published today · In passive search
- Writing and maintaining information security policies and related policies.
- In charge of security measures taken on all aspects of the company.
- Operational security management.
- ISO 27001 implementation. Managing the ISO27001 certification process. In charge of physical & environmental security.
- Managing products compliance with GDPR along with corporate compliance.
- Assist in confirmation that all PCI DSS controls are implemented, documented and monitored for recertification. Perform background check for outsourcing partners. Define security clauses that must be part of an agreement.
Prepared and successfully passed PCI DSS Level 1 service provider certifications (Payment Gateway) and Merchants Level 1 ( process over 6 million card transactions annually)
Prepared and successfully passed ISO 27001.
Managed a few teams of 20+ Information security specialists.