Необходимые навыки
3+ years’ experience with security management tools, including IDS/IPS, WAF, SIEM, vulnerability scanning, and penetration testing
2+ years’ experience with cloud provider ecosystems (Amazon Web Services, Microsoft Azure, etc) with reference to security aspects and best practices
Practical experience in web application security testing methodologies and remediation approaches (OWASP, SANS, NIST, etc)
Understanding Access Control and Identity Access Management principles (SAML 2.0, OAuth, JWT, etc)
Understanding DevSecOps methodology
Solid interpersonal, written and verbal communication skills
Intermediate English level (B1+)
Предлагаем
An honest, open culture that emphasizes feedback and promotes professional and personal development
An opportunity to work from anywhere — our team is distributed worldwide, from Minsk to Manila, from Florida to California
An annual personal budget for educational classes, conferences, etc. — anything to further your professional knowledge
A competitive salary
And much more!
Обязанности
Monitor and test information systems to identify vulnerabilities
Execute or manage mitigation remediation of identified vulnerabilities
Respond to security incidents and performs root cause analysis
Assess and understand PandaDoc’s current security framework and future architecture, providing recommendations for risk reduction
Design and evangelize automated security capabilities
Serve as a security expert in application development and microservice design
Analyze and monitor relevant security threats and prevention measures based on industry trends and standards with reference to business specifics