Вакансии

Кишинёв · Firma вакансии компании »

Main responsibilities:
The candidate will undertake a variety of tasks, including:
• Conduct security control reviews across a full range of control types and techniques, for information systems. Recommend appropriate action to management.
• Identify threats to the confidentiality, integrity, availability and relevant compliance of information systems. Conduct risk assessments of applications and computer installations in the light of these threats and recommend appropriate action to management.
• Conduct investigation, analysis and review of the following breaches of security controls, and prepare recommendations for appropriate control improvements, involving other professionals as required
• Provide advice and guidance on the application and operation of all types of security controls. Contribute to development of standards and guidelines.
• Manages risk-based audit, including security scanning and penetration testing, of existing and planned technology systems;
• Recommend changes in processes and control procedures based on audit findings, including, where appropriate, the assessment of safety-related software systems to determine compliance with standards and required levels of safety integrity.
• Provide general and specific advice, and issue formal reports of audit findings and recommendations for risk reduction in the IT environment, and review with line management.
• Auditing of systems under development as part of the project team to ensure that appropriate controls are included at the early stage of the project.
• Participate in planning and development of system architecture.
• Offer support in incident handling to customers
Candidate requirements:
• BSc/MSc in Computer Science or related field/equivalent experience;
• Experience in developing and application of IT security policies and procedures;
• Hand on experience in using vulnerability scanning tools;
• Hands on experience in implementing security monitoring tools;
• Experience in security auditing of IT systems;
• Knowledge of international information security standards like ISO 27001, ISO 27002, etc.
• Knowledge of TCP/IP, DNS and networking foundations;
• Knowledge of security aspects of Windows and Linux operating systems;
• Knowledge of web application security best practices;
• Knowledge of Cloud Computing foundations would be an asset;
• Citizenship of Republic of Moldova;
• Fluency in ENGLISH and ROMANIAN;
• Outstanding written and verbal communication skills;
• Ability to convey advanced technical concepts effectively;
Working knowledge with any of the following is a strong plus:
• Data encryption/decryption software GnuPG, OpenSSL, TrueCrypt, PKI software;
• Switching - Cisco IOS CLI, VLANs, TCP/IP Stack;
• Routing - Static, dynamic;
• Firewalls - IPTables, IPSec VPN, Mikrotik RouterOS, Cisco ACLs;
• Scripting skills - Python, Perl, Bash, Windows batch scripts;
We offer:
• Professional, dynamic and young team;
• Strong career potential and professional development;
• Training & development opportunities;