InfoSec (DevSecOps) Engineer

Job description

We are currently seeking an experienced InfoSec Mid-Level Specialist to enhance our security posture and ensure our systems and data's confidentiality, integrity, and availability. The ideal candidate will have a strong background in information security, familiarity with cloud environments like GCP, and experience securing modern data processing technologies such as Kubernetes, PostgreSQL, ClickHouse, Envoy, and Kafka. Responsibilities: Requirements: - Develop and implement information security policies and protection procedures. - Perform risk assessments, security audits, and threat analysis. - Monitor and respond to security incidents and conduct investigations. - Implement and maintain security tools such as SIEM, DLP, WAF and others. - Integrate DevSecOps practices into development workflows (Secure SDLC, code reviews). - Ensure compliance with security standards (ISO/IEC 27001, NIST, OWASP, CIS Controls). - Provide cybersecurity awareness training to employees. - Support secure architecture for platforms including GCP, Kubernetes, ClickHouse, Kafka, PostgreSQL, and Envoy. - Conducting proof-of-concept for new security integrations and actively participating in security budge...