Key skills
CloudCyber SecurityDNSFirewallsLinuxMacOSTCP/IPSSOSaaSRemote WorkNetwork Security
About this role
Role Overview
- Maintain hardening and configuration baselines for endpoints and servers (encryption, security policies, benchmarks).
- Deploy and manage endpoint and server protection across the fleet, including security policy enforcement and compliance configuration.
- Administer network security controls (firewalls, VPN, network segmentation, access controls) and monitor traffic for suspicious activity.
- Review infrastructure projects and architecture from a security perspective to ensure secure-by-default configurations.
- Run regular vulnerability scans across endpoints, servers, and cloud, with risk-based prioritization and remediation tracking.
- Enforce identity and access best practices and run periodic access reviews.
- Monitor and analyze security events and logs to detect anomalies and potential threats.
- Detect, investigate, contain, and remediate security incidents, including documenting timelines, root causes, and lessons learned.
- Monitor cloud and SaaS security posture, remediate misconfigurations, and review third-party integrations and access scopes.
- Implement and document technical security controls (runbooks, hardening guides) and support internal and external audits.
Requirements
- 5+ years of hands-on experience in IT infrastructure or cybersecurity engineering with a clear security specialization.
- Hands-on experience administering and hardening Linux, Windows, and macOS systems.
- Experience with endpoint protection and device management platforms.
- Solid understanding of networking fundamentals (TCP/IP, DNS, DHCP, VPN) and practical experience with firewalls and network security controls.
- Hands-on experience with identity and access management/SSO platforms with a security-first approach.
- Experience with vulnerability management tools and security monitoring and incident-response workflows.
- Understanding of common attack types and detection/prevention methods.
- Practical familiarity with recognized security frameworks and standards.
- Analytical mindset with the ability to assess risk and prioritize pragmatically.
- Clear communicator able to explain technical issues to non-technical colleagues.
- English proficiency (documentation, vendors, and external partners).
Tech Stack
- Cloud
- Cyber Security
- DNS
- Firewalls
- Linux
- MacOS
- TCP/IP
Benefits
- Professional growth through working with cutting-edge defense technologies and exposure to international security best practices.
- A fast-paced environment with minimal bureaucracy and no “process for the sake of process”.
- Competitive salary and a comprehensive benefits package (insurance, paid sick leave, 20 paid days off per year).
- Benefits of the defense sector (e.g., reservation, etc.).
- Flexible remote work options where possible.