Infrastructure Security Engineer

Your role at Exness:

You will identify existing and emerging security threats in infrastructure services and create a protected environment. Together with a team of infrastructure security engineers, you will maintain business continuity and regulatory compliance by fostering a security culture within the company. You will use your industry experience to own and drive the resolution of complex security incidents, policy questions, and technical security issues.

You will need a team player mindset and should be ready to collaborate with other departments to solve security-related issues. In this role, you will need to be passionate about keeping services safe and driven by opportunities to mitigate vulnerabilities and risks.

Our Infrastructure Security team creates and maintains the safest operating environment for our employees and customers. Our infrastructure security engineers work with Splunk, k8s, Vault, Cloud Security (AWS, GCP), and WAF, actively use DevSecOps approaches, and automate security operations (SecOps, Python/Go).

You will:

• Work directly with the business units to facilitate risk assessment and risk management processes.
• Maintain effective communication and coordination with Exness Technology teams in security-related areas.
• Manage information security controls.
• Enforce compliance with these controls and technology-related regulatory requirements.
• Participate in internal and external audits.
• Handle data loss and fraud prevention, making sure the staff doesn't misuse data.
• Manage personal data protection measures (including GDPR).
• Develop security policies and procedures.
• Review architecture, implementing operations of IT systems from a security perspective.
• Conduct identity and access management and ensure that only authorized people have access to restricted data and systems, maintaining the least privilege approach.
• Carry out the management of security incidents, including investigations and forensics.
• Process events generated by security tools: WAF, VPN, SIEMr and others.
• Manage and develop onboarding and ongoing security education programs for employees.

What makes you a great fit:

• 5 or more years of experience in information security or other IT roles
• Ability to leverage business communication skills to inform, convince, and educate employees to enable practical information security activities and processes
• Has experience in creating a vulnerability management process taking into account the various technologies used in the company
• Hands-on experience with modern information protection systems (including open-source products)
• Background in administering Linux and Windows systems
• Understanding of security aspects of virtualization, containerization (Docker).
• Familiarity with cryptography foundations, knowledge of X509 standard, and experience with PKI administration
• Broad-spectrum of technical knowledge in the following areas (the list is not exhaustive): Linux family, Docker, Kubernetes, vSphere, AWS, Vault, LDAP, Cisco ASA, Microsoft Windows AD, SSO, Cisco ISE, PaloAlto
• Has deep knowledge of building security in cloud infrastructure
• Capability to perform audits, both internal and external
• Intermediate-level or higher of English

Nice to have:

• General acquaintance with regulatory frameworks and compliance requirements associated with financial services
• Understanding of ITSM fundamentals and project management
• Any industry certifications
• Security forensics experience

What we offer along the way:

• Competitive and attractive compensation
• Extensive learning opportunities, such as professional training and certifications, soft skills development, free English courses, and trading workshops
• Health and life insurance for employees, spouses, and children, including vaccinations, tests, mental health care, and coverage for vision and dental care
• Generous time off, including 21 days of annual leave and paid sick leave
• Flight tickets, hotel or apartment accommodation in Cyprus for your first month, migration support, and legal help for you and your family
• Education allowance for your children’s school and kindergarten fees
• Access to our very own sports club with dedicated coaches, free Sanctum Club memberships for you and your spouse, corporate SUPs, jet skis, etc.
• A branded company car with a parking space near the office
• Outstanding team-building experiences and Exness community gatherings

Your journey after applying:

1. First interview with Talent Acquisition Specialist (up to 45 minutes)
2. Short online English test (for non-native speakers)
3. Technical Interview (1 hour)
4. Final interview (1 hour)