RocketHuntSmart job search
Reach out directly about this role
By city
3-6 years
Experience
Full-time
Employment
Onsite
Work Format
C-level
Grade
Cybersecurity
Specialization
FinTech
Industry
Corporation
Company Type
Chief Information Security Officer (CISO) for Sber's Recommendation Platform
A new dynamically growing team developing a recommendation system for the entire Sber ecosystem (movies, music, e-commerce, etc.) is looking for a Chief Information Security Officer to build a high-load recommendation platform and its microservices. You are given a unique opportunity to join the creation of a completely new system from scratch.
· Comprehensive cybersecurity assurance of products and related processes, including compliance with regulatory requirements, at all stages of development and operation in the SberCloud Advanced cloud infrastructure.
· Identifying threats and assessing cybersecurity risks for products, related processes, systems, and components of the information infrastructure. Selecting, implementing, and controlling the implementation of protective measures. Developing the security architecture of products.
· Participation in the development and approval of project documentation, including architecture, business requirements, functional requirements, and technical specifications within the product lifecycle.
· Participation in acceptance tests. Finding errors and shortcomings in the implementation of cybersecurity requirements. Developing and implementing solutions to eliminate shortcomings.
· Developing secure development processes in accordance with global best practices and frameworks.
· Conducting training for development teams on the use of secure development best practices and tools.
· Participation in incident management, eliminating their consequences, conducting root cause analysis, and developing corrective actions.
· Higher technical education (preferably in a relevant field).
· Professional experience in the field of information security for 5+ years.
· Knowledge of banking business processes.
· Knowledge of technical means of ensuring information security.
· Availability of certificates confirming professional competencies.
· Knowledge and experience in ensuring security in cloud infrastructure and for web applications.
· Knowledge of SSDLC, OWASP.
· Knowledge of networking fundamentals in terms of building a secure corporate network (at the CCNA Security/ Security+ level).
· Higher technical education (preferably in a relevant field).
· Professional experience in the field of information security for 5+ years.
· Knowledge of banking business processes.
· Knowledge of technical means of ensuring information security.
· Availability of certificates confirming professional competencies.
· Knowledge and experience in ensuring security in cloud infrastructure and for web applications.
· Knowledge of SSDLC, OWASP.
· Knowledge of networking fundamentals in terms of building a secure corporate network (at the CCNA Security/ Security+ level).