Information/Cybersecurity Engineer
On behalf of our client, we are looking for an Information/Cybersecurity Engineer for a part-time (40-50% workload), 6+ months commitment (with a possibility of extension).
The Security Engineer is responsible for identifying, analyzing, and addressing security vulnerabilities across systems, networks, and cloud infrastructure (Google Cloud). The role includes assessing risks, implementing remediation, and ensuring a strong security posture.
Minimum required qualifications:
- Hands-on experience with Google Security Command Center (SCC) and other Google Cloud security tools
- Experience with vulnerability scanners, SIEM platforms, and securing Windows/Linux servers
- Proficiency in scripting/automation (e.g. Python, Bash, Terraform) for security process automation
- Strong problem-solving and risk assessment abilities
- Thorough in identifying and addressing vulnerabilities
- Strong interpersonal and communication skills
- Physically residing in the European Union
- Advanced or higher level of English
Will be a plus:
- Knowledge of DevSecOps principles and tools
- Experience in penetration testing or/and ethical hacking
- Knowledge of vulnerability assessment methodologies and frameworks (e.g., CVSS, OWASP, CIS Benchmarks)
Responsibilities:
- Vulnerability Analysis: Analyze and prioritize results from vulnerability assessments on Windows/Linux servers and Google Cloud infrastructure
- Vulnerability management: Identifying and mitigating security risks in cloud workloads, applications, and networks
- Remediation: Implement security measures to address vulnerabilities and validate through testing
- Monitoring & Reporting: Track remediation progress and provide detailed reports on vulnerabilities and fixes
- Collaboration: Work with teams to address security vulnerabilities and educate on best practices
Company offers:
- Possibility of long-term employment and professional growth
- Fully remote work
- Reasonably flexible schedule
- Regular performance reviews