Security Engineer (Infrastructure Security)

As a Security Engineer (Infrastructure Security) at our leading trading platform, you will be responsible for securing server operating systems, network infrastructures, and cloud platforms such as AWS and GCP. Your role will include designing and implementing security measures, conducting vulnerability assessments, and ensuring that security practices are integrated into all operational processes.

To become a Security Engineer (Infrastructure Security) with our company, you should have proven experience in securing server operating systems (Linux, Windows) and managing security baselines. Additionally, a strong understanding of network security principles and tools, hands-on experience with securing cloud platforms like AWS and GCP, and familiarity with infrastructure as code (IaC) tools are essential qualifications.

Working as a Security Engineer (Infrastructure Security) with us means being part of a supportive and innovative company culture. You’ll enjoy a hybrid working model, which allows you to balance time between our modern office and working remotely. Also, we prioritize work-life balance and provide a comprehensive benefits package that includes family medical insurance and a generous annual leave policy.

As a Security Engineer (Infrastructure Security), you'll have the chance to collaborate closely with the IT and DevOps teams. This partnership is crucial for ensuring that security is seamlessly integrated into our infrastructure deployments. You'll be involved in discussions about best practices and security measures, allowing for a cohesive approach towards maintaining security across all environments.

In the Security Engineer (Infrastructure Security) role, you can expect to work on various exciting projects, including designing and implementing security strategies for both on-premises and cloud environments, conducting advanced vulnerability assessments, and establishing best practices for securing our cloud platforms. Each project is an opportunity to enhance our security posture and protect our digital assets.

As a Security Engineer (Infrastructure Security) at our company, there are numerous growth opportunities available. You will work within a high-impact environment that values innovation. With ongoing projects in digital security, you can develop your skills in the ever-evolving field of cybersecurity, and we actively support career progression through professional development initiatives.

Security Engineers (Infrastructure Security) at our company enjoy a comprehensive benefits package, including annual bonuses based on performance, family medical insurance, a pension fund, and additional perks like a MyBenefit system and Multisport card. Additionally, you’ll benefit from a generous annual leave policy, a hybrid work model, and a comprehensive Workation Policy.

In your response, focus on core security principles such as confidentiality, integrity, and availability. Emphasize the importance of implementing layered security measures, maintaining strict access controls, and regularly assessing vulnerabilities. Illustrate with examples of how you have applied these principles in previous roles.

Detail specific experiences you have had securing AWS or GCP. Discuss strategies for maintaining IAM policies, securing networking components, and conducting regular security assessments. Mention any relevant certifications or training you have completed that supports your skills in cloud security.

List the various tools you are comfortable using, such as Nessus, Qualys, or OpenVAS. Provide details about how you have utilized these tools in previous roles to identify vulnerabilities and how you have implemented remediation strategies.

When addressing a security incident, explain the steps you would take from identification to containment, eradication, and recovery. Emphasize the importance of documenting the incident and communicating effectively with stakeholders to mitigate damages and prevent future occurrences.

Discuss your approach to patch management, including maintaining a regular patch schedule and prioritizing critical patches. Explain how you assess the impact of patches on existing systems and your process for testing patches in a controlled environment before deployment.

Share the resources you utilize to stay informed about security threats, such as subscribing to industry blogs, attending webinars, and following security forums. Mention any professional networks or groups that you are part of that help you keep your skills and knowledge sharp.

Describe Infrastructure as Code (IaC) as the practice of managing infrastructure through code, leading to automation and efficiency. Discuss its security implications, such as configuration management, the need for secure coding practices, and the importance of audit trails to maintain compliance and mitigate vulnerabilities.

Outline the compliance frameworks you have experience with, such as NIST, ISO 27001 or PCI DSS. Discuss how adhering to these frameworks influences your security strategies, risk assessments, and overall approach to securing the environment.

Provide a specific instance where you worked directly with DevOps to integrate security measures into their deployment processes. Highlight any challenges faced, solutions implemented, and positive outcomes resulting from the collaboration.

Explain that incident response is a critical aspect of the Security Engineer (Infrastructure Security) role. Discuss your experience in creating incident response plans, your involvement in drills or real incidents, and how a well-organized response can mitigate risk and prevent future threats.