Description
Join the financial revolution!
Are you passionate about finance and want to make a real change? Join Kreditech and our team of over 300 professionals and become part of a transforming industry. From engineering, to design, to analytics, and collections, we do things differently and we reward great ideas, team work and persistence. We have a lot of work to do – and we want you to join us!
Your Role
The main purpose of this position is to focus both on the offensive and defense aspects of information security. You will be responsible for ensuring Kreditech’s ability to effectively and efficiently detect, respond to, and protect resources from cyber-attacks, intrusion attempts, and security breaches. Penetration testing of applications, middleware, databases and the underlying infrastructure to identify vulnerabilities and recommend safeguards as pre-emptive measures will also form a large part of this role.
Your responsibilities will include:
- Act as the subject matter expert for all topics related to cyber and application security, and maintain expertise in current and emerging technologies;
- Monitor and scan for security vulnerabilities, threats and events in network, host systems and applications;
- Perform penetration testing to identify vulnerabilities and recommend safeguards as pre-emptive measures;
- Act as a focal point for IT security investigations, direct responses, and recommend course of action:
- Develop strategies to handle security incidents and coordinate investigative activities;
- Develop standard processes and documentation for security incident tracking and management, in all locations.
- Work closely with the business groups as a consultant to understand and deliver secure and reliable solutions to business problems;
- Identification, selection and implementation of new Information Security and Cyber security capabilities;
- Review and make recommendation on any exception request to established security standards;
- Provide input to the Cyber Security Delivery Technology Roadmap:
- Assist in architecting and implementing managed service solutions;
- Lead future service delivery strategy development for information security with the latest technologies, intelligence, and potential threats;
- Understand and utilize change management, project management and incident management processes.
Your Strengths
- Bachelor Degree in Computer Science or Information Security;
- Relevant information security certifications preferred (i.e. OSCE/OSCP/CEH);
- At least 5 years of professional experience in a similar role;
- Demonstrated knowledge of offensive security testing i.e. web application penetration testing, infrastructure and application vulnerability management;
- Demonstrable knowledge and experience with SIEM, IPS/IDS and Incident Response;
- You have some level of experience with at least one scripting language (Bash, Python, etc.);
- You have a great eye for log reviewing and analysis.
How to apply
We accept applications exclusively through our recruiting platform, found under the ‘Apply Now’ link.
