Channels / CY iT HR
CY iT HR
@cyprusithr Β· supergroup
Β· filtered by
Kate B
β Prev Day
Jan 30 2025
#vacancy #cyprus #limassol #cybersecurity #office
Scale Final is looking for a πInformation Security Leaderπ!
Application Security:
β Conduct security reviews of the architecture and code for new and existing in-house applications.
β Identify and mitigate vulnerabilities in mobile and web applications.
β Maintain security tools, including Web Application Firewalls (WAF), SAST, DAST, and other security solutions.
β Support future launch of the Bug Bounty program and collaborate with security researchers.
β Work closely with development teams to integrate security best practices and tools into CI/CD pipelines.
β Guide on securing applications based on a microservices architecture with an existing stack of technologies: Golang, PHP, JavaScript, PostgreSQL, Redis, ClickHouse.
Secure Software Development:
β Define and enforce secure coding practices and security controls throughout the Software Development Lifecycle (SDLC).
β Conduct developer training and awareness programs to promote security-conscious development.
β Support the defect management process by assisting development teams in identifying and mitigating vulnerabilities.
Internal Information Security:
β Analyze the companyβs infrastructure to identify and mitigate security risks.
β Support threat detection and incident response activities,
β Support future launch of Security Operations Center (SOC) teams.
β Investigate security incidents and ensure timely remediation of threats.
β Define and implement security policies, processes, and controls to strengthen the companyβs security posture.
β Monitor and evaluate emerging threats, leveraging Threat Intelligence to improve detection capabilities.
β Ensure compliance with relevant regulatory frameworks and industry security standards.
What Makes You a Great Fit
Must-Have Qualifications:
β 5+ years of experience in Information Security, with expertise in application security, secure software development, and internal security.
β Strong background in software development or penetration testing.
β Experience in security reviews, vulnerability management, and risk assessment for applications.
β Proficiency in at least one programming language (Go, PHP, JavaScript, etc.).
β Deep understanding of common vulnerabilities (OWASP Top 10, CWE, etc.) and mitigation strategies.
β Familiarity with CI/CD security integration and security automation.
β Hands-on experience with security tools such as WAFs, SAST, DAST, SIEM, EDR, and cloud security solutions.
β Strong understanding of cloud security (especially GCP) and modern infrastructure security.
β Incident response and forensics experience, including malware analysis and threat hunting.
β Ability to think like an adversary to predict attack vectors and enhance security defenses.
β Strong business communication skills to educate and influence stakeholders on security initiatives.
β English: Intermediate level or higher.
Nice-to-Have Qualifications:
β Understanding of microservices security, Kubernetes, Docker, and container security.
β Familiarity with regulatory frameworks (e.g., ISO 27001, GDPR, PCI DSS) and compliance requirements.
β Security certifications (e.g., OSCP, OSEP, eCPTX, GCFA, CISSP, CISM, AWS/Azure Security).
β Experience with Bug Bounty programs or CTF competitions.
What We Offer:
β Competitive and Attractive Pay
β Flexible hours for a better work-life balance
β 21 vacation + 7 no-questions-asked sick days per year
β Career growth: Continuous Development & Performance Reviews
β Team-buildings & Office Happy Hours
β Relocation support included
Join Our Team of Visionary Innovators!
If this resonates with you, send us your CV to @hr_scalefinal, and letβs kickstart something extraordinary! Donβt tick every box? No problem! If you share our love for technology, weβd still love to chat and explore the possibilities together.
Scale Final is looking for a πInformation Security Leaderπ!
Application Security:
β Conduct security reviews of the architecture and code for new and existing in-house applications.
β Identify and mitigate vulnerabilities in mobile and web applications.
β Maintain security tools, including Web Application Firewalls (WAF), SAST, DAST, and other security solutions.
β Support future launch of the Bug Bounty program and collaborate with security researchers.
β Work closely with development teams to integrate security best practices and tools into CI/CD pipelines.
β Guide on securing applications based on a microservices architecture with an existing stack of technologies: Golang, PHP, JavaScript, PostgreSQL, Redis, ClickHouse.
Secure Software Development:
β Define and enforce secure coding practices and security controls throughout the Software Development Lifecycle (SDLC).
β Conduct developer training and awareness programs to promote security-conscious development.
β Support the defect management process by assisting development teams in identifying and mitigating vulnerabilities.
Internal Information Security:
β Analyze the companyβs infrastructure to identify and mitigate security risks.
β Support threat detection and incident response activities,
β Support future launch of Security Operations Center (SOC) teams.
β Investigate security incidents and ensure timely remediation of threats.
β Define and implement security policies, processes, and controls to strengthen the companyβs security posture.
β Monitor and evaluate emerging threats, leveraging Threat Intelligence to improve detection capabilities.
β Ensure compliance with relevant regulatory frameworks and industry security standards.
What Makes You a Great Fit
Must-Have Qualifications:
β 5+ years of experience in Information Security, with expertise in application security, secure software development, and internal security.
β Strong background in software development or penetration testing.
β Experience in security reviews, vulnerability management, and risk assessment for applications.
β Proficiency in at least one programming language (Go, PHP, JavaScript, etc.).
β Deep understanding of common vulnerabilities (OWASP Top 10, CWE, etc.) and mitigation strategies.
β Familiarity with CI/CD security integration and security automation.
β Hands-on experience with security tools such as WAFs, SAST, DAST, SIEM, EDR, and cloud security solutions.
β Strong understanding of cloud security (especially GCP) and modern infrastructure security.
β Incident response and forensics experience, including malware analysis and threat hunting.
β Ability to think like an adversary to predict attack vectors and enhance security defenses.
β Strong business communication skills to educate and influence stakeholders on security initiatives.
β English: Intermediate level or higher.
Nice-to-Have Qualifications:
β Understanding of microservices security, Kubernetes, Docker, and container security.
β Familiarity with regulatory frameworks (e.g., ISO 27001, GDPR, PCI DSS) and compliance requirements.
β Security certifications (e.g., OSCP, OSEP, eCPTX, GCFA, CISSP, CISM, AWS/Azure Security).
β Experience with Bug Bounty programs or CTF competitions.
What We Offer:
β Competitive and Attractive Pay
β Flexible hours for a better work-life balance
β 21 vacation + 7 no-questions-asked sick days per year
β Career growth: Continuous Development & Performance Reviews
β Team-buildings & Office Happy Hours
β Relocation support included
Join Our Team of Visionary Innovators!
If this resonates with you, send us your CV to @hr_scalefinal, and letβs kickstart something extraordinary! Donβt tick every box? No problem! If you share our love for technology, weβd still love to chat and explore the possibilities together.
β Prev Day
Jan 30 2025
1 message on this day