Expert On Information Security

TL;DR

Expert on Information Security: Participating in projects to implement IT systems as an information security expert with an accent on analyzing the security of the implemented system, developing security requirements for it, and monitoring their implementation. Focus on the implementation of internal information security projects as a project manager, the development of the company's products and services as an internal customer, and the improvement of existing information security processes.

Локация: Москва (м. Пушкинская / м. Чеховская / м. Тверская)

Salary: 380 000 ₽/мес на руки

Компания

МойОфис is a product company that created a multi-product ecosystem with end-to-end scenarios with chats, emails, documents, and online whiteboards in a single secure digital space.

Что делать

• Participate in projects to implement IT systems as an information security expert.
• Participate in the implementation of internal information security projects as a project manager.
• Participate in the development of products and services as an internal customer.
• Improve existing information security processes, implement new ones, and automate them.
• Analyze internal business processes and develop requirements for the organization of information security in them.
• Analyze current technologies and emerging information security tools and develop proposals for their implementation based on risk assessment.

Требования

• Experience in information security from 5 years as a technical expert.
• Relevant education (information technology/information security).
• Experience in infrastructure security (protection of networks, servers, cloud environments, PKI, IDS/IPS, SIEM, PAM, etc.).
• Knowledge of domestic and foreign standards in the field of information security (order 21 FSTEC, FZ 152, ISO 270xx, NIST, etc.).
• Experience in implementing complex infrastructure services and information security systems.
• Experience in managing projects to implement information security solutions.

Хорошо, если есть

• Broad outlook in the field of modern means and technologies for protecting information (Kubernetes, Docker, Linux Security, IAM).
• Knowledge of cloud technologies and methods for ensuring their security.
• Ability to explain complex technical solutions to different target audiences (Business, RnD, IT).
• Experience in participating in piloting and implementing information security products and evaluating their effectiveness.
• Knowledge of technical English (reading documentation).
• Practical experience in architectural and technological integration of ML/AI solutions with a corporate stack of information security tools.