Detalhes da oferta
Kelly IT Resources is currently recruiting a Security Engineer to join our client in Lisbon.Job Summary
Guarantee the security practices across the teams and alignment of these practices with the company directives and industry best practices, liaising with the OTT Security Team (OTT Sec), Infrastructure Security (IS Sec) and Global Security Operations Centre (GSOC).
Create security awareness across the teams, identify and provide relevant training, guarantee the processes across the teams for validation and adoption of the required security measures, support the regular security validations of the multiple client applications and server-side APIs, guaranteeing the regular validation and follow-up on any mitigations across the teams, being able to challenge and justify identified security risks.
Help drive the adoption of frameworks and tools for continuous vulnerability tracking and security risk measurement, tracking of actions and the adoption of best practices backed by an automation mindset (e.g. automated penetration testing, network vulnerability scanning, open-source dependencies security risk management, etc.).
Participate in the requirement identification of projects from a security perspective, supporting the teams in the definition of the solutions.
Identify KPI's that represent the security controls and other aspects of the requirements.
Responsibilities
• Enforce and promote security standards and practices;
• Take ownership of the security related processes across the teams;
• Implement prototypes of the proposed processes and tooling usage;
• Work with the business owner and developers to identify and ensure security requirements are defined and are satisfied through validation of security controls;
• Working within an agile environment, working closely with the Architecture team, Developers, QAs, Analysts and Reliability Engineering Team to uphold excellent standards of quality;
• Produce security reports that are visible to all in the company for total transparency of the security effort;
• Manage security breaches and incidents and drive mitigation plans;
• Design and document security strategies;
• Propose and drive practices for continuous improvement of the security maturity of the team and sharing knowledge through presentations, challenges and training;
• Continuous improvements on CI/CD pipelines with security checks (dependencies check, SAST, DAST, network and infrastructure);
• Implementation and measurement of security controls;
• Work with the scrum teams and penetration testing team (or external) to manage penetration testing, owning the penetration testing calendar;
• Perform low-level security architecture reviews;
• Manage the delivery of security transformation programs and internal security projects.
| Distrito | Lisboa | ||||||
|---|---|---|---|---|---|---|---|
| Sector de actividade | TI, Telecomunicações e Comunicação | ||||||
| Tipo de contrato | Full-time | ||||||
| Tipo de oferta | Emprego | ||||||
| Contactos |
Kelly Services
Rua Joshua Benoliel, 6, Edifício Alto das Amoreiras, 10ºA 1250-133 Lisboa Portugal
|