Security Engineer
Pentesting, Docker, Applications
Gigaset Communications Polska Sp. z o.o.
•••
Mid
10 000 - 17 000
pln
net / month (B2B)
8 000 - 14 000
pln
gross / month (Employment contract)
Remote possible
100%
Project description
We are looking for an experienced Security Engineer who will join our team and provide guidance, consultancy and experience in dealing with security related concepts and issues in all of our projects at all stages of development.
Your tasks
- provide advice on newest security trends, weaknesses and mitigations
- research and deploy new security solutions, maintain existing as well as develop new documentation for project related security
- lead and execute hands-on penetration tests of our products and systems
- remediate and lead post-mortems on security-related issues
- troubleshoot issues across the whole stack (network/software/hardware) and provide with solutions based on root causes
Who we're looking for?
Our requirements
- are an advocate of “Security by Design” approach
- understand a wide range of security concepts & standards
- have experience in performing and documenting penetration tests
- are able to analyse risks, threats and vulnerabilities
- have experience in providing security expertise
- have strong GNU/Linux knowledge and experience
- have strong TCP/IP networking knowledge and experience – especially Internet protocols (HTTP, DNS, SMTP, NTP, etc.)
- have experience with cloud environments
- have ability to communicate complicated security topics in simple terms
- are comfortable with software and hardware firewalls
- are comfortable with shell and scripting languages (bash, python, ruby, etc.)
- can efficiently use a wide variety of open source technologies and tools
Nice to have
- earned OSCP certification
- experience with Kubernetes & Google Cloud Platform
- proficiency in the containers security area
- expertise in the embedded security area
- thorough understanding of cryptography
- fluency in the application fuzzing and web application attacks
- experience with the advanced password attacks
- experience with BurpSuite/Owasp/WhiteSource ZAP
- deployed, configured and managed SOC solutions (IDS/IPSes and SIEMs)
- found a vulnerability and have an CVE number assigned to it
- experience using Kali Linux/Parrot OS
- experience playing CTFs
Skills
How we manage our projects?
Methodology
Scrum
Who makes architectural decisions?
architect, team
Who makes technology stack decisions?
architect, team
Project management software
JIRA
Opportunity to change between projects
Toolset
Laptop
Additional monitor
Phone
Freedom to pick your tools
Operating system
Work environment
Tech supervisor
Open space
Flexible working hours
Work time division
System maintenance
30%
Self-development
20%
Creating documentation
20%
Client support
10%
Meetings
10%
Designing systems
10%
Healthcare
- Healthcare package
- Healthcare package for families
Leisure package
- Leisure package
Kitchen
- Cold beverages
- Hot beverages
- Fruits
- Lunches
- Snacks
Traning
- Conferences
- Books
- Trainings
Parking
- Car parking
- Bicycle parking
Other
- Shower
- Chill room
- Integration events
Recruitment process
- 14 days
HR call
remote interview with manager and recruiter
technical interview with team member
feedback
Our company
Gigaset Communications Polska Sp. z o.o.
Wrocław
200+
Tech skills
Get to know us
Justyna
Junior HR Specialist
Tomasz
IT&Operations Manager