#vacancy

Information Security Expert at Gazpromneft-Regional Sales.

🔷Key Task: Improving the security level in existing and developing systems. Main Responsibilities

• Participating in Agile teams and project groups as an information security expert
• Forming and justifying information security requirements for IT systems
• Searching for the best solutions that meet security requirements and fit Time2Market
• Technical elaboration and approval of information security solutions in IT systems
• Assisting in the investigation of information security incidents
• Participating in building IS processes during IT system implementation

🔷Mandatory Requirements

• Higher specialized education (technical or IS)
• Specialized experience from 1 year - IS expert, IS architect, AppSec, devsecops
• Knowledge of one or more programming languages
• Understanding of the principles of operation of DLP, WAF, IDS, IPS, FW, SIEM, VPN, proxy, vulnerability scanners, antivirus systems
• Understanding of the main protection mechanisms for operating systems, database management systems, web servers, and typical network protocols
• Knowledge of typical vulnerabilities of operating systems and application software, understanding methods of their exploitation
• Fundamental knowledge of the IT component of information systems: server administration (Windows, Linux), understanding of network operation based on TCP/IP, main network and application protocols
• Knowledge of key standards and best practices in information protection (OWASP, PCI DSS, CIS, NIST, ISO, GOST, RD FSTEC, RF Legislation)

🔷Working Conditions

• Work location: St. Petersburg, Vilensky per.,
• Work schedule: 5/2, 09:00 - 18:00, Fri. until 16:45.
• After the probation period, a hybrid work format (50/50) is discussed.
• Employment according to the Labor Code of the Russian Federation

Salary: from 190,000 to 217,000 rubles. Annual bonus based on performance (up to 20% of annual salary for time worked) Social Package

We await your applications at @Ritttka1