Security Engineer
at Cleafy
Milano, Lombardia, Italy -
| Start Date | Expiry Date | Salary | Posted On | Experience | Skills | Telecommute | Sponsor Visa |
|---|---|---|---|---|---|---|---|
| Immediate | 23 Jan, 2025 | Not Specified | 26 Oct, 2024 | 3 year(s) or above | Mitigation Strategies,Vulnerability,Automation,Siem,Information Security,Regulatory Requirements,Firewalls,Security,Ips,Google Cloud Platform,Computer Science,Security Tools,Scripting Languages | No | No |
Required Visa Status:
| Citizen | GC |
| US Citizen | Student Visa |
| H1B | CPT |
| OPT | H4 Spouse of H1B |
| GC Green Card |
Employment Type:
| Full Time | Part Time |
| Permanent | Independent - 1099 |
| Contract – W2 | C2H Independent |
| C2H W2 | Contract – Corp 2 Corp |
| Contract to Hire – Corp 2 Corp |
Description:
Cleafy is a SaaS company, a team of fraud hunters, cybersecurity experts, data scientists, and software engineers that since 2014 share the same dream: make technology a safer place.
Every day, we work side by side with our customers to help them safely navigate digital opportunities, while growing their business.
Cleafy has recently secured a €10 million Series A capital raise from United Ventures to fund its international expansion.
JOB DESCRIPTION:
We are looking for a highly skilled Security Engineer to join our Security & Compliance team. The ideal candidate will possess a strong technical background, particularly in cloud security technology.
You will be responsible for implementing, managing, and monitoring security measures to protect our cloud infrastructure, network, systems, and data.
REQUIREMENTS
- BS/MS in Computer Science, Information Security, or a related field.
- 3 to 5 years of experience as a Security Engineer or in a similar role.
- Strong knowledge of cloud providers, specifically Google Cloud Platform (GCP).
- Hands-on experience with firewalls, IDS/IPS, SIEM, XDR and other cloud security tools.
- Experience in endpoint device hardening, particularly for Mac environments.
- Proficiency in scripting languages (e.g., Python, Bash) for automation.
- Experience with securing CI/CD pipelines and implementing security within the SSDLC process.
- Knowledge of threat and vulnerability management practices, including conducting assessments and implementing mitigation strategies.
- Familiarity with regulatory requirements and industry standards (e.g., ISO27001, SOC2).
- Excellent problem-solving skills and attention to detail.
- Strong communication and teamwork abilities, with the capacity to explain security concepts to both technical and non-technical stakeholders.
How To Apply:
Incase you would like to apply to this job directly from the source, please click here
Responsibilities:
- Implement, maintain and monitor robust security measures within the cloud, particularly on Google Cloud Platform (GCP).
- Implement, maintain and monitor security controls within CI/CD pipelines (Bitbucket, Terraform, Jenkins), and assist in the SSDLC process (Threat Modelling, SAST, DAST, SCA).
- Conduct regular security assessments. Implement strategies to mitigate identified threats and vulnerabilities.
- Harden endpoint devices, particularly Macs, by implementing appropriate security configurations and controls (CIS).
- Monitor and respond to security incidents and alerts as L2, ensuring timely resolution and minimal impact.
- Work closely with IT and Engineering teams to ensure applications and systems are securely designed and implemented.
- Assist in the creation and maintenance of security documentation and reports.
- Effectively communicate security concepts and solutions to both technical and non-technical stakeholders.
REQUIREMENT SUMMARY
Min:3.0Max:5.0 year(s)
Information Technology/IT
IT Software - Network Administration / Security
Software Engineering
Graduate
Proficient
1
Milano, Lombardia, Italy
