Description
Our Expertise Department within the Platform Cybersecurity Center is responsible for establishing information security requirements for products and business processes of the large PaaS system being developed, as well as monitoring compliance with these requirements.
Responsibilities
- Formulating and controlling the execution of information security requirements regarding their applicability, relevance, and testability.
- Participation in acceptance tests in part of assessing the fulfillment of information security requirements.
- Identifying and analyzing information security threats in products, business processes, and infrastructure; selecting adequate and optimal solutions to neutralize threats.
Requirements
- Strong knowledge and experience with Linux server distributions (preferably RHEL, CentOS), containerization, and container orchestration systems (Kubernetes, OpenShift).
- Knowledge of security mechanisms and subsystems of Linux OS, containers, and container orchestration systems.
- Experience in implementing secure development processes.
- Knowledge of modern threats and vulnerabilities related to information security breaches, technologies, methods, and means of information protection.
- Knowledge of regulatory and methodological documents, as well as best practices for ensuring information security of software and automated systems: OWASP, NIST, CIS, FSTEC normative documents.
- Education: higher technical education (preferably in Information Security or IT).
Conditions
- Modern comfortable office: Moscow, Novodanilovskaya Naberezhnaya, 10 building 1.
- Hybrid work schedule after the probation period.
- Innovative ambitious projects and tasks.
- Professional training, seminars, workshops, conferences.
- Voluntary health insurance (VHI), employee loyalty programs.
- Own fitness gym.
- Flexible mortgage discount equal to 1/3 of the Central Bank key rate.
