Jobs Security

N-iX is looking for skilled Senior/Lead Active Directory Engineer to join our team! Our customer is the European online car market with over 30 million monthly users, with a market presence in 18 countries. As a Lead Active Directory Engineer, you will play a pivotal role in shaping the future of online car markets and enhancing the user experience for millions of car buyers and sellers. We require a Lead Engineer to assess, clean up, and harden multiple inherited single-forest, single-domain Active Directory environments. These environments require standardization, security hardening, and alignment with current best practices. The focus will be on improving AD structure, security posture, Group Policy hygiene, and operational consistency, while also evaluating long-term viability and integration with enterprise IAM platforms. This is a hands-on senior role requiring deep expertise in Active Directory architecture, security, identity integration, and remediation of legacy configurations, including alignment with industry audit and compliance standards (e.g., PCI DSS).

Requirements:

• EDT Timezone work hours
• Extensive hands-on experience (typically 7+ years) with Active Directory engineering and administration.
• Proven experience performing AD clean-up, consolidation, or post-transition integration work.
• Strong expertise in: Active Directory (single-domain environments at scale), Group Policy design, cleanup, and optimization, OU design and delegation models.
• Demonstrated experience with: AD security hardening (tiered admin model, least privilege, attack surface reduction), identifying and remediating, stale objects (users, computers, groups), legacy permissions and misconfigurations, GPO sprawl and conflicts.
• Experience integrating Active Directory with IAM/IdP platforms, including: Azure AD / Entra ID - must have, Okta - nice to have, etc, SSO, federation, and identity synchronization (e.g., AAD Connect or equivalent), role-based access control (RBAC) and identity lifecycle management.
• Experience working within regulated or audited environments, including: PCI DSS (or similar frameworks such as ISO 27001, NIST).
• Implementing controls related to identity, access management, and auditability.
• Strong knowledge of: Authentication protocols (Kerberos, NTLM, SAML/OIDC basics), DNS (AD-integrated), replication, and site topology.
• Experience with tools such as: ADUC, ADSIEdit, Group Policy Management Console, PowerShell (AD module - must have) for bulk changes and reporting.
• Experience in auditing and improving: privileged access (Domain Admins, Enterprise Admins), service accounts and delegation.
• At least upper-intermediate English level.

 Responsibilities:

• Perform a comprehensive assessment of current AD environments.
• Identify and remediate: inactive/stale objects, legacy groups and excessive permissions, GPO duplication, conflicts, and inefficiencies.
• Redesign and implement: OU structure and delegation model, Group Policy strategy aligned to best practices.
• Implement security hardening measures, including: privileged access model (e.g., tiering), reduction of attack surface and legacy protocols.
• Alignment with audit/compliance requirements (e.g., PCI DSS controls).
• Integrate AD environments with enterprise IAM platforms, including: identity synchronization and federation, access model alignment (RBAC / least privilege), SSO enablement and identity lifecycle processes.
• Review and optimize: AD Sites and Services (replication topology), DNS configuration and health.
• Develop and execute cleanup and remediation plans with minimal disruption.
• Automate tasks and reporting using PowerShell.
• Produce clear documentation and operational standards, including audit-ready configurations.

Nice-to-Have Certifications:

• Microsoft Certified: Windows Server Hybrid Administrator Associate
• Microsoft Certified: Identity and Access Administrator Associate (SC-300)
• Microsoft Certified: Azure Solutions Architect Expert
• MCSA / MCSE (legacy but relevant)
• Security certifications (e.g., CISSP, Security+, CISM)
• Okta Certified Professional / Administrator (or similar IAM certifications)

JarvisHeart is a rapidly expanding global IT & Tech company based in Cyprus, dedicated to its team, providing an inspiring dynamic work culture.Established in 2024, we are aimed to deliver services and solutions for businesses. We attract and retain the best IT professionals, offering avenues for development and progress to provide exceptional solutions to clients around the globe. Join us and become a part of JarvisHeart’s success story.

We are seeking a highly skilled Anti-Fraud manager to spearhead fraud detection efforts. The ideal candidate will have a strong background in fraud prevention and risk management.

Key Responsibilities:
• Real-time monitoring and analysis of player activity, including deposits, withdrawals, bets, gaming patterns, and behavioral data.
• Detection and investigation of suspicious activities such as bonus abuse, multi-accounting, collusion, chargebacks, money laundering (AML), and other fraud schemes.
• Working with the verification system: review of KYC documents, verification of payment methods and Source of Funds analysis.
• Analysis of fraud incidents, preparation of reports, and development of recommendations for risk mitigation.
• Monitoring fraud trends in the iGaming industry and proposing improvements.

Work Schedule: 5-Day Rotating Schedule (8-hour shifts)

Option A: Working days — Sunday + Monday + Tuesday + Wednesday + Thursday Option B: Working days — Tuesday + Wednesday + Thursday + Friday + Saturday

5 working days per week with 8-hour shifts and 2 consecutive days off.

Required Qualifications:

• At least 1–2 years of experience in anti-fraud, fraud prevention, or risk management within the iGaming / online casino
• Proficiency in English.
• Strong analytical and problem-solving skills.
• Ability to work in a fast-paced, high-pressure environment.
• Readiness to work on a weekend-priority schedule (Saturday or Sunday as regular working days)
• Experience with anti-fraud and KYC tools will be considered a strong advantage.

Optional Qualifications:

• Experience with international fraud prevention strategies.
• Knowledge of compliance requirements in Canada and Europe.

What we offer:

• 17 vacation days (Enjoy vacation policy to recharge and explore. We believe work-life balance is key to personal and professional well-being.)
• 15 paid sick days (Your health matters. We offer paid sick leave to ensure you can recover without financial stress)
• Insurance after the probation period (Your well-being is our priority. After completing the probationary period, you’ll gain access to our comprehensive insurance plan to support your health and peace of mind.)
• Public holidays off (Take time to celebrate and enjoy national holidays with friends and family without worrying about work.)
• Work equipment provided (Start your journey with the best tools for success! We provide all the necessary equipment to help you work efficiently and comfortably.)

If you’re ready to take on this exciting challenge and contribute to a fast-growing industry, apply now!

We are seeking a highly skilled Anti-Fraud manager to spearhead fraud detection efforts. The ideal candidate will have a strong background in fraud prevention and risk management.

Key Responsibilities:
• Real-time monitoring and analysis of player activity, including deposits, withdrawals, bets, gaming patterns, and behavioral data.
• Detection and investigation of suspicious activities such as bonus abuse, multi-accounting, collusion, chargebacks, money laundering (AML), and other fraud schemes.
• Working with the verification system: review of KYC documents, verification of payment methods and Source of Funds analysis.
• Analysis of fraud incidents, preparation of reports, and development of recommendations for risk mitigation.
• Monitoring fraud trends in the iGaming industry and proposing improvements.

Work Schedule: 5-Day Rotating Schedule (8-hour shifts)
Option A: Working days — Sunday + Monday + Tuesday + Wednesday + Thursday Option B: Working days — Tuesday + Wednesday + Thursday + Friday + Saturday
5 working days per week with 8-hour shifts and 2 consecutive days off.

Required Qualifications:
 

• At least 1–2 years of experience in anti-fraud, fraud prevention, or risk management within the iGaming 
• Proficiency in English.
• Strong analytical and problem-solving skills.
• Ability to work in a fast-paced, high-pressure environment.
• Readiness to work on a weekend-priority schedule (Saturday or Sunday as regular working days)
• Experience with anti-fraud and KYC tools will be considered a strong advantage.

Optional Qualifications:
 

• Experience with international fraud prevention strategies.
• Knowledge of compliance requirements in Canada and Europe.

What we offer:
• Opportunity to make an impact and see the results of your work within the company.
• Competitive compensation that grows with your achievements.
• Paid vacation and sick leave.
• Medical insurance.
• Budget for conferences, workshops, and training to support your professional growth.
• Free English language courses.
• Flexible work schedule. 

If you’re ready to take on this exciting challenge and contribute to a fast-growing industry, apply now!

We are looking for an IAM Security Engineer to build and strengthen our identity and access security controls across cloud, SaaS, and internal systems. In this role, you will be responsible for implementing practical Zero Trust principles, ensuring secure authentication, enabling Single Sign-On (SSO), enforcing Multi-Factor Authentication (MFA), and handling other key security tasks. Join our team to help protect sensitive data and improve the overall security posture of our systems.

Responsibilities

• Implement and maintain IAM controls across cloud, SaaS, and internal platforms
• Configure and optimize SSO integrations using SAML, OAuth 2.0, and OIDC
• Design and refine MFA and Conditional Access policies 
• Support secure user lifecycle processes, including Joiner, Mover, and Leaver (JML) activities
• Participate in access reviews and privilege cleanup activities
• Troubleshoot  authentication and authorization issues
• Analyze authentication events and provide technical expertise for identity-related investigations
• Collaborate with Engineering and IT teams to ensure secure onboarding of applications and access models
• Ensure alignment with audit and compliance requirements related to IAM controls
• Contribute to practical Zero Trust improvements based on company priorities and maturity

Requirements

• 3+ years of hands-on experience in IT or Information Security with a dedicated focus on Identity and Access Management (IAM), authentication, SSO, MFA, access control and user administration
• Practical experience with major Identity Providers such as Microsoft Entra ID, Okta, or similar solutions
• Solid grasp of identity standards, including SAML 2.0, OAuth 2.0, and OpenID Connect (OIDC)
• Proven ability to configure SSO integrations, manage MFA policies, and administer user/group/role hierarchies
• Strong understanding of Least Privilege, Conditional Access frameworks, and Joiner-Mover-Leaver (JML) lifecycles
• Ability to troubleshoot authentication issues and analyze identity-related logs
• Proficiency in PowerShell, Python or Bash
• English - Intermediate or higher (for free communication)

Will be a plus

• Practical experience in automating identity workflows, including user provisioning, deprovisioning, access reviews, and role-based access assignments
• Experience in enterprise-scale Fintech, Banking, or Telecom industries

We offer

• 20 paid vacation days per year
• 10 paid sick leave days per year
• Public holidays as per the company’s approved Public holiday list
• Medical insurance
• Opportunity to work remotely
• Professional education budget
• Language learning budget
• Wellness budget (gym membership, sports gear and related expenses)

We are looking for a Security Coordinator who will help us keep our company’s data, infrastructure, and SaaS ecosystem secure and well-governed.
 

This role focuses on access control, SaaS security, and risk management, ensuring that our systems are used safely and only by the people who actually need access.
 

Responsibilities

• Maintain a complete inventory of company systems and assets, including:
  • Cloud infrastructure
  • Databases
  • Google Workspace / shared drives
  • Internal tools
  • Third-party SaaS applications
  • AI tools used by the team
• Ensure proper access management across all systems:
  • Apply the principle of least privilege
  • Review and revoke unnecessary permissions
  • Monitor shared accounts and external access
• Conduct periodic access audits for:
  • Cloud environments
  • Databases
  • Google Drive and internal documentation
  • SaaS tools and integrations
• Identify and mitigate security risks related to AI tools, including:
  • Preventing sensitive data from being uploaded to AI platforms
  • Managing access to AI tools
  • Creating safe usage policies
• Work with engineering and operations teams to:
  • Improve security practices
  • Document access processes
  • Maintain internal security guidelines
• Track and manage security risks from third-party services
• Assist with security documentation and compliance processes (e.g., SOC2 or internal security policies).
   

Requirements

• Experience with cloud platforms (AWS, GCP, Azure, or similar)
• Familiarity with identity and access management concepts
• Experience managing SaaS ecosystems (Google Workspace, Slack, etc.)
• Understanding of data security risks and access control
• Ability to analyze system permissions and identify unnecessary access
• Awareness of AI-related security risks (data leakage, prompt injection, uncontrolled usage)
   

Nice to Have

• Experience with SOC 2 / security compliance
• Familiarity with IAM tools or security monitoring platforms
• Background in DevOps, IT administration, or security operations
   

What Success Looks Like

• All company systems are properly inventoried and documented
• Access is granted strictly on a need-to-know basis
• No forgotten accounts, open shares, or unnecessary privileges
• AI tools are used safely and responsibly

About Teramind

Teramind is the leading platform for user behavior analytics, serving multiple use cases from insider risk mitigation to business process optimization. With our comprehensive suite of solutions, organizations gain unprecedented visibility into user activities while enhancing security, optimizing productivity, and ensuring compliance. Trusted by Fortune 500 companies and businesses of all sizes across industries, our innovative platform helps organizations protect sensitive data, maximize workforce performance, and create safer, more efficient digital workplaces. Through real-time monitoring and advanced analytics, we enable businesses to safeguard their most sensitive information while optimizing employee productivity in both in-office and remote work environments.

Our Core Values

At Teramind, our values drive everything we do. We embrace innovation as a fundamental principle, constantly pushing boundaries to improve our products, streamline processes, and enhance customer experiences. We foster resourcefulness by empowering our team members with the autonomy and confidence to solve problems independently while providing collaborative support when needed. As a globally inclusive organization, we celebrate diversity and create an adaptable work culture where respect and collaboration thrive across our international teams. Above all, we are committed to excellence, delivering the highest quality in every aspect of our work and consistently exceeding expectations in service to our clients and each other.

Key Responsibilities 

Security in the SDLC

• Own and enforce DevSecOps practices across CI/CD pipelines (SAST, DAST, SCA, and other practices)
• Integrate automated security tooling into development workflows; reduce manual security gates
• Partner with development teams to perform secure code reviews and threat modeling

Vulnerability & Risk Management

• Drive vulnerability identification, triage, and remediation across infrastructure and applications
• Manage security tooling stack
• Produce and maintain a risk register; track remediation SLAs

Penetration Testing, crowd testing & Incident Response

• Lead or coordinate internal/external penetration testing cycles
• Manage crowd testing campaigns
• Develop and maintain an incident response playbook; support incident investigations

Compliance & Governance

• Support compliance with SOC 2, ISO 27001, GDPR, and relevant data protection frameworks
• Define and enforce security policies, standards, and developer security training

Leadership & Collaboration

• Act as the primary security SME for the engineering organization
• Mentor developers on secure coding practices; build a security-first engineering culture
• Interface with external auditors, clients, and the executive team on security posture

Requirements

• 5+ years of experience in DevSecOps, application security, or security engineering
• Demonstrated experience managing security in software development environments (not just ops/infrastructure)
• Strong development background, proficiency in at least 1 language (eg: Python, Go, Java, C#)
• Hands on experience with CI/CD security tooling (SAST/DAST/SCA integration, secrets management)
• Experience with cloud security (AWS, Azure, or GCP) and container security (Docker, Kubernetes)
• Familiarity with SOC 2 or ISO 27001 compliance frameworks
• Excellent English communication skills (written and verbal)

Preferred/Nice to Have

• Penetration testing experience or relevant certification (OSCP, CEH, GPEN)
• Security certifications (CISSP, CSSLP, AWS Security Specialty, or similar)
• Experience at a B2B SaaS or cybersecurity product company
• Familiarity with insider threat, DLP, or endpoint security product domains

Why join us?

• Opportunity to shape the technical vision of a fast-growing company.

• Work alongside talented engineers solving challenging problems.

• Influence not just the codebase, but also the culture and processes of the engineering organization.

Benefits

This is a remote job. Work from anywhere! We’ve been thriving as a fully-remote team since 2014. To us, remote work means flexibility and having truly diverse, global teams.

Additionally:

• Collaboration with a forward-thinking team where new ideas come to life, experience is valued, and talent is incubated.

• Competitive salary

• Career growth opportunities

• Flexible paid time off

• Laptop reimbursement

• Ongoing training and development opportunities

About our recruitment process

We don’t expect a perfect fit for every requirement we’ve outlined. If you can see yourself contributing to the team, we want to hear your story. You can expect up to 3 interviews. In some scenarios, we’re able to streamline the process to have minimal rounds. Director-level roles and above should expect a more thorough process, with multiple rounds of interviews.

All roles require reference and background checks

Teramind is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration without regard to race, age, religion, color, marital status, national origin, gender, gender identity or expression, sexual orientation, disability, or veteran status.

Playson is a leading iGaming supplier operating in multiple regulated markets, delivering engaging casino content and advanced technology. We’re a fast-growing, tech-driven company that values innovation, autonomy, and ownership. At Playson, we welcome people who are curious, proactive, and passionate about solving complex challenges at scale.

We are ISO/IEC 27001 certified and committed to maintaining a robust security and compliance posture across all our operations.

About the Role

We are looking for a Security Lead to strengthen Playson’s information security framework and drive continuous improvement of our security culture. This role combines technical expertise, investigative focus, and process leadership - ensuring that our systems, data, and people remain secure, compliant, and resilient.

What will you be doing?

Information Security & Compliance

• Maintain and continuously improve the ISO/IEC 27001:2022 Information Security Management System (ISMS).
• Foster a strong Security-First mindset across the organization.
• Work closely with the CTO, Head of IT, and DevOps to enhance internal security controls.
• Conduct internal audits, risk assessments, and coordinate certification renewals.
• Update security policies and controls in line with ISO 27001, GDPR, and relevant international frameworks (e.g., NIST CSF and NIS2 principles where applicable).
  Manage integrations and alerting within Datadog SIEM, CrowdStrike, Cloudflare, and Google Workspace.
• Support DLP implementation and maintain central tracking of security events.
• Document risks, incidents, and corrective actions to ensure continuous compliance.

Incident Response & Investigation

• Lead investigations into security incidents such as phishing, data leakage, or unauthorized access.
• Collect and analyze digital evidence across systems (CrowdStrike, Cloudflare, Google, Slack).
• Maintain and enhance incident response playbooks and escalation workflows.
• Collaborate with HR, Legal, and IT teams during internal investigations.
• Produce post-incident reports and recommend remediation measures.

Endpoint & Access Security

• Manage MDM systems (Zoho MDM, Endpoint Central) and ensure full compliance for macOS endpoints.
• Maintain CrowdStrike Falcon configurations and endpoint posture enforcement.
• Oversee SSO, MFA, and 2FA enforcement across services (Google SSO, DUO Mobile, 1Password).
• Implement Just-in-Time (JIT) privilege elevation and regular admin access reviews.
• Perform Quarterly RAS Access Management Reviews.

• Maintain a consistent audit trail for access management throughout the year.

   

To succeed in the role, you will have:

• 3+ years of experience in information security, IT audit, or digital investigations.
• Solid understanding of ISO 27001, GDPR, and modern security frameworks (NIST CSF / NIS2).
• Hands-on experience with SIEM / EDR systems
• Proven ability to manage SSO, MFA, DLP, and MDM environments.
• Strong communication skills in English (B2 or higher).
• Analytical mindset, integrity, and attention to detail.

Preferred additional qualifications:

• Certifications: CISSP, CISM, CEH, ISO 27001 Lead Auditor, AWS Security Specialty.
• Experience with Zero Trust, PAM, DLP/CASB, or SOAR platforms.
• Forensics experience.
• Experience in designing awareness programs or running phishing simulations.

What you get in return:

• Competitive Salary: We offer a competitive salary in EUR, subject to annual performance reviews
• Quarterly Bonuses: Benefit from a transparent and systematic quarterly bonus system
• Flexible Schedule: We offer a flexible work schedule to accommodate your needs
• Remote Work Option: Choose to work remotely, providing greater flexibility and comfort
• Medical Insurance: Receive comprehensive medical insurance for both you and a significant other
• Financial Support for Life Events: We provide financial support during special life events
• Unlimited Paid Vacation: Enjoy unlimited paid vacation leave
• Unlimited Paid Sick Leave: Take unlimited paid sick leave whenever necessary
• Professional Development: Get reimbursement for professional development courses and training

The recruitment process includes the following steps:

1. HR Interview (30-45 mins)

2. Technical interview with Service Desk & Security Lead (60 mins)

3. Final Interview with CTO and People Business Partner (60 mins)

We are looking for a Security Coordinator who will help us keep our company’s data, infrastructure, and SaaS ecosystem secure and well-governed.

This role focuses on access control, SaaS security, and risk management, ensuring that our systems are used safely and only by the people who actually need access.

Responsibilities

• Maintain a complete inventory of company systems and assets, including:
  • Cloud infrastructure
  • Databases
  • Google Workspace / shared drives
  • Internal tools
  • Third-party SaaS applications
  • AI tools used by the team
• Ensure proper access management across all systems:
  • Apply the principle of least privilege
  • Review and revoke unnecessary permissions
  • Monitor shared accounts and external access
• Conduct periodic access audits for:
  • Cloud environments
  • Databases
  • Google Drive and internal documentation
  • SaaS tools and integrations
• Identify and mitigate security risks related to AI tools, including:
  • Preventing sensitive data from being uploaded to AI platforms
  • Managing access to AI tools
  • Creating safe usage policies
• Work with engineering and operations teams to:
  • Improve security practices
  • Document access processes
  • Maintain internal security guidelines
• Track and manage security risks from third-party services
• Assist with security documentation and compliance processes (e.g., SOC2 or internal security policies).

Requirements

• Experience with cloud platforms (AWS, GCP, Azure, or similar)
• Familiarity with identity and access management concepts
• Experience managing SaaS ecosystems (Google Workspace, Slack, etc.)
• Understanding of data security risks and access control
• Ability to analyze system permissions and identify unnecessary access
• Awareness of AI-related security risks (data leakage, prompt injection, uncontrolled usage)
• Understanding web development pipeline and security in it

Nice to Have

• Experience with SOC 2 / security compliance
• Familiarity with IAM tools or security monitoring platforms
• Background in DevOps, IT administration, or security operations

What Success Looks Like

• All company systems are properly inventoried and documented
• Access is granted strictly on a need-to-know basis
• No forgotten accounts, open shares, or unnecessary privileges
• AI tools are used safely and responsibly

We’re seeking a highly experienced Payments Operations Manager with deep expertise across high-risk merchant processing, international banking workflows, and secure operational environments. 
This role requires a sharp, detail-driven operator who can manage sensitive financial documentation, ensure airtight compliance, and coordinate seamlessly with global payments partners.

You will oversee mission-critical processes tied to MID acquisition, high-risk merchant onboarding, banking compliance, and the maintenance of multi-jurisdiction corporate structures. Precision, discretion, and exceptional operational discipline are essential.

What You’ll Do

• Monitor payment flows and detect anomalies
• Coordinate support, finance, and engineering teams
• Handle operational escalations and incidents
• Improve and document internal procedures
• Ensure smooth day-to-day operations across the payment stack

You’ll Be a Great Fit If

• Experience in fintech or payment operations
• Strong understanding of payment flows
• Excellent communication and coordination skills
• Problem-solver mindset
• Ability to work in fast-paced environments

Would Be a Plus

• Experience with high-risk payment processors (Rocketgate, Sticky.io, Konnektive, NMI, Authorize.net, Paynetics, etc.)
• Understanding of gateway routing, risk scoring, fraud controls, and merchant monitoring
• Ability to communicate with global banking partners (multilingual a bonus)
• Comfortable working within or close to the Dubai time zone
• Background in fast-paced, high-compliance environments
• Startup mindset — able to bring structure into evolving processes

What You’ll Have With Us

• Fully remote work
• High level of ownership
• Clear operational structure
• Supportive team with strong communication culture

About the Role

We are looking for a highly skilled and strategic Senior DevSecOps Engineer to lead our security operations and infrastructure automation initiatives. In this role, you will bridge the gap between development, security, and operations, ensuring our on-premise environment remains secure, resilient, and efficient.
You will act as a subject matter expert, leveraging cutting-edge tools like CrowdStrike to automate threat detection and response, while maintaining robust perimeter security via Cloudflare.

Key Responsibilities
Implementation and automation of security tools in the CI/CD process (SAST, DAST, SCA).
Analysis of vulnerabilities in code, infrastructure and containers.
Development and configuration of security monitoring systems, incident response.
Monitoring and improving the security level of on-prem infrastructures.
Interaction with developers, DevOps and security teams to implement secure practices.
Active participation in the processes of IAM configuration, management of certificates, secrets and access policies.
Conducting internal security audits, participation in external (e.g. penetration) tests.

Requirements

Must-have:
Experience: 5+ years of experience in DevSecOps, Security Engineering, or a related field, with at least 2 years in a Senior role.
Tooling Expertise: Deep hands-on experience with the following specific tools:
Baremetal/on-premise infrastructure
Docker (Docker Swarm is a strong plus)
Gitlab CI 
CrowdStrike
Cloudflare
ELK.
SIEM Proficiency: Proven experience deploying and tuning SIEM solutions (e.g., Splunk, Elastic Security, Datadog, or similar).
Infrastructure: Strong background in managing on-premise infrastructure (physical servers, data centers, virtualization, networking).
Scripting: Proficiency in Python, Go, or Bash for automation and tooling.

Nice-to-have:
Experience with Kubernetes and such tools as Wiz.io and Torq.
Previous involvement in high-load, regulated, or 24/7 production environments (e.g., iGaming, FinTech, telecom or similar).

We offer
Fully remote work opportunity
Enhanced leave benefits:
20 days of paid vacation
5 paid days off
14 paid sick leaves
Company clubs & communities
Celebration gifts for personal milestones
Corporate online events, raffles & challenges
Corporate English program
Corporate yoga classes
Team-building activities
Coworking compensation
Training and development programs (internal & external).

COMPARUS UA is a development and innovation center of the German company Comparus GmbH.
For 17 years, we have specialized in digital transformation, business process optimization, and the creation of complex IT solutions for the financial sector.
We provide a full development cycle: from analytics to cloud infrastructure support.

Requirements:

• Experience as a System Administrator ( 2 years +)
• Knowledge of MacOS at the administrator level
• Network Technologies
• Basic knowledge of remote desktops and the principles of the thin clients
• Knowledge of the basics of information security
• Knowledge of ISO27001, ISO27002 and similar documents and experience with ISO/IEC 27001 certification audits in information security
• Understanding the basic aspects of information security and network components (firewalls, switches, routers, VPNs)
• English: Intermediate (B1-В2). Fluent level is welcome

Would be a plus:

• Experience in supporting or taking part in corporate inventory checks

Responsibilities:

• Implementing and enforcing security policies
• Monitoring security events and incidents
• Conducting risk assessments and security audits
• Managing cybersecurity tools and protection systems
• Delivering information security awareness training for employees
• Ensuring compliance with standards and requirements (ISO 27001)
• Creating, reviewing, and regularly updating ISO 27001 documentation (Confluence)
• Collaborating with German colleagues on ISMS-related tasks (document preparation, reporting, participation in meetings)

This role is new to our company, and the specialist will be the first to establish and develop this area.

What you will get working with us:

— Full technical equipment (MacBook, 2K additional monitors, and a comfortable workplace)

— Remote working equipment provided if needed

— Work exclusively with cutting-edge technologies

— Friendly and professional team atmosphere

— 8-hour workday with no overtime

— Full tax compensation

— 18–24 days of paid vacation

— Paid sick leave:

10 days with a medical certificate

5 days without a certificate

Recruitment Process:

1. Online Call — detailed discussion of the vacancy with a Recruiter (up to 30 minutes)
2. Online Call — English level check (up to 10 minutes)
3. Technical Interview — (up to 60 minutes)

The order of the stages may vary during the process, but always with the goal of moving forward together.

Before sending your CV, please carefully review the vacancy details to save both your time and ours.
If your experience matches the requirements — you will definitely receive feedback.

Iterasec works with clients worldwide, helping them find vulnerabilities and secure their products. Our projects range from mobile/web applications to complex modern cloud and automotive stacks. We work with both small product companies as well as Fortune 500 enterprises.

We are looking for a talented and motivated Junior Pentester who will join our security team to work on penetration testing and vulnerability/cloud security assessment projects.

We expect a short motivation letter where you can explain your skills, achievements and motivation.

Required skills

- Solid non-commercial cybersecurity experience, such as HTB/THM

- Junior-level cybersecurity certifications would be a plus.

- Comfortable with basic application security testing and common vulnerabilities (like OWASP Top 10, CWE Top 25) and cybersecurity fundamentals

- Strong basic IT skills: Linux, networking (TCP/IP, DNS, HTTP etc.)

- Some experience in scripting/coding languages, such as Java, JS, Python, Shell, etc.

- Strong drive to learn and develop cybersecurity skills

- Technical English (Intermediate)

We offer

- Good salary + bonus system

- Rewarding environment: brilliant team ready to share knowledge and collaborate

- Support in obtaining professional certifications, such as BSCP, OSCP, eWPTX, cloud certifications, etc.

- Courses and conferences which are relevant to the position are sponsored by the company.

- We are a remote-first company with full WFH support and a flexible work schedule.

Responsibilities

- Execute penetration tests and security assessments as part of a team, including internal/external networks, web and mobile applications, Windows and Linux environments, cloud architectures, IoT devices, and more

- Create assessment documentation and reports, clearly identifying vulnerabilities and associated remediation steps

- Conduct security research

Iterasec works with clients worldwide, helping them find vulnerabilities and secure their products. Our projects range from mobile/web applications to complex modern cloud and automotive stacks. We work with both small product companies as well as Fortune 500 enterprises.

We are looking for a Middle/Senior Security Consultant / Penetration tester to work on and lead penetration testing and vulnerability/cloud security assessment projects.

In this role, you will work on technically challenging projects and also spend some time leading/mentoring our junior pentesting colleagues.

Required skills

- 1.5+ years of intensive commercial experience

- OSCP, eWPTx2 or similar would be a plus

- Scripting/coding skills and being comfortable with advanced pentesting tooling

- Strong knowledge of mobile/web security

- Comfortable with cloud and container security

- Basic RE skills

- Ability to mentor/lead colleagues

- Strong ability and drive to learn and develop cybersecurity skills

- Technical English (Intermediate+)

We offer

- Good salary + bonus system

- Diverse project portfolio and technologies to work with

- Rewarding environment: brilliant team ready to share knowledge and collaborate

- Courses and conferences which are relevant to the position are sponsored by the company.

- We are a remote-first company with full WFH support and a flexible work schedule.

Responsibilities

- Participate in various pentesting projects

- Lead junior colleagues

- Perform threat modeling in pentesting and security assessment projects

- Create assessment documentation and reports, clearly identifying vulnerabilities and associated remediation steps

- Consult clients on efficient issues remediation

- Conduct security researches

- Develop tools and scripts to automate and improve current pentesting processes

We are the creators of a new fintech era!
Our mission is to revolutionize the world by making blockchain technology accessible to everyone in everyday life. WhiteBIT is a global team of more than 1,200 professionals united by a shared vision of shaping the Web3 future.
We are building our own blockchain ecosystem, ensuring maximum transparency and security for over 8 million users worldwide. Our cutting-edge solutions, rapid adaptation to market challenges, and technological excellence set us apart from traditional companies.
Our official partners include the National Football Team of Ukraine, FC Barcelona, Lifecell, FACEIT, and VISA.

The future of Web3 starts with you — join us as a SOC Analyst L1!

 

Requirements:

— Basic understanding of cybersecurity principles, common attack vectors, and threat detection methods.
— Familiarity with key cybersecurity frameworks (MITRE ATT&CK, NIST, CIS etc.)
— Familiarity with EDR/XDR and SIEM platforms (e.g., CrowdStrike, SentinelOne, Splunk, QRadar, etc.).
— Strong analytical and problem-solving skills.
— Ability to work in a fast-paced, team-oriented environment.
— Good written and verbal communication skills in English (B1+).
— Willingness to work in a shift-based schedule, including nights and weekends. Shifts are distributed evenly across the department.

Responsibilities:

— Monitor and analyze alerts from EDR, SIEM platforms and other corporate tools.
— Perform initial triage to determine the severity, credibility, and urgency of security events, sorting out False Positives.
— Escalate incidents to Level 2 analysts or incident response teams when necessary.
— Document findings, actions taken, and outcomes in a ticketing system.
— Follow standard operating procedures (SOPs) and playbooks for alert handling.
— Assist in the continuous tuning of EDR/SIEM rules to reduce False Positives.
— Stay current with emerging threats and industry best practices.
— Participate in active learning and Purple Teaming of the SOC team.

Work conditions:

Immerse yourself in Crypto & Web3:
— Master cutting-edge technologies and become an expert in the most innovative industry.
Work with the Fintech of the Future:
— Develop your skills in digital finance and shape the global market.

Take Your Professionalism to the Next Level:
— Gain unique experience and be part of global transformations.
Drive Innovations:
— Influence the industry and contribute to groundbreaking solutions.

Join a Strong Team:
— Collaborate with top experts worldwide and grow alongside the best.
Work-Life Balance & Well-being:
— Modern equipment.
— Comfortable working conditions, and an inspiring environment to help you thrive.
— 24 calendar days of paid leave.
— 5 calendar days of sick leave.
— Additional days off for national holidays.

We are a software development company building our own iGaming platform and business solutions for Sportsbook operations worldwide.

We are looking for a Security Operations Engineer to help us centralize and optimize our security incident workflows. Your mission is to bridge the gap between detection and remediation by integrating AWS security services and Vulnerability Assessment tools into a single, unified system.
You will focus on refining our security services configurations, organizing monitoring channels, and developing practical playbooks to transform security events into structured, automated actions. We don’t require extensive knowledge of incident management. We need an engineer with foundational AWS skills who’s interested in learning our security services and optimizing them for better maturity.

Requirements:

• At least 3 years of experience as an Information Security Engineer.
• Hands-on experience with AWS Cloud (IAM policies and roles, CloudTrail, CloudWatch).
• Hands-on experience with vulnerability scanning and assessment tools.
• Basic knowledge of incident response processes, including automation integration and playbook development.
• Understanding of authentication and authorization within web services (OAuth, OIDC, SAML).
• Basic knowledge of security solutions such as VPN, WAF, and firewalls.
• Familiarity with cybersecurity frameworks such as ISO 27001 and OWASP Top

Responsibilities:

• Audit and refine existing AWS security configurations to ensure high-quality detection and centralize security telemetry into a unified system.
• Establish and maintain incident classification and registration processes, ensuring all security events are tracked and prioritized.
• Streamline monitoring channels and develop practical Incident Response Playbooks.
• Respond to and mitigate security incidents, conduct root cause analysis, and tune playbooks for improved performance.
• Conduct regular vulnerability scans and assist with remediation efforts.
• Perform security assessments of the company’s cloud infrastructure.
• Collaborate with cross-functional teams to integrate security best practices into development and deployment pipelines.

Nice to have:

• Security certifications
• Prior experience with SIEM/SOC workflows and AWS security tools (Security Hub, GuardDuty, AWS Config) is big plus.

The Interview Process:

• 30 minute Recruiter call.
• 60 minute call with Security Team Lead.

Career Growth & Opportunities:

• Become part of a global leader in iGaming innovation.
• Access to professional development programs and industry events.
• Opportunity to work with top-tier experts in cutting-edge technology.
• Drive real impact in a fast-growing international market.
• Flexible career progression within a scalable and adaptable platform

Working Conditions:

• Vacation: 22 working days per year.
• Sick leave: 5 paid days per year.
• Sick lists: 100% paid with medical certificate up to 10 days per year
• Benefit cafeteria personal limit for health support

Join our passionate and talented team and be at the forefront of transforming the iGaming industry with groundbreaking live tech solutions. If you’re a visionary professional eager to shape the future of iGaming, Atlaslive invites you to apply and drive our continued success in this dynamic market.

Atlaslive — The Tech Behind the Game.

*All submitted resumes undergo a thorough review. If we do not contact you within 5 business days after your application, it means that we are unable to proceed with your candidacy at this time. However, we appreciate your interest in our company and will keep your contact details on file for future opportunities.