(Senior) Engineer, Cloud and System Security

Requisition Number: 19141Contract Type: PermanentLocation(s):Bucharest, RO(Senior) Engineer, Cloud and System SecurityRole Description SummaryIn this position you will be responsible for translating advanced security requirements using the latest technologies in cyber security into comprehensive effective and efficient technical security concepts. You will manage and advise several projects and BizDevOps teams to deliver resilient zero trust solutions in a diverse and fast paced environment. You will also autonomously steer and deliver zero trust complex cyber security implementation projects as well as design, implement, and automate advanced cloud, system, and application security controls.Primary Responsibilities / Key Result AreasTranslate advanced security requirements into comprehensive, effective and efficient technical security concepts in line with industry and governmental security standards that effectively mitigate security related risks, threats and vulnerabilities while accommodating complex operational needs in complex hybrid infrastructuresManage and advise architects and BizDevOps teams on effective and efficient zero trust cyber security strategies, architectures, and technical security controls to meet advanced security requirements and deliver resilient solutions against advanced threat actorsAutonomously lead complex cyber security implementation projects as laid out in SES’s information security strategy and deliver them within time, cost and scopeSupport the execution of the Zero-Trust strategy for SES by designing, implementing and automating advanced zero trust cloud, system and application security controls leveraging best of breed and cloud native state of the art security technologies, including EDR, O365 Security, data leakage prevention and rights management, identification and access management, active directory security, secure software developmentDefine and develop secure Azure products and policies in collaboration with cloud product owners and increase the Secure Score on Azure environmentDefine policies, processes, procedures, configuration standards and guidelines to ensure appropriate security risk management throughout the system life cyclePerform technical security assessments and audits of information systems, applications and infrastructures to identify vulnerabilities and non-compliance with established security standards and recommend efficient and effective zero trust mitigation strategiesPro-actively evaluate emerging risks and advise on and implement effective risk mitigations and state-of-the-art security concepts Support security incident response, focussing on preventions, containment, eradication, and recovery of information systemsCOMPETENCIESIndependent, passionate and self-motivated with proven ability to deliver on complex and time critical tasks/projectsEffective project management skills, able to handle multiple projects simultaneously and steer cross-functional and/or virtual project teamsVery good analytical skills and stress resistanceSound data research and testing skillsInnovative, result, solution and stakeholder-oriented mindsetVery good ability to overcome resistance to change, mediate in conflicts and resolve issues, and to secure stakeholder buy-in to the proposed solutionProficient written and verbal communication skills: ability to explain security rationales and controls to non-technical audiencesPassionate team player, motivated to work in an international environment, collaborating with interdisciplinary teamsVersatile and able to grasp new concepts and technologies quicklyQualifications & ExperienceDegree in Computer Science or Software Engineering and a minimum of 7 years of experienceSound, hands-on knowledge of and experience with managing system related security risks, including the assessment of system security risks, specification of security requirements, the definition of security concepts, secure system design, implementation of security controls, specification of secure configuration standards, assessment of security controls and vulnerabilitiesExperience in developing and deploying zero trust security controls in Microsoft Azure and Ofice365 environments, including knowledge of Intune, Conditional Access, Cloud App, Microsoft Purview Information Protection, Microsoft Purview Data Loss Prevention Experience with setting security standards and best practicesExperience with 1 or more Identity and Access Management and with Strong Authentication Systems; knowledge of Azure AD, Active Directory, Kerberos, SSO, SAML, and/or OAuth Knowledge of attacker techniques and how to mitigate them in complex environmentsExperience with Public Key Infrastructure including HSM Experience with Privileged Access Management and password vault solutionsKnowledge in Malware protection, Enterprise Detection and Response and Host-based Intrusion Prevention SystemsSecurity standards, best practices and guidelines (e.g., NIST SP-800 series, DISA STIGs, CIS)Vulnerability, compliance and patch management solutions for complex, heterogeneous systemsEligible for a EU/ESA/NATO security clearanceProficiency with EnglishSES and its Affiliated Companies are committed to providing fair and equal employment opportunities to all. We are an Equal Opportunity employer and will consider all qualified applicants for employment without regard to race, color, religion, gender, pregnancy, sex, sexual orientation, gender identity, national origin, age, genetic information, protected veteran status, disability, or any other basis protected by local, state, or federal law.For more information on SES, click here.