Cloud and Encryption Security Engineer

Cloud and Encryption Security Engineer
[online recruitment]
Location: Wroclaw
Reference number: VR-52859
Project Description:

You will be joining the Architecture team, and will be mainly responsible for the internet-facing infrastructure and cloud initiatives across all regions. The applications that rely on our systems and expertise include e-banking, trading systems, information portals and many more. The team is spread across Warsaw, Wroclaw, London, and Zurich offices and it has a dynamic and multicultural atmosphere.

The Architect role scope includes internet facing applications, cloud security (IAM, CASB), federation authentication and token management. The activities related to the Architect within the Data Protection and Application Security organization work on a wide variety of tasks and activities that are closely aligned with the bank’s strategic programs.

Responsibilities

Design and implement DLP controls for Microsoft 365 products

o Design proposition and approval

o Negotiations with vendor

o Software Architecture Design document preparation

o Advisory in implementation (definition of tasks)

o Design of testing framework for control effectiveness verification

· Establish Service for Microsoft 365 DLP management

o Requirements collection and validation

o Design proposition and approval for service and its components

o Advisory in service implementation (definition of tasks)

o Drive Service adoption with respective vendors, operating and tools development teams

· Establish Key Management services for Azure and AWS in a BYOK with HSM backend

o Requirements collection and validation

o Design proposition and approval for service and its components

o Advisory in service implementation (definition of tasks)

· Design and implement Key Management process automation for Azure and AWS in a BYOK with HSM backend

o Design proposition and approval

o Software Architecture Design document preparation

o Advisory in implementation (definition of tasks)

· Establish Secrets Management service

o Requirements collection and validation

o Design proposition and approval for service and its components

o Advisory in service implementation (definition of tasks)

o Drive Service adoption with respective internal clients, operating and tools development teams

· Design and implement PoC for a Vault based on Hashicorp products and in-house development

o Design proposition and approval

§ Vault PoC; and

§ Setup HSM partitions for Secrets Management system

o Negotiations with vendor

o Software Architecture Design document preparation for the cluster deployment

o Advisory in implementation (definition of tasks)

· Design and implement HSM modernization

o Requirements collection and validation

o Design proposition and approval for service and its components

Skills
  • You have overall 7+ years of experience which span one or more IT disciplines like: designing, IT business analysis, IT security and/or development of software or infrastructure in the relevant areas.
  • You have overall 4+ years of experience in a role dedicated to architecting/implementing solutions utilizing recognized design and architecture patterns and industry standards.
  • You have an excellent and proven knowledge of Application/Cloud Security concepts and the IT Security Domain.
  • You are confident, assertive and effective communicator with strong influencing skills.
  • You are able to prepare and deliver professional presentations to senior level audience.
  • You are fluent English (written and spoken).
Our offer
Career and Professional Development
  • International projects for clients all over the world
  • Competitive salary
  • Individual development plan
  • Managerial Targeted Training programs
  • BRIDGE Mentoring Program
  • Luxoft Training Center
  • Language Classes
  • Self-learning online library
  • Global Relocation Program
  • Internal Mobility (a chance to gain experience in varied projects and technologies)
  • Professional communities for knowledge-sharing (Agile, Tech, Business)
Well-being
  • Group Life Insurance
  • Travel Insurance
  • Private Healthcare (dental care, unlimited consultations of specialist physicians)
  • Medical costs reimbursement for employees
  • Benefit Program (Cafeteria and Multisport Card)
Work-Life Balance
  • LuxGood Program (a wide range of health and well-being initiatives)
  • After-hours groups (sport, trips, board games, cultural activities)
  • Company and Team events
  • BeLux - discount offers program (banking, car leasing, other)
  • Convenient locations in modern offices
Career and Professional Development
  • International projects for clients all over the world
  • Competitive salary
  • Individual development plan
  • Managerial Targeted Training programs
  • BRIDGE Mentoring Program
  • Luxoft Training Center
  • Language Classes
  • Self-learning online library
  • Global Relocation Program
  • Internal Mobility (a chance to gain experience in varied projects and technologies)
  • Professional communities for knowledge-sharing (Agile, Tech, Business)
Well-being
  • Group Life Insurance
  • Travel Insurance
  • Private Healthcare (dental care, unlimited consultations of specialist physicians)
  • Medical costs reimbursement for employees
  • Benefit Program (Cafeteria and Multisport Card)
Work-Life Balance
  • LuxGood Program (a wide range of health and well-being initiatives)
  • After-hours groups (sport, trips, board games, cultural activities)
  • Company and Team events
  • BeLux - discount offers program (banking, car leasing, other)
  • Convenient locations in modern offices
Please send your CV with consent for processing your personal data for recruitment purposes using the below button
APPLY
Informujemy, że administratorem danych jest Luxoft z siedzibą w Krakowie, ul. Bora Komorowskiego(dalej jako "administrator"). Masz prawo do żądania dostępu do swoich danych osobowych, ich sprostowania, usunięcia lub ograniczenia przetwarzania, prawo do wniesienia sprzeciwu wobec przetwarzania, a także prawo do przenoszenia danych oraz wniesienia skargi do organu nadzorczego. Dane osobowe przetwarzane będą w celu realizacji procesu rekrutacji. Podanie danych w zakresie wynikającym z ustawy z dnia 26 czerwca 1974 r. Kodeks pracy jest obowiązkowe. W pozostałym zakresie podanie danych jest dobrowolne. Odmowa podania danych obowiązkowych może skutkować brakiem możliwości przeprowadzenia procesu rekrutacji. Administrator przetwarza dane obowiązkowe na podstawie ciążącego na nim obowiązku prawnego, zaś w zakresie danych dodatkowych podstawą przetwarzania jest zgoda. Dane osobowe będą przetwarzane do czasu zakończenia postępowania rekrutacyjnego i przez okres możliwości dochodzenia ewentualnych roszczeń, a w przypadku wyrażenia zgody na udział w przyszłych postępowaniach rekrutacyjnych - do czasu wycofania tej zgody. Zgoda na przetwarzanie danych osobowych może zostać wycofana w dowolnym momencie.
APLIKUJ TERAZ

Zobacz podobne oferty

SZCZEGÓŁY OGŁOSZENIA
Firma:
TeamQuest
Lokalizacja:
dolnośląskie/ Wrocław
Data publikacji:
2020-11-04
Poznaj ofertę...
Provide analytical and technical security recommendations to other team members, oversight boards, and clients. Identify requirements, based on needs or resulting from a security issue that puts the organizations systems at risk.Perform network penetration, web...
Publikacja:
2020-11-01
Firma:
Luxoft
Miejsce pracy:
dolnośląskie / Wroclaw