Information Security Lead

Only office Kyiv❗
 

Delasport — Implementing Technological Solutions Here and Now.

Delasport is an iGaming Software company providing Sports Betting & Online Casino software, and turnkey B2B solutions. Established in 2010, Delasport delivers a one-stop-shop solution of Sports Betting and Online Casino from a White-Label, with a full range of management services to a Plug&Play iFrame and a complete Turnkey. We are establishing an R&D center in Kyiv, and are looking for top talents to join our team.

RESPONSIBILITIES

• Monitor compliance with information security and privacy policies at a technology company
• Conduct vendor security assessments and reviews to ensure our partners align with security standards
• Review security clauses in customer and vendor contracts to ensure proper alignment with policies and regulations
• Provide, review, and enhance security training and awareness programs for internal teams
• Manage the organization's technological risk assessments, identifying potential vulnerabilities
• Help security leaders identify, assess, and mitigate organizational risks by developing strategies
• Develop and implement best practices for assessing and evaluating IT and security controls within the company and third-party businesses
• Manage the end-to-end process of penetration testing and technical risk assessments
• Support the business with customer engagements, including attending calls and supporting sales teams

REQUIREMENTS  

• 5 years of experience in application security and network security, including the understanding of application security attacks, vulnerabilities, and mitigations
• Knowledge of common Web Application security vulnerabilities (OWASP TOP10, SANS 25, etc.)
• Proficiency with cloud security principles and best practices (e.g., AWS, Azure, GCP), experience with DevOps, SRE, Kubernetes, Containers, and CI/CD
• Hands-on experience in the implementation and maintenance of Palo Alto / Checkpoint Firewall systems and a deep understanding of working with L2/L3/L7 Policies
• Familiarity with security tooling such as WAF, FW, CSPM, CNAPP, EDR, SIEM, SOAR, DLP
• Ability to conduct investigations into information security events – analysis of network and application-based events, issuing IOCs and implementing them in the systems
• Ability to work autonomously, taking ownership of security challenges and driving solutions
• Excellent communication skills and ability to effectively communicate security risks and recommendations to technical and non-technical stakeholders 
• Fluent in English

WHAT WE CAN OFFER YOU

• Modern office in Podil with an uninterruptible power supply and the Internet
• Personal time off (21 business days of paid vacation, paid days on special occasions, sick leaves, emergency days off)
• Public holidays
• Health insurance with the broker which is available from the first month of cooperation
• Life insurance with the broker which is available from the first month of cooperation
• Modern technical equipment
• English courses with native speakers
• Ukraine-based educational programs
• Sports activities reimbursement
• Corporate entertainments
• Happy hours on Fridays
• Gig contract support