Remoote.app

Work from anywhere. Start here.

JobsFree resume builderCompaniesLog in
Apply

Security Engineer

Posted 2024-09-25

View full description

πŸ“ Location: Romania

πŸ” Industry: Digital consultancy

🏒 Company: Qodea

πŸ—£οΈ Languages: English

πŸͺ„ Skills: DockerPythonCloud ComputingCybersecurityData AnalysisGCPKubernetesData analysisCommunication SkillsAnalytical SkillsCollaborationCI/CD

Requirements:
  • Excellent communication skills in English, both written and verbal.
  • Understanding of how adversaries compromise networks, the stages of an attack, and effective detection techniques.
  • Hands-on experience with enterprise security technologies (e.g. SIEM, SOAR, EDR, CNAPP), operating systems, and cloud platforms.
  • Ability to identify indicators of compromise across these environments.
  • Excellent analytical and problem-solving skills.
  • Expertise in evaluating security alerts, conducting log analysis, performing vulnerability assessments, and identifying exploitation methods.
  • Experience automating tasks using scripting languages (e.g. Python, PowerShell).
  • Familiarity with infrastructure management using IaC and supporting CI/CD processes.
  • Self-driven and able to work independently, while collaborating effectively in teams.
Responsibilities:
  • Serve as an escalation point for security incidents, conducting in-depth analysis using log correlation, malware analysis, and digital forensics techniques.
  • Analyse threat intelligence data and conduct controlled threat simulations to strengthen detection capabilities.
  • Conduct proactive threat hunting to identify potential threats that bypass security controls and detection mechanisms.
  • Contribute to the development and implementation of detection rules and automation playbooks utilising no-code platforms and scripting languages.
  • Administer security tools, perform routine maintenance, and optimise log visibility in customer environments.
  • Contribute to a knowledge base of investigation guides, runbooks, and lessons learned to enhance future incident response efforts.
  • Provide mentorship and technical guidance to junior security analysts.
  • Participate in our incident response on-call service to support the team when necessary.
Apply

Related Jobs

Apply
πŸ”₯ Senior Cloud Security Engineer
Posted 2024-11-14

πŸ“ Romania

πŸ” Digital consultancy

🏒 Company: Qodea

  • Expert knowledge of the Google Cloud security stack and related tooling.
  • Experience in implementing secure designs across multiple Cloud services.
  • Hands-on experience deploying security guardrails in the Cloud, preferably Google.
  • Deploy security controls compliant with PCI-DSS, NIST, CIS, and CSA frameworks.
  • Understanding of AppSec principles and OWASP best practices.
  • Knowledge of Governance, Risk & Compliance, and security methodologies.
  • In-depth knowledge of Cloud IAM solutions and Logging & Monitoring for Cloud deployments.
  • Proficient in automation and Infrastructure as Code (e.g., Terraform).

  • Conduct oneself as a Security SME providing advisory services to customers.
  • Facilitate the right solution for customer requirements and risk profiles.
  • Lead discussions with customer technologists and foster long-term relationships.
  • Provide a Domain SME interface to the pre-sales function for deep security assistance.

AgileCommunication SkillsTerraformAttention to detailCompliance

Posted 2024-11-14
Apply
Apply
πŸ”₯ Product Security Engineer
Posted 2024-11-07

πŸ“ EU, APAC

πŸ” Software

🏒 Company: Hashgraph

  • Minimum 6 years of experience in application or product security, including 2-3 years of experience in software development or related field.
  • Familiarity with common security vulnerabilities and attack vectors.
  • Hands-on experience with security testing tools such as static analysis, dynamic analysis, and fuzzing tools.
  • Strong understanding of secure coding practices and principles (mainly Java and Solidity).
  • OSWA and/or CISSP certifications are mandatory - web3 experience can be considered as an alternative if these certifications haven't been obtained.

  • Conducting thorough security reviews of the company's products throughout the development lifecycle, including the design, implementation, and release phases.
  • Collaborating with cross-functional teams to identify security vulnerabilities and recommend mitigation strategies.
  • Developing and maintaining security testing methodologies and procedures.
  • Implementing and managing automated security testing tools and processes.
  • Providing guidance and support to development teams on secure coding practices and security best practices.
  • Staying current with industry trends and emerging threats to inform and enhance product security measures.
  • Assisting in incident response activities related to product security incidents.
  • Participating in security awareness training programs for internal stakeholders.

Software DevelopmentJava

Posted 2024-11-07
Apply
Apply
πŸ”₯ Senior Cloud Security Engineer
Posted 2024-10-29

πŸ“ United Kingdom, Netherlands, Romania, Belgium

πŸ” Digital consultancy, Cloud services

🏒 Company: Qodea

  • Expert knowledge of the Google Cloud security stack and related tooling.
  • Experience in implementing secure designs across various Cloud services.
  • Hands-on experience deploying security controls in the Cloud, particularly Google.
  • Familiarity with compliance frameworks such as PCI-DSS, NIST, CIS, and CSA.
  • Knowledge of AppSec principles, OWASP best practices, and their application to Cloud environments.

  • Provide advisory services as a Security SME, tailoring solutions to customer needs and risk profiles.
  • Engage in pre-sales discussions, translating security requirements into actionable insights.
  • Build and nurture relationships with customer technologists and senior stakeholders.

LeadershipProject ManagementAgileCloud ComputingCybersecurityElasticSearchGCPProduct ManagementSCRUMCross-functional Team LeadershipElasticsearchCommunication SkillsAnalytical SkillsCollaborationCI/CD

Posted 2024-10-29
Apply
Apply
πŸ”₯ Remote Cyber Security Engineer
Posted 2024-10-15

πŸ“ Romania

🧭 Full-Time

πŸ’Έ $20 - $30 per hour

πŸ” Credit Repair

🏒 Company: The Credit Pros

  • 3+ years of experience in cybersecurity roles, with a focus on cloud security, network security, and incident response.
  • Strong experience with Azure and AWS security configurations.
  • Expertise in managing VPNs, firewalls, and endpoint security.
  • Proven experience with penetration testing, vulnerability assessments, and leading disaster recovery plans.
  • Knowledge of PCI DSS compliance is a strong plus.
  • At least one relevant certification required (e.g., CISSP, CEH, CompTIA Security+, CCSP).
  • Hands-on experience with ransomware prevention and phishing simulations.

  • Oversee the overall security of our infrastructure, including cloud environments (Azure and AWS) and core applications, ensuring robust protection across all systems and layers.
  • Implement and maintain secure configurations for all cloud services, networks, and applications, safeguarding the organization’s critical assets and data.
  • Manage and enforce identity and access management policies, ensuring proper access controls are in place for all users, systems, and devices.
  • Ensure that all business-critical applications are fully secured against vulnerabilities, regularly perform assessments, and address potential security gaps.
  • Manage the security of all employee devices, including enforcing BYOD policies and ensuring endpoint security measures are consistently applied.
  • Design and maintain secure network architectures, including VPNs, firewalls, and monitoring to protect internal and external communications.
  • Lead the development and implementation of disaster recovery and incident response plans, ensuring quick and effective responses to security incidents.
  • Conduct regular penetration testing and vulnerability assessments to proactively identify and mitigate potential threats.
  • Implement and manage strategies for ransomware prevention and conduct phishing simulations to educate and protect employees.
  • Ensure that all systems and processes adhere to industry regulations, with a focus on PCI DSS compliance and other relevant standards.

AWSLeadershipCloud ComputingCybersecurityMicrosoft AzureCross-functional Team LeadershipAmazon Web ServicesAzureCommunication SkillsAnalytical SkillsCollaboration

Posted 2024-10-15
Apply
Apply
πŸ”₯ Cloud Security Engineer with AWS
Posted 2024-10-15

πŸ“ Romania

πŸ” Technology

🏒 Company: Faptic Technology

  • BSc/MSc in Information Security or any other related field.
  • Minimum 2 year working experience in Information Security, with proven focus in Cloud Security.
  • AWS Certified Security - Specialty Certification.
  • Deep technical knowledge of Amazon Web Services (AWS).
  • Expertise in Microsoft Azure and Oracle Cloud will be considered an advantage.
  • Hands-on experience on AWS services such as IAM, Organizations, SSO, VPC, Transit Gateway, S3, EC2, RDS, ELB, CloudTrail, Config, Inspector, GuardDuty, WAF, etc.
  • Clear understanding of current threats to Cloud infrastructure and advanced knowledge of securing such environments.
  • Experience in DevSecOps methodologies is considered a plus.
  • Experience building and deploying applications to the cloud (AWS, Azure, etc.) using Infrastructure as Code tools such as Terraform is considered a plus.
  • Expertise in container security is considered a plus.
  • Ability to work autonomously with minimum supervision and to integrate well within a team.
  • Excellent problem solving and analytical skills.
  • Ability to quickly learn new technologies in depth.

  • Design and build resilient Cloud infrastructures that are protected against security threats.
  • Develop and assess Cloud security solutions to secure systems, databases, and networks.
  • Conduct assessments and make recommendations to ensure that appropriate controls are in place.
  • Gain insight into security incidents and threats by monitoring/analyzing logs and performing vulnerability assessments.
  • Participate in efforts that shape the company’s security policies, procedures, and standards for use in Cloud environments.
  • Create technical and managerial level security reports for Cloud-based applications and infrastructure.
  • Implement and test network and security Disaster Recovery procedures to ensure business continuity.
  • Monitor use of sensitive data and regulate access to safeguard information.
  • Ensure the confidentiality and integrity of data during transmission, storage, and processing.
  • Review violations of security procedures and discuss procedures with violators to ensure they are not repeated.
  • Provide support to end users regarding network and security-related issues.

AWSAmazon Web ServicesAnalytical Skills

Posted 2024-10-15
Apply
Apply
πŸ”₯ Security Engineer
Posted 2024-09-20

πŸ“ United States, North America, Europe

πŸ” Software as a Service

🏒 Company: EngFlow Inc.

  • Passion for optimization and analyzing complex challenges in the security engineering space.
  • Advanced knowledge of supply chain and cloud security.
  • Experience managing pentest processes with external vendors.
  • Experience with SOC2 / FedRAMP audits.
  • Skilled at intrusion detection and prevention practices.
  • Expertise in vulnerability tracking and management.
  • Familiarity with at least one build system: Bazel, CMake, Maven, Gradle, Nix, Buck, others.
  • Experience in or passion for DevOps and DevInfra.
  • Experience in Linux and the Unix shell.
  • Experience with at least one Cloud infrastructure: AWS, Azure, GCP, OpenShift, Oracle Cloud. Terraform experience is a plus.
  • Previous experience owning and updating an ISMS and other security documentation / resources.

  • This role reports into the Head of Product Engineering with a dotted line to our CTO.
  • You will collaborate with numerous stakeholders across business and tech functions to understand security requirements.
  • Ensure our systems are secure and SOC 2 compliant.
  • Work through security questions, questionnaires, and reviews with prospects and customers.
  • You may be part of an on-call rotation to support production issues that are escalated to the Engineering team.

LinuxDevOps

Posted 2024-09-20
Apply
Apply
πŸ”₯ Application Security Engineer (AppSec)
Posted 2024-09-12

πŸ“ Germany, Portugal, U.K.

🧭 Full-Time

πŸ” Blockchain

  • Strong knowledge of secure coding practices
  • Risk based approach and pragmatism in order to enhance level of security in partnership with different stakeholders
  • Familiarity with security frameworks and approaches such as SAST, DAST, fuzzing, property-based testing, symbolic execution, network simulation
  • Experience in threat modelling, red/blue teaming, working with best in class independent security teams and turning their findings into actual deployed fixes in our codebase (as well as implementing lessons learned)
  • Ability to work with a diverse set of stakeholders to valorise security and influence best practices.
  • Advanced skills in analysing and mitigating cyber security threats
  • Understanding of web3 application architecture - ideally including cryptography, decentralised networking, blockchain consensus, hardware key management solutions
  • Proficiency with security tools and technologies, also ability to create own tools when it is needed
  • Proficiency in multiple programming languages - ideally RUST and Typescript
  • A focus on outcomes (rather than activities) and delivering against outcomes with limited interference day to day

  • This is a crucial role where you will bring your technical abilities to recognise and reduce risk to the ecosystem and be able to effectively influence a wide group of stakeholders.
  • The AppSec team is pivotal in helping Parity secure its ecosystem.
  • We are part of the Security team with a mission of reducing the impact of threats to Parity and its products, bolstering their resilience against potential cyber threats.

BlockchainEthereumJavascriptJavaScriptRust

Posted 2024-09-12
Apply
Apply
πŸ”₯ Senior Product Security Engineer
Posted 2024-09-06

πŸ“ EU or APAC

🧭 Full-Time

πŸ” Software, Blockchain technology

🏒 Company: Hashgraph

  • Bachelor's or Master's degree in Computer Science, Information Security, Blockchain, Cryptography, or related field (or equivalent experience).
  • 8+ years of experience in product security, application security, or penetration testing.
  • 2+ years of experience in blockchain security, smart contract auditing, or related roles.
  • Proficiency in smart contract languages such as Solidity or Rust and familiarity with blockchain platforms like Ethereum; knowledge of the Hedera Blockchain is a plus.
  • Strong understanding of web3 technologies and protocols (e.g., Gossip, Ethereum, IPFS, Whisper).
  • Experience with security assessment tools and methodologies specific to blockchain environments.
  • Familiarity with common blockchain security vulnerabilities and attack vectors.
  • Knowledge of cryptographic principles and protocols relevant to blockchain security.
  • Excellent problem-solving skills and ability to analyze complex systems.
  • Effective communication skills and ability to work collaboratively with cross-functional teams.
  • Hands-on experience with security testing tools such as static analysis, dynamic analysis, and fuzzing tools.
  • OSWA and/or CISSP certifications are mandatory.

  • Conducting comprehensive security assessments of blockchain-based systems, focusing on web3 security and smart contract security.
  • Writing malicious smart contracts to exploit and identify vulnerabilities in the Hedera blockchain.
  • Developing and implementing security strategies and best practices for the Hedera blockchain protocols.
  • Collaborating with development teams to integrate security measures into the design and implementation of blockchain solutions.
  • Designing and executing penetration testing and vulnerability assessments on blockchain networks and associated components.
  • Staying updated on emerging threats and vulnerabilities in the blockchain space and providing guidance on mitigation strategies.
  • Educating internal stakeholders on blockchain security best practices and principles.
  • Contributing to the development of security tools and frameworks tailored for blockchain environments.
  • Assisting in incident response activities related to blockchain security incidents.
  • Participating in security awareness training programs for internal stakeholders.

BlockchainEthereumRustCommunication SkillsProblem Solving

Posted 2024-09-06
Apply