let’s make something together

Give us a call or drop by anytime, we endeavour to answer all enquiries within 24 hours on business days.

Find us

PO Box 16122 Collins Street West
Victoria 8007 Australia

Email us

info@domain.com
example@domain.com

Phone support

Phone: + (066) 0760 0260
+ (057) 0760 0560

Cybersecurity SRE Data Security Lead Analyst

  • By Weronika Drwila
  • 23 August 2023
  • 164 Views

Technologies we use

Expected

  • PowerShell

  • Bash

  • Python

  • Azure

.

Operating system

  • Windows
  • Linux

.

About the project

Global Defense – Cybersecurity Engineering and Operations is comprised of several inter-joined team. Together, the function enables an adaptive and constantly evolving capacity to address risks borne through an ever-shifting threat landscape. The function serves as an engine for innovation and problem solving with partner teams across the Firm who share a common imperative to be the best for our customers and drive the client’s Purpose of “Opening up a world of opportunity”.

.

One of the sub-teams is the Site Reliability Engineering – Release Engineering team. This team supports the maintenance and operation of all technologies the Global Cyber Defence function relies on with focusing on cybersecurity tooling agent hygiene, security vulnerability remediation, develop and deploy monitoring and alerting framework across all cybersecurity tooling.

.

The Data Security Lead Analyst reports in to the Global Defence – Site Reliability Engineering(SRE) – Release Engineering sub-team.

.

Your responsibilities

  • The role will be responsible for release and maintenance operations in data security solutions including data-at-rest, data-in-motion, unstructured data primarily focusing on Microsoft Information Protection solution by aligning with ITIL processes such that Change Management, Incident Management.

.

Our requirements

  • Technical Skills

  • Excellent knowledge of Microsoft Information Protection solution , its features and capabilities.

  • Excellent knowledge of all aspects of deployment , release and maintenance operations in Microsoft Azure Information Protection solution and acts as subject matter expert on all forums.

  • Good knowledge of deployment, release and maintnance operations in data security tools and technologies such that data-in-motion, data-at-rest, unstructured data.

  • Hands-on working experience in Windows OS and Linux OS.

  • Hands-on working experience in Cloud Service Providers preferably in Microsoft Azure.

  • Hands-on working experience in scripting languages such that PowerShell, Bash, Python.

  • Other Skills:

  • An enabler who drives change and improvement initiatives.

  • Practices the art of simplification.

  • Ability to build strong internal and external relationships with a global team.

  • Strong communication and interpersonal skills, with proven ability to communicate technical topics to diverse audiences.

  • Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one.

  • Ability to document bugs, proposed fixes, and operational instructions.

  • Experience defining and refining operational procedures, workflows and processes to support the team in consistent, quality execution of monitoring and detection.

  • An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business.

  • An understanding of organizational mission, values and goals and consistent application of this knowledge.

  • Knowledge of cyber security principles, global financial services business models, regional compliance regulations and laws.

  • Good understanding and knowledge of common industry cyber security frameworks, standards and methodologies, including CIS and NIST standards.

  • Ability to speak, read and write in English, in addition to your local language.

.

Optional

  • Strong grasp of common technologies, protocols and architectures commonly used by mobile application. (HTML, XML, JavaScript, JSON, REST, Micro-services etc.).

  • Strong understanding of software development lifecycles especially DevOps.

  • Experience with dynamic and static application security testing and associated tools.

  • Experience with performing security code reviews for Java, Objective C, Swift and Kotlin programming languages.

  • Strong initiative, consensus-building and ability to collaborate directly with a variety of clients (business, development, compliance, etc.).

  • Experience with mobile security testing frameworks such as OWASP MASVS, OWASP MSTG.

  • Knowledge of enterprise application design & common security issues associated with it.

  • Advanced knowledge of common security analysis tools and testing techniques especially for the mobile security space.

  • Hands-on experience with SAST, DAST, IAST tools and ways to supplement their limitations.

  • Knowledge of security verification of mechanisms & technologies such as SSL, Pinning, Biometric Authentication, Out of Band Authentication, JWT, SAML, RASP, Oauth2 etc.

  • Prior software programming and development experience especially of iOS & Android platforms is a plus.

  • Prior programming experience with Java, Kotlin, Objective C & Swift programming languages would be a plus.

  • Prior experience with security testing or secure application development for a large enterprise would be a plus.

  • Prior experience with cloud-hosted applications & services would be a plus.

  • Experience in reverse engineering or disassembly considered a plus.

.

What we offer

  • Competitive salary

  • Annual performance-based bonus

  • Additional bonuses for recognition awards

  • Multisport card

  • Private medical care

  • Life insurance

  • One-time reimbursement of home office set-up (up to 800 PLN)

  • Corporate parties & events

  • CSR initiatives

  • Nursery and kindergarten discounts

  • Language classes

  • Financial support with trainings and education

  • Social fund

  • Flexible working hours

  • Free parking

.

Benefits

  • sharing the costs of sports activities

  • private medical care

  • sharing the costs of foreign language classes

  • sharing the costs of professional training & courses

  • life insurance

  • remote work opportunities

  • flexible working time

  • integration events

  • corporate sports team

  • doctor’s duty hours in the office

  • retirement pension plan

  • corporate library

  • no dress code

  • video games at work

  • coffee / tea

  • parking space for employees

  • leisure zone

  • extra social benefits

  • employee referral program

  • opportunity to obtain permits and licenses

  • charity initiatives

  • family picnics

  • extra leave

.

Note: Prepare your CV in English (PDF), fill in the form and apply! 🙂
Please include in your CV the following clause necessary for the recruitment process: 

I agree to the processing of personal data that I have made available voluntarily in the recruitment process by the Administrator of personal data, i.e. Dotcommunity Spółka z ograniczoną odpowiedzialnością [Ltd.] based in Cracow, 15 Żabiniec Street, 31-215 Cracow, registered in Poland, the Cracow’s District Court – Śródmieście, XI Commercial Division of the National Court Register under number 0000468484, VAT number: 9452174499, (“Dotcommunity”) in order to carry out the recruitment process for the  SRE Data Security Lead Analyst position on the basis of Art.6 item 1a of the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation)

.

Dotcommunity jest zarejestrowana w Rejestrze agencji zatrudnienia (KRAZ) pod numerem 9904.

    * - required