Jobs Security

We are seeking an experienced Security Manager to lead and continuously strengthen our company’s security framework. This role is critical in protecting our information, financial operations, and business partnerships. You will be responsible for building a strong security culture, preventing fraud, ensuring compliance, and managing cybersecurity and operational risks across the organization.

Key Responsibilities

• Build and maintain a strong company-wide security culture through training and awareness programs.
• Develop, implement, and update IT, cybersecurity, and data protection policies.
• Monitor and improve access control, encryption, logging, and overall security practices.
• Conduct audits of financial operations to prevent fraud, conflicts of interest, and unauthorized activities.
• Oversee partner verification, KYC/AML checks, and source-of-funds analysis.
• Monitor internal activities and assess risks related to employees, partners, and tools.
• Maintain access rights in line with the Least Privilege principle.
• Prepare regular security and risk reports for executive leadership.
  
  Qualifications
• Proven experience in security management, cybersecurity, compliance, risk management, or anti-fraud roles.
• Strong knowledge of IT security practices, internal controls, and access management.
• Experience with financial audits, fraud detection, and transaction monitoring.
• Familiarity with KYC/AML processes and partner due diligence.
• High level of integrity, analytical thinking, and attention to detail.
• Ability to communicate effectively with both technical and non-technical stakeholders.
• Professional working proficiency in English.
  
  What We Offer
• Flexible working hours and a fully remote work environment.
• Unlimited paid vacation and paid sick leave.
• Competitive compensation aligned with experience and expertise.
• Learning and professional development support (50% reimbursement).
• Wellness benefits, including sports and fitness support.
• Employee referral bonuses and recognition for special occasions.
• Team-building activities and a positive, respectful company culture.
• Co-working space reimbursement for comfortable remote work.

PrivatBank is the largest bank in Ukraine and one of the most innovative banks around the world. It holds a leading position for all the financial indicators in the area and comprises about a quarter of the whole banking system of our country.

We are looking for an Application Security Engineer. We are searching for the person who seeks to work in a dynamic environment and shares the values of initiative, openness and mutual trust.

We are striving to find a goal-oriented and multitask professional who would be focused on making good results and high quality.

Requirements:

• At least 3 years of experience in application security or related fields such as penetration testing and security architecture
• Proficiency in using security scanners such as SAST, DAST, SCA, Secret Detection, and Container scanning
• Experience integrating security scanners in CI/CD pipelines using Jenkins for GitLab
• Certifications such as CEH, OSCP, CSSLP, AWS Certified Security Specialty, etc. is preferred
• Background in software development, including roles such as Developer, Business Analyst, Architect, DevOps, etc
• Knowledge of Secure Software Development Life Cycle (S-SDLC) and frameworks like OWASP SAMM, BSIM, and Microsoft SDL
• Familiarity with the software development process and stages
• Basic understanding of software code
• Knowledge of key infrastructure components like databases, queues, application servers, load balancers, NoSQL, etc
• Understanding of major types of vulnerabilities
• Understanding of software architecture
• Knowledge of network protocols such as DNS, HTTP/S, SMTP, SSH, and FTP
• Ability to independently research information and solve complex problems
• Critical thinking skills

Responsibilities:

• Conduct security audits using the OWASP SAMM framework to assess current practices, identify gaps, and evaluate compliance levels within the organization
• Develop and implement strategic plans aimed at enhancing security maturity levels throughout the organization, with gradual improvements
• Application security governance and metrics
• Collaborate with various team members, including developers and top management, to advocate and implement application security best practices
• Improve our application security management platform
• Manage security architecture, focusing on integrating security at every stage of the software development lifecycle
• Integrate and oversee security automation tools to enhance security processes and reduce manual error
• Oversee security testing across various stages of software development to identify and mitigate potential security vulnerabilities
• Engage in threat modeling activities to predict and neutralize potential security threats before they impact the system
• Ensure compliance with relevant industry standards and regulations by regularly updating security policies and standards
• Track and manage software defects to ensure timely resolution of security-related issues
• Develop and conduct training and awareness programs to enhance security knowledge and practices across the organization
• Spearhead the secure integration of CI/CD practices into software development processes to ensure continuous security
• Use cloud services for application security

We offer:

• Work in the largest and most innovative bank of Ukraine
• Official employment and 24+4 calendar days of vacation
• Sick leave compensation
• Medical Insurance
• Competitive salary
• Bonuses, premium according to company policy
• Corporate training
• Modern comfortable office
• Interesting projects, ambitious tasks and dynamic growth
• Corporate financial assistance in critical situations
• A friendly professional and strong team
• Possibility of remote work format

PrivatBank is open to support and employ veterans and people with disabilities.

We believe that discrimination due to health conditions, physical abilities, age, race and ethnicity, gender or marital status is unacceptable.

We are ready to train veterans and candidates with disabilities without banking experience.

Iterasec works with clients worldwide, helping them find vulnerabilities and secure their products. Our projects range from mobile/web applications to complex modern cloud and automotive stacks. We work with both small product companies as well as Fortune 500 enterprises.

We are looking for a Middle/Senior Security Consultant / Penetration tester to work on and lead penetration testing and vulnerability/cloud security assessment projects.

In this role, you will work on technically challenging projects and also spend some time leading/mentoring our junior pentesting colleagues.

Required skills

- 1.5+ years of intensive commercial experience

- OSCP, eWPTx2 or similar would be a plus

- Scripting/coding skills and being comfortable with advanced pentesting tooling

- Strong knowledge of mobile/web security

- Comfortable with cloud and container security

- Basic RE skills

- Ability to mentor/lead colleagues

- Strong ability and drive to learn and develop cybersecurity skills

- Technical English (Intermediate+)

We offer

- Good salary + bonus system

- Diverse project portfolio and technologies to work with

- Rewarding environment: brilliant team ready to share knowledge and collaborate

- Courses and conferences which are relevant to the position are sponsored by the company.

- We are a remote-first company with full WFH support and a flexible work schedule.

Responsibilities

- Participate in various pentesting projects

- Lead junior colleagues

- Perform threat modeling in pentesting and security assessment projects

- Create assessment documentation and reports, clearly identifying vulnerabilities and associated remediation steps

- Consult clients on efficient issues remediation

- Conduct security researches

- Develop tools and scripts to automate and improve current pentesting processes

Iterasec works with clients worldwide, helping them find vulnerabilities and secure their products. Our projects range from mobile/web applications to complex modern cloud and automotive stacks. We work with both small product companies as well as Fortune 500 enterprises.

We are looking for a talented and motivated Junior Pentester who will join our security team to work on penetration testing and vulnerability/cloud security assessment projects.

We expect a short motivation letter where you can explain your skills, achievements and motivation.

Required skills

- Solid non-commercial cybersecurity experience, such as HTB/THM

- Junior-level cybersecurity certifications would be a plus.

- Comfortable with basic application security testing and common vulnerabilities (like OWASP Top 10, CWE Top 25) and cybersecurity fundamentals

- Strong basic IT skills: Linux, networking (TCP/IP, DNS, HTTP etc.)

- Some experience in scripting/coding languages, such as Java, JS, Python, Shell, etc.

- Strong drive to learn and develop cybersecurity skills

- Technical English (Intermediate)

We offer

- Good salary + bonus system

- Rewarding environment: brilliant team ready to share knowledge and collaborate

- Support in obtaining professional certifications, such as BSCP, OSCP, eWPTX, cloud certifications, etc.

- Courses and conferences which are relevant to the position are sponsored by the company.

- We are a remote-first company with full WFH support and a flexible work schedule.

Responsibilities

- Execute penetration tests and security assessments as part of a team, including internal/external networks, web and mobile applications, Windows and Linux environments, cloud architectures, IoT devices, and more

- Create assessment documentation and reports, clearly identifying vulnerabilities and associated remediation steps

- Conduct security research

RedCore is an international business group that creates technological solutions for digital markets. Our products and services cover fintech, marketing, e-commerce, customer service, communications, and regulatory technologies.

We are looking for a Cybersecurity Testing Team Lead!  

Requirements: 
- 5+ years in offensive security/penetration testing
- 2+ years in a technical leadership role (team lead/principal/tech lead)
Hands-on experience with:
- Web, API, Mobile (iOS/Android) pentesting
- Secure code review (at least one backend language)
- Cloud & infrastructure security testing
- Proven experience working with product teams, not only 'report delivery' 

Will be plus: 
- Advanced Offense
- Red Team/Purple Team experience
- Adversary emulation (MITRE ATT&CK)
- Threat modeling from an attacker’s perspective
- Experience with exploit development or advanced bypass techniques

- Cloud & Platform Security
- AWS (Preferred)
- Kubernetes security testing
- CI/CD attack vectors
- Secrets, identity, and supply chain attacks

Responsibilities:  
Leadership and Team Management:
- Lead and grow the Offensive Security team (pentest/red team)
- Define roles, expectations, and competency levels
- Mentor team members and conduct technical reviews
- Own capacity planning and prioritization 

Offensive Security Operations:
- Own the pentest intake process (Jira-based)
- Ensure consistent coverage:
- Web/API/Mobile
- Cloud/Infra
- Enforce quality standards for test depth, reports, risk assessment, and retesting
- Findings & Risk Management 

Ensure:
- Findings are exploitable, reproducible, and actionable
- False positives are minimized
- Risk is clearly communicated

Our benefits to you:
☘️An exciting and challenging job in a fast-growing business group, the opportunity to be part of a multicultural team of top professionals in Development, Architecture, Management, Operations, Marketing, Legal, Finance and more

🤝🏻Great working atmosphere with passionate experts and leaders, sharing a friendly culture and a success-driven mindset is guaranteed

🧑🏻‍💻Modern corporate equipment based on macOS or Windows and additional equipment are provided

🏖Paid vacations, sick leave, personal events days, days off

💵Referral program — enjoy cooperation with your colleagues and get the bonus

📚Educational programs: regular internal training sessions, compensation for external education, attendance of specialized global conferences

🎯Rewards program for mentoring and coaching colleagues

🗣Free internal English courses

✈️In-house Travel Service

🦄Multiple internal activities: online platform for employees with quests, gamification, presents and news, clubs for movie / book / pets lovers and more

🎳Other benefits could be added based on your location

Come Back Agency supports US software and technology companies by running their hiring process. We work with delivery and leadership teams to define roles, screen candidates, and manage interviews. Successful candidates are hired directly by the company and become part of its team.
 

This position is with a US-based software company providing custom development and AI implementation for North American clients. The team builds and maintains production software, including AI-enabled systems, and works in long-term client engagements. Team members operate as part of an internal, distributed team and collaborate directly with client stakeholders.
 

About the role:

The company is moving deeper into enterprise work. We need a DevOps leader who can harden our infrastructure, implement security best practices, and drive compliance readiness so we can pass enterprise vendor reviews and pursue certifications like SOC 2 and ISO 27001. You will work directly with engineering and leadership and own the technical program end to end.
 

What you will do

• Build and maintain secure cloud infrastructure and CI CD pipelines
• Implement access control, least privilege, and secrets management across environments
• Standardize logging, monitoring, alerting, and audit trails
• Create and maintain secure SDLC practices, including code scanning, dependency scanning, and change control
• Set up incident response basics, including runbooks, on call expectations, and post incident process
• Drive compliance readiness for SOC 2 and ISO 27001 by implementing required technical controls and gathering evidence
• Own vulnerability management and patching routines for infrastructure and dependencies
• Improve backup, disaster recovery, and business continuity practices
• Support client security questionnaires with clear technical answers and evidence
   

Requirements

• Strong DevOps experience with cloud infrastructure and deployment pipelines
• Hands on experience with AWS, including IAM, networking, compute, and logging services
• Experience with Infrastructure as Code such as Terraform
• Experience with containerization and orchestration, Docker and Kubernetes preferred
• Comfort setting up security tooling, SAST, DAST, dependency scanning, secret scanning
• Ability to document systems clearly and work with auditors or compliance tools when needed
   

Nice to have

• SOC 2 or ISO 27001 experience, even if you were the technical owner not the compliance PM
• Experience with Vanta, Drata, Secureframe, or similar evidence automation tools
• Experience working with HIPAA or other regulated client environments
• AWS certifications such as Solutions Architect or Security Specialty
   

What We Offer:

• Working hours aligned with US time zones, typically 16:00-23:59 Kyiv time.
• English lessons to support clear and confident communication.
• Paid vacation and sick days.
• Fully remote work.
• Opportunities for professional growth within the team.
• Structured, personalized onboarding to help you ramp up effectively.
   

Apply with your resume and a short note outlining your relevant experience. You can also submit it through our website at comeback.ua. Selected candidates will be contacted by Come Back Agency

We are looking for a Security Coordinator who will help us keep our company’s data, infrastructure, and SaaS ecosystem secure and well-governed.

This role focuses on access control, SaaS security, and risk management, ensuring that our systems are used safely and only by the people who actually need access.

Responsibilities

• Maintain a complete inventory of company systems and assets, including:
  • Cloud infrastructure
  • Databases
  • Google Workspace / shared drives
  • Internal tools
  • Third-party SaaS applications
  • AI tools used by the team
• Ensure proper access management across all systems:
  • Apply the principle of least privilege
  • Review and revoke unnecessary permissions
  • Monitor shared accounts and external access
• Conduct periodic access audits for:
  • Cloud environments
  • Databases
  • Google Drive and internal documentation
  • SaaS tools and integrations
• Identify and mitigate security risks related to AI tools, including:
  • Preventing sensitive data from being uploaded to AI platforms
  • Managing access to AI tools
  • Creating safe usage policies
• Work with engineering and operations teams to:
  • Improve security practices
  • Document access processes
  • Maintain internal security guidelines
• Track and manage security risks from third-party services
• Assist with security documentation and compliance processes (e.g., SOC2 or internal security policies).

Requirements

• Experience with cloud platforms (AWS, GCP, Azure, or similar)
• Familiarity with identity and access management concepts
• Experience managing SaaS ecosystems (Google Workspace, Slack, etc.)
• Understanding of data security risks and access control
• Ability to analyze system permissions and identify unnecessary access
• Awareness of AI-related security risks (data leakage, prompt injection, uncontrolled usage)

Nice to Have

• Experience with SOC 2 / security compliance
• Familiarity with IAM tools or security monitoring platforms
• Background in DevOps, IT administration, or security operations

What Success Looks Like

• All company systems are properly inventoried and documented
• Access is granted strictly on a need-to-know basis
• No forgotten accounts, open shares, or unnecessary privileges
• AI tools are used safely and responsibly

Requirements:

• Experience as a System Administrator ( 2 years +) 
• Knowledge of MacOS at the administrator level
• Network Technologies
• Basic knowledge of remote desktops and the principles of the thin clients
• Knowledge of the basics of information security
• Knowledge of ISO27001, ISO27002 and similar documents and experience with ISO/IEC 27001 certification audits in information security
• Understanding the basic aspects of information security and network components (firewalls, switches, routers, VPNs)
• English: Intermediate (B1-В2). Fluent level is welcome

Would be a plus:

• Experience in supporting or taking part in corporate inventory checks

Responsibilities:

• Implementing and enforcing security policies
• Monitoring security events and incidents
• Conducting risk assessments and security audits
• Managing cybersecurity tools and protection systems
• Delivering information security awareness training for employees
• Ensuring compliance with standards and requirements (ISO 27001)
• Creating, reviewing, and regularly updating ISO 27001 documentation (Confluence)
• Collaborating with German colleagues on ISMS-related tasks (document preparation, reporting, participation in meetings)

This role is new to our company, and the specialist will be the first to establish and develop this area.

What you will get working with us:

- Full technical equipment (MacBook, 2K additional monitors, and a comfortable workplace)

- Remote working equipment provided if needed

- Work exclusively with cutting-edge technologies

- Friendly and professional team atmosphere

- 8-hour workday with no overtime

- Full tax compensation

- 18–24 days of paid vacation

- Paid sick leave:

10 days with a medical certificate

5 days without a certificate

Recruitment Process:

1. Online Call — detailed discussion of the vacancy with a Recruiter (up to 30 minutes)
2. Online Call — English level check (up to 10 minutes)
3. Technical Interview - (up to 60 minutes)

The order of the stages may vary during the process, but always with the goal of moving forward together.

Before sending your CV, please carefully review the vacancy details to save both your time and ours.
If your experience matches the requirements — you will definitely receive feedback.

About Us…

In 2005, brothers Dimitri and Steve Osler set out to reimagine how businesses communicate, and that vision became Wildix. Today, from our headquarters in Tallinn, Estonia, Wildix is one of the world’s fastest-growing UCaaS companies, with 300+ team members from 15+ nationalities, working across Europe, the UK, the Americas and beyond. We serve businesses in 135+ countries through a partner-first ecosystem, delivering secure, intuitive solutions that keep companies connected, productive and ready for what’s next.

At Wildix, we don’t just build technology, we live it. As a remote-first company, we rely on our own platform every day to collaborate globally and innovate fast. With steady growth and a strong foundation, we offer real opportunities to advance your career as we scale, making an impact in a global team that’s shaping the future of work.

At Wildix, our mission is clear: Empower companies worldwide with seamless communication solutions that drive productivity, efficiency, and growth.

About The Role…

We are looking for an experienced Infrastructure Security Engineer to strengthen and harden our AWS-based infrastructure. This role will focus on designing, implementing, and continuously improving our security posture, ensuring compliance with best practices, and proactively identifying and mitigating risks across our cloud environment.

What You Will Do…

• Drive continuous security improvements in AWS based on SIP findings.
• Maintain “100% Green” status in AWS Trusted Advisor and Security Hub.
• Own IAM security, enforcing MFA, auditing admin access, rotating keys, and implementing least-privilege roles.
• Manage temporary privileged access workflows to ensure secure, time-bound access.
• Lead the lifecycle of infrastructure security findings, from triage to remediation and verification.
• Build and operate centralized logging and SIEM for full visibility and threat response.
• Collaborate with DevOps/SRE teams to embed security into provisioning and deployments.
• Coordinate AWS security assessments and penetration testing, driving remediation.
• Provide security guidance for architecture and new services, ensuring best-practice implementation.
• Be available during working hours: 10:00–19:00 UA Time (09:00–18:00 CET).
  
   

What You Will Bring…

• 7+ years in Infrastructure Security, Cloud Security, or Cloud Engineering roles.
• Deep expertise in AWS security services (IAM, VPC, Control Tower, Security Groups, GuardDuty, Config, KMS, WAF).
• Hands-on with Infrastructure-as-Code security (Terraform, CloudFormation) and CI/CD pipeline hardening.
• Solid understanding of AWS network architecture and secure networking practices.
• Skilled in monitoring, logging, and incident response in cloud environments.
• Knowledge of cloud compliance frameworks (ISO 27001, SOC 2, CIS Benchmarks).
• Experienced in threat modeling, vulnerability management, and remediation.
• Practical implementation of zero-trust and least-privilege principles.
• Conduct security reviews of architecture and configurations.

Why You’ll Love It Here

👫 Work with a Supportive, High-Performing Team – We believe in trust, autonomy, and working with bright, passionate individuals who drive real impact.

🌍 A Truly International Workplace – Our diverse and inclusive team ensures you’ll always feel connected and supported, no matter where you are.

🚀 Shape the Future of Global Communication – Be part of a team transforming how businesses operate in an era of remote work and AI-powered collaboration.

💼 Join a Profitable & Stable Company – We’re not a startup experiment, we’re a two decade old success story with sustained profitability, meaning we can back your boldest ideas.

What We Offer

🏖️ Generous Time Off – Take the breaks you need to relax, recharge, and come back inspired.

💻 Top-Tier Tech – Love Mac? So do we! We equip our team with the best tools for success.

🚀 Career Growth & Development – We cover certifications and IT conferences to keep you at the top of your game.

🌱 Well-being Support – We offer access to psychology sessions to support your mental and emotional health

Happy with them? Our Benefits are country-specific. You can ask your recruiter for more information

Interview Process

🤝 Step 1: Initial Screening – A chat with our Talent Team to understand your background, experience, and motivations (30 mins).

🛠️ Step 2: Technical Interview – A deep dive with your potential manager to assess your skills and fit for the role (60 mins).

We Are Wildix

Wildix is an equal-opportunity employer. We value diversity and welcome all applicants regardless of race, gender, age, religion, or any other characteristic. Everyone is encouraged to apply and is welcome to join our Blue Ecosystem. 

Ready to join us? Apply Now!

We are looking for Security Infrastructure Specialist

Description:
This is a short-term, hands-on implementation project - up to 2 months. 
We're looking for a security engineer who can take our existing platforms and configure them into a coherent, modern security posture. 
You'll work across identity, access control, endpoint verification, credential management, and centralized logging. 
The goal is a properly secured environment with clear documentation that our team can operate independently after handoff.

What You'll Do:
- Configure and harden Google Workspace as our central identity provider, enforcing MFA, tightening admin roles, setting up SSO for supported apps, and establishing a clean offboarding process.

- Replace our current VPN-style access model with Cloudflare Zero Trust, putting identity-aware, device-checked access policies in front of internal resources like our staff portal, Grafana, and admin endpoints. Direct exposure of protected services should be eliminated.

- Deploy lightweight endpoint protection (Microsoft Defender for Business) with a BYOD-friendly approach, verifying device security posture (encryption, screen lock, updates) without fully managing personal machines. Integrate device checks into access policies.

- Set up 1Password (or equivalent), migrate shared credentials into properly structured vaults, and provide usage guidance for the team.

- Stand up centralized log ingestion in Axiom, pulling from Cloudflare, Google Workspace, DigitalOcean, Kubernetes, and other available sources. Configure retention and provide a sample investigation walkthrough so we understand how to use it.

- Deliver configuration documentation, an operational runbook, and admin maintenance instructions at project close.

Requirements:

- Demonstrated experience configuring Google Workspace security controls, SSO, and identity management
- Hands-on proficiency with Cloudflare Zero Trust (Access, Tunnel, Gateway)
- Familiarity with endpoint protection deployment in BYOD environments
- Experience with credential management tooling (1Password or similar)
- Practical knowledge of log aggregation and centralized logging platforms
- Comfort working with DigitalOcean, Kubernetes, and Linux-based infrastructure
- Strong documentation habits, you leave things cleaner and clearer than you found them

Preferred Qualifications:

- Direct experience with Axiom for log ingestion and analysis
- Experience securing environments for small, fully remote teams
- Familiarity with Microsoft Defender for Business deployment and device compliance policies
- Background in OSINT, cybersecurity, or investigative technology platforms
- Powered by Workable

• Project Description:

  We are embarking on a critical initiative to achieve ISO 81001 compliance for our esteemed client. ISO 81001 is a pivotal standard for health informatics, specifically focusing on the management and security of health information systems. This project aims to ensure Client's digital infrastructure aligns with the stringent requirements set forth by ISO 81001, safeguarding sensitive healthcare data and bolstering cyber resilience.

   

• Responsibilities:

  Conduct a thorough assessment of Client's existing IT infrastructure, policies, and procedures against ISO 81001 requirements.
  Identify gaps and vulnerabilities that need to be addressed to achieve compliance.
  Collaborate with cross-functional teams to design and implement robust security controls aligned with ISO 81001 standards.
  Deploy necessary security measures to protect Client's health information systems and data assets.
  Draft and enhance security policies, procedures, and guidelines tailored to ISO 81001 specifications.
  Ensure policies are communicated effectively and integrated into Client's operational framework.
  Perform risk assessments and develop risk management strategies to mitigate cyber threats and vulnerabilities.
  Implement proactive measures to enhance Client's cyber resilience in alignment with ISO 81001.
  Conduct training sessions and workshops to enhance cyber security awareness among Client staff.
  Foster a culture of security consciousness and best practices across the organization.
  Establish monitoring mechanisms to track ongoing compliance with ISO 81001 requirements.
  Conduct regular audits and assessments to ensure sustained adherence to security standards.
  Develop incident response protocols and procedures to swiftly address and mitigate security incidents.
  Continuously assess and refine security strategies based on emerging threats and industry developments.

   

• Mandatory Skills Description:

  Bachelor's degree in Cyber Security, Information Technology, or a related field.
  Proven experience in cyber security, particularly in compliance initiatives (ISO standards preferred).
  Strong understanding of health informatics and data security within healthcare environments.
  Excellent analytical skills with the ability to assess complex systems and processes.
  Effective communication skills to engage stakeholders and drive security initiatives forward.

We are looking for an endpoint/workstation support engineer to support multiple mixed MacOS/Windows/Lin remote working environments. You should maintain a high level of user satisfaction, as well as properly document your work.

Your primary tasks will include:

* Enduser remote support for agents installation

* AV alerts investigation

* Ensuring security compliance policies are in place (e.g. full disk encryption, firewall)

* Implementing updates on agent installation packages whenever new version arrives

* Testing of Windows/Win/Lin endpoint agent updates

The candidate should have a proof records of successful projects in the following areas:

* support of AV/EDR/VPN and other security agents on multiple platforms

* Intune MDM

* Apple Business Manager

* Windows, MacOS and Linux endpoint support

* Basic Unix shell and Powershell scripting

* MS Graph API and other REST API basic experience

* Windows and MacOS troubleshooting with the aid of Sysinternals tools and different set of MacOS tools (netstat, lsof, vmstat, top, dtruss, etc.)

* Fluent English

* Teamwork and problem solving mind

* Compliance framework basic awareness (ISO27001/PCI-DSS/HIPAA etc.)

* ITIL and IT service basic awareness and ability to write end-user documentation/procedures/instructions

A big plus if have all or any of the following:

* Microsoft Intune certification or other Microsoft Security/Endpoint certificationi

* Any AV vendor certification

* Any security related certification (e.g. ISO27001LA, CISSP, CISA)

RedCore is an international business group that creates technological solutions for digital markets. Our products and services cover fintech, marketing, e-commerce, customer service, communications, and regulatory technologies.

We are looking for a DevOps Engineer to join our team!

Requirements:

- 3–4+ years of hands-on experience in information security, with a strong focus on network and cloud security.
 - Deep understanding of networking fundamentals: TCP/IP stack, routing (BGP/OSPF), VLANs, VPNs (IPsec, WireGuard, OpenVPN), firewalls (NGFW, IPS/IDS).
 - Proven experience with multi-cloud environments: AWS (VPC, Security Groups, NACLs, Network Firewall), GCP (VPC, Cloud Armor), OpenStack (Neutron networking, security groups).
 - Hands-on experience configuring and managing WAF solutions (Cloudflare WAF preferred: rule sets, whitelists/blacklists, rate limiting, bot mitigation, custom rules).
 - Knowledge of zero-trust principles, network micro-segmentation, and common network-level attacks (DDoS, MITM, ARP/DNS spoofing).
 - Strong Linux administration skills + scripting (Bash/Python) for operational tasks.
 - Experience with SIEM/log management tools (ELK Stack, Splunk, QRadar) for traffic/log analysis and event correlation.
Basic experience with Infrastructure as Code (Terraform) for provisioning secure cloud resources.

Will be plus:

- Hands-on experience securing Kubernetes clusters (EKS on AWS, GKE on GCP, or OpenStack-based Kubernetes): network policies, RBAC, secrets management, ingress security.
 - Deep expertise with Cloudflare (WAF, Zero Trust, Access, Workers) or similar (AWS WAF, GCP Cloud Armor, Akamai).
 - Relevant certifications: AWS Certified Security – Specialty, Google Professional Cloud Security Engineer, CCNP Security, CISSP, PCNSE.
 - Experience automating security tasks (Ansible for configuration management, Terraform modules for secure networking).
 - Familiarity with DevSecOps tools (Checkov for Terraform scanning, Trivy for containers, GitLab Security).
 - Prior work with OpenStack security components (Keystone, Barbican, Neutron extensions).

Soft Skills:

- Strong analytical thinking and ability to investigate complex incidents.
- High attention to detail (especially when tuning WAF rules, reviewing Terraform plans, or auditing cluster configs).
- Excellent communication skills — ability to explain technical concepts to non-technical stakeholders (developers, managers).
- Proactive mindset: identify risks in cloud/network setups and propose practical solutions.
- Comfortable with on-call rotations and handling operational incidents outside regular hours.

Responsibilities:
 - Design, implement, and maintain secure network and cloud architecture across AWS, GCP, and OpenStack.
 - Configure, tune, and monitor security tools: firewalls, WAF (especially Cloudflare — managing whitelists, rules, alerts), IPS/IDS.
 - Perform operational security tasks: traffic monitoring, anomaly detection, incident response, and network forensics.
 - Automate security configurations using IaC (Terraform for cloud resources and security policies; Ansible where applicable).
 - Secure and audit Kubernetes clusters (EKS/GKE): implement network policies, harden configurations, manage secrets.
 - Conduct regular audits of configurations (WAF whitelists, open ports, cloud security groups, OpenStack misconfigurations).
 - Review and audit Terraform code/modules for security best practices and compliance.
 - Collaborate with infrastructure, Dev, and platform teams to embed security into operations.
 - Develop and enforce zero-trust policies and network segmentation in multi-cloud environments.

Technical Stack:

 - Clouds: AWS (VPC, EKS, WAF, GuardDuty), GCP (VPC, GKE, Cloud Armor), OpenStack (Neutron, Magnum for Kubernetes).
 - Network/Security Tools: Cloudflare (WAF, Zero Trust), Palo Alto, Fortinet, Suricata, Zeek, Wireshark, tcpdump.
 - WAF & Protection: Cloudflare rule management (whitelists, rate limiting), AWS/GCP native WAF.
 - IaC & Automation: Terraform (AWS/GCP/OpenStack providers), Ansible.
 - Containers/Orchestration: Kubernetes (EKS/GKE), Helm, Cilium/Calico for advanced networking.
 - Monitoring & Logging: ELK Stack, Splunk, Prometheus/Grafana, NetFlow collectors.
 - Scripting: Python, Bash.

Our benefits to you:
☘️An exciting and challenging job in a fast-growing business group, the opportunity to be part of a multicultural team of top professionals in Development, Architecture, Management, Operations, Marketing, Legal, Finance and more

🤝🏻Great working atmosphere with passionate experts and leaders, sharing a friendly culture and a success-driven mindset is guaranteed

🧑🏻‍💻Modern corporate equipment based on macOS or Windows and additional equipment are provided

🏖Paid vacations, sick leave, personal events days, days off

💵Referral program — enjoy cooperation with your colleagues and get the bonus

📚Educational programs: regular internal training sessions, compensation for external education, attendance of specialized global conferences

🎯Rewards program for mentoring and coaching colleagues

🗣Free internal English courses

✈️In-house Travel Service

🦄Multiple internal activities: online platform for employees with quests, gamification, presents and news, clubs for movie / book / pets lovers and more

🎳Other benefits could be added based on your location

We are seeking a highly experienced Senior Cybersecurity Presale Consultant (Part-time) with a strong background as a hands-on Cybersecurity Engineer and proven ability to operate in client-facing, advisory, and pre-sales environments.

This is a part-time hybrid role combining deep technical cybersecurity expertise with strategic consulting and commercial engagement. The ideal candidate understands the full cybersecurity landscape and can confidently design solutions, advise executives, and support the sale of cybersecurity services.

Technical Expertise:

• Design and review enterprise security architectures across cloud, on-prem, and hybrid environments
• Lead security assessments, audits, and risk evaluations
• Implement and advise on security controls (SIEM, EDR/XDR, IAM, PAM, DLP, CSPM, etc.)
• Secure AWS, Azure, and GCP infrastructures
• Support DevSecOps, container security, and modern application environments
• Drive ISMS (ISO 27001), risk management, and compliance initiatives

Consulting and Commercial Engagement:

• Act as a trusted cybersecurity advisor for clients
• Translate technical risks into business-level impact for executives
• Support sales teams in solution design, proposals, and client presentations
• Identify new cybersecurity opportunities and help expand service offerings
• Represent the company as a subject-matter expert in workshops and discovery sessions

Required Qualifications:

• 8-10+ years of cybersecurity experience with a strong engineering foundation
• Essential client-facing experience, preferably in a Sales or close to Sales role
• Broad expertise across cloud, network, application, and identity security
• Experience working with enterprise-scale environments. Proven track record of leading successful regulatory and certification audits
• Strong understanding of ISO 27001, NIST, GDPR, and risk management frameworks. Proven track record of leading organizations through PCI DSS, ISO 27001, GDPR, and multi-jurisdiction regulatory audits
• Hands-on leadership in multi-country compliance programs (EU, UK, US)
• Experience in regulated industries (banking, fintech, crypto, gaming)
• Fluent English and excellent communication skills
• Commercially aware, confident, and consultative mindset

In return, we offer:

• The friendliest community of like-minded IT people
• Open knowledge-sharing environment – exclusive access to a rich pool of colleagues willing to share their endless insights into the broadest variety of modern technologies
• Mobilunity Medical Insurance program is designed to meet our team’s needs
• Paid vacations and sick leaves, including 5 paid days per year that don’t require a sick note
• Perfect office location in the city center (900m from Lukyanivska metro station with a green and spacious neighborhood) or remote mode engagement: you can choose a convenient one for you, with a possibility to fit together both
• No open-spaces setup – separate rooms for every team’s comfort, and multiple lounge and gaming zones
• English classes in 1-to-1 & group modes with elements of gamification
• Neverending fun: sports events, tournaments, music band, multiple affinity groups

 Come on board, and let’s grow together!

Cyber Harbor is a fast-growing Ukraine-based company founded by engineers and researchers who helped defend critical cyber infrastructure during the war. Our work is shaped by real-world experience, and we build AI-powered systems designed for complex, high-stakes environments.

We are currently looking for a Cybersecurity Engineer who will help us design, implement, and maintain the security foundations of our data processing platforms and the infrastructure around them. This role combines practical security engineering with hands-on research and testing. You will help define internal security standards, protect critical infrastructure, and proactively identify weaknesses in our systems before they can be exploited.

We build complex AI systems that operate on large datasets in sensitive environments. Because of that, security is not just a compliance requirement for us - it is a core engineering discipline.

What You Will Do

• Design and implement cybersecurity policies and internal security standards.
• Help maintain visibility and control over company devices, servers, and infrastructure assets.
• Build and improve systems that help prevent data leaks and unauthorized access.
• Perform internal security assessments of our products, infrastructure, and services.
• Conduct regular internal penetration testing and security audits.
• Use tools such as Nmap, Nuclei, Metasploit, and other scanning frameworks to identify vulnerabilities.
• Investigate potential attack surfaces across APIs, web applications, internal services, and infrastructure.
• Work closely with engineering teams to identify and address security issues early in the development process.
• Help implement monitoring, logging, and detection mechanisms for suspicious activity.
• Document findings, propose mitigation strategies, and support teams in implementing fixes.

What You Need to Join Us

• Strong practical understanding of cybersecurity principles and modern attack vectors.
• Hands-on experience with security testing tools such as Nmap, Nuclei, Metasploit, or similar frameworks.
• Strong understanding of network security, web application security, and infrastructure security.
• Experience conducting penetration tests or security research.
• Familiarity with Linux systems and common server environments.
• Ability to analyze systems and identify weaknesses in architecture or implementation.
• Curiosity, persistence, and a strong desire to understand how systems fail.
• Ability to configure and maintain system-level firewalls (for example, iptables, nftables, or ufw) and enforce network-level access policies.
• Experience configuring and operating Web Application Firewalls (WAFs) such as Cloudflare WAF, ModSecurity, or similar solutions to protect APIs and web services.
• Strong practical understanding of how the Internet works, including DNS, TLS, HTTP, and common attack vectors affecting networked systems.
• Solid knowledge of networking fundamentals, including TCP/IP, routing, NAT, VLANs, and the OSI model.
• Ability to analyze traffic flows, understand how packets move through networks, and diagnose connectivity or security issues across different layers of the network stack.

Relevant certifications such as OSCP, CEH, Security+, or similar are welcome, but real-world experience and demonstrated skills matter more.

Who We Are Looking For

Not looking for someone whose experience is centered primarily on managing large security teams or producing compliance documentation.

Instead, we are looking for highly motivated engineers and curious security-minded builders who enjoy exploring systems, testing assumptions, finding weaknesses in creative ways, and building stronger defenses as a result. Unusual backgrounds, unconventional experience, and self-driven experimentation can be a better fit for this role than a traditional career path.

Why Join Us

• Work on real-world systems operating in high-stakes environments.
• Help secure AI platforms and data infrastructure used in complex operational scenarios.
• Military deferment is available for full-time employees.
• Flexible work format in a results-driven environment.

–––––––––––––––––––––––––––––––Рідною–––––––––––––––––––––––––––––––

Cyber Harbor - українська компанія, заснована інженерами та дослідниками, які брали участь у захисті критичної кіберінфраструктури під час війни. Ми спираємося на реальний практичний досвід і створюємо AI-powered системи для складних середовищ, де помилка може мати високу ціну.

Зараз ми шукаємо Cybersecurity Engineer, який допоможе нам будувати, впроваджувати та підтримувати базові елементи безпеки наших платформ для обробки даних і пов’язаної з ними інфраструктури. Ця роль поєднує практичну security engineering роботу з hands-on дослідженням і тестуванням. Ви допомагатимете формувати внутрішні стандарти безпеки, захищати критичну інфраструктуру та проактивно виявляти слабкі місця в наших системах до того, як ними зможуть скористатися.

Ми створюємо складні AI systems, що працюють із великими обсягами даних у чутливих середовищах. Саме тому для нас безпека - це не просто вимога комплаєнсу, а повноцінна інженерна дисципліна.

Що ви будете робити

• Проєктувати та впроваджувати політики кібербезпеки й внутрішні стандарти безпеки.
• Допомагати підтримувати контроль і прозорість щодо корпоративних пристроїв, серверів та інфраструктурних активів.
• Будувати та вдосконалювати рішення, що знижують ризик витоку даних і несанкціонованого доступу.
• Проводити внутрішні security assessments наших продуктів, інфраструктури та сервісів.
• Регулярно проводити внутрішні penetration tests і security audits.
• Використовувати такі інструменти, як Nmap, Nuclei, Metasploit та інші scanning frameworks, для виявлення вразливостей.
• Аналізувати потенційні attack surfaces на рівні APIs, web applications, внутрішніх сервісів та інфраструктури.
• Тісно взаємодіяти з engineering teams, щоб виявляти й закривати security issues ще на ранніх етапах розробки.
• Допомагати впроваджувати механізми моніторингу, логування та виявлення підозрілої активності.
• Документувати результати, пропонувати mitigation strategies і допомагати командам впроваджувати необхідні виправлення.

Що нам важливо

• Сильне практичне розуміння принципів кібербезпеки та сучасних attack vectors.
• Hands-on досвід роботи з інструментами security testing, такими як Nmap, Nuclei, Metasploit або подібними frameworks.
• Сильне розуміння network security, web application security та infrastructure security.
• Досвід проведення penetration tests або security research.
• Знайомство з Linux-системами та типовими серверними середовищами.
• Вміння аналізувати системи та виявляти слабкі місця в архітектурі або реалізації.
• Допитливість, наполегливість і сильна внутрішня мотивація розуміти, як саме системи дають збій.
• Вміння налаштовувати та підтримувати system-level firewalls (наприклад, iptables, nftables або ufw) і забезпечувати мережеві політики доступу.
• Досвід налаштування та експлуатації Web Application Firewalls (WAFs), таких як Cloudflare WAF, ModSecurity або подібних рішень, для захисту APIs і web services.
• Сильне практичне розуміння того, як у реальності працює Інтернет, зокрема DNS, TLS, HTTP та типові attack vectors, що впливають на мережеві системи.
• Ґрунтовні знання мережевих основ, зокрема TCP/IP, routing, NAT, VLANs і моделі OSI.
• Вміння аналізувати traffic flows, розуміти, як пакети проходять через мережу, та діагностувати проблеми зі з’єднанням або безпекою на різних рівнях network stack.

Профільні сертифікації, такі як OSCP, CEH, Security+ або подібні, будуть плюсом, але для нас важливішими є реальний практичний досвід і підтверджені навички.

Кого ми шукаємо

Не шукаємо людину, чий досвід зосереджений переважно на управлінні великими security teams або підготовці compliance documentation.

Натомість ми шукаємо сильних, мотивованих інженерів і допитливих security-minded фахівців, яким цікаво досліджувати системи, перевіряти припущення, нестандартно шукати слабкі місця й на цій основі будувати сильніший захист. Незвичний бекграунд, нетиповий досвід і self-driven експерименти можуть підійти для цієї ролі краще, ніж класичний кар’єрний шлях.

Чому варто приєднатися

• Працювати з реальними системами, що функціонують у середовищах із високою ціною помилки.
• Допомагати захищати AI platforms та data infrastructure, які використовуються в складних операційних сценаріях.
• Бронювання доступне для full-time працівників.
• Гнучкий формат роботи в середовищі з фокусом на результат.