Огляд статистики зарплатні професії "Младший инспектор охраны в Києві"

At Mangopay, our mission is to power the payment infrastructure and payment operations of the world's biggest and most exciting marketplaces & platforms. We provide marketplaces and platforms with powerful modular payment and regulatory solutions. Since 2013, we have enabled the success of some of the biggest names in e-commerce, retail, and cutting-edge platforms such as Vinted, Rakuten, Chrono24, La Redoute, Wallapop and over 2,500+ more.  Our team of 400+ is spread across Europe, with offices in Berlin, Dublin, Luxembourg, London, Madrid, Paris, and Warsaw. In an environment where marketplaces and fintech ventures are thriving, we're actively seeking exceptional individuals to tackle the challenges in our field and contribute to our growth. Our commitment to diversity is unwavering, and we are dedicated to promoting employee well-being, inclusivity, and equal opportunities. Joining Mangopay means you’ll be part of a dynamic, flexible, and rapidly growing team. Job Description As a Senior Security Operations Engineer, you will be at the forefront of securing our AWS infrastructure and applications through hands-on technical work, with a specific focus on Kubernetes-based environments. Your role will involve architecting, implementing, and managing security controls, conducting penetration tests to uncover vulnerabilities, and collaborating closely with development teams to remediate findings. This is a unique opportunity for a technically proficient individual to make a significant impact on our security posture in the cloud and Kubernetes ecosystem. Key Responsibilities: Architect, implement, and manage advanced security controls in AWS, including but not limited to AWS network firewalls, DDoS protection, ELB, VPC zoning, KMS deployment, and application controls within Kubernetes environments. Deploy and configure security tools such as Netskope for CASB functionality, Inspector for vulnerability assessment, and GuardDuty for threat detection. Advanced IAM / PAM management experience and deploying RBAC strategies in cloud environment Conduct hands-on penetration tests and vulnerability assessments of AWS infrastructure, Kubernetes clusters (EKS), and Fargate workloads, utilizing tools and techniques to identify security weaknesses.  Review golden images and ensure hardening security practice (limitation of attacks surface and vulnerabilities exposure) Collaborate closely with development teams to prioritize and remediate security findings, integrating security into the CI/CD pipeline and application controls within Kubernetes. Monitor AWS environments and Kubernetes clusters for security incidents and anomalies, utilizing native AWS tools, Kubernetes auditing, and third-party solutions to detect and respond to threats. Automate security tasks and workflows using IAC (Terraform, Giltab), AWS Lambda, Kubernetes-native tooling, and scripting languages to improve efficiency and scalability. Stay up-to-date on emerging threats and security best practices, researching and implementing innovative solutions to enhance our security posture within AWS and Kubernetes. Mentor and provide technical guidance to junior members of the security operations team. Qualifications: Bachelor's degree in Computer Science, Information Security, or related field. 5-7 years of hands-on experience in security operations with a strong focus on AWS, Kubernetes (EKS), and Fargate. Deep understanding of AWS security services and features, Kubernetes architecture, and container security principles. Extensive hands-on experience with security tooling such as Netskope, Inspector, GuardDuty, and Terraform. Proven track record of conducting penetration tests and vulnerability assessments in AWS and Kubernetes environments, utilizing tools such as Trivy, Kali Linux, Metasploit, and Burp Suite. Strong scripting and automation skills, with proficiency in Python, Bash, or similar languages. Relevant certifications such as AWS Certified Security - Specialty, Kubernetes certifications, OSCP, or CISSP are highly desirable. Excellent communication skills and the ability to effectively collaborate with cross-functional teams. Recruitment process   HR Call 1st Interview with our Expert SOC Engineer 2nd interview with our Application Security Engineer Final interview with our CISO

Zadania: Udział we wdrożeniu rozporządzenia DORA w obszarze testowania cyfrowej odporności operacyjnej (Chapter IV) Udział w opracowaniu i wdrożeniu kompleksowego programu testowania cyfrowej odporności operacyjnej, obejmującego narzędzia, systemy i procesy Odpowiedzialność za przeprowadzanie zaawansowanych testów penetracyjnych narzędzi, systemów i procesów Oczekiwania: Doświadczenie w projektowaniu i wdrażaniu testów bezpieczeństwa (najlepiej w firmach finansowych/fintech) Znajomość narzędzi takich jak Nessus, Qualys, OpenVAS, AWS Inspector Umiejętność analizowania wyników testów bezpieczeństwa oraz oceniania ich wpływu na infrastrukturę, aplikacje i usługi w chmurze, a także ustalania priorytetów dla luk w zabezpieczeniach Znajomość regulacji sektora finansowego, idealnie: znajomość wymagań dotyczących testów odporności DORA i ich praktycznego wdrożenia Mile widziane certyfikaty CISM, CISA, CISSP, CEH i OSCP Przynajmniej dobra znajomość języka angielskiego (prowadzenie i uczestniczenie w spotkaniach z zespołem z UK) Umiejętność prowadzenia prezentacji i spotkań Umiejętność kierowania pracami zespołu Oferujemy: Umowa B2B w tzw. outsourcingu Stawka godzinowa 180-250 zł + VAT Płaska struktura, swobodna atmosfera pracy, elastyczne godziny Praca zdalna