Senior Cyber Security Engineer

at  Veson Nautical

ABOUT US:

Veson Nautical is a well-established and rapidly growing software company working to provide end-to-end logistical, operational, and analytical solutions to propel the efficiency and effectiveness of Maritime Commerce.

THE OPPORTUNITY:

Are you a hands-on security engineer with a passion for hunting for vulnerabilities and securing complex hybrid on-prem/cloud environments & applications built on diverse tech stacks? Do you enjoy working on both the “red” and “blue” side of the fence? Do you want an opportunity to help build and expand a team? Veson Nautical, a leader in the maritime shipping industry, is seeking enthusiastic and skilled security engineers to join its growing cybersecurity team.

QUALIFICATIONS

• Experience: 5-7 years of experience in IT, Engineering, SRE, or a related field combined with 3-5 years of experience in a hands-on cybersecurity role, with a thorough understanding of tactics, tools, and procedures used by attackers stemming from practical experience detecting, exploiting, and remediating/mitigating vulnerabilities.
• Education: Bachelor’s degree in Computer Science, Information Technology, Information Systems Security (or a related field), or equivalent professional experience.
• At least one skill-focused certification (OSCP, GPEN, GCIA, Hack the Box Academy, BSCP, etc.) is required.

SKILLS:

• Proficiency with security tools and technologies, to include firewalls, IDS/IPS/SOAR/SIEM technologies, log analysis engines, and ability to investigate security incidents, follow leads, and determine root cause.
• Professional experience with OWASP and web application vulnerabilities, to include detection, exploitation, and remediation. Experience with Burp Suite Professional is required.
• Experienced with network penetration testing tools and techniques, including the use of port scanners, vulnerability scanners, automated exploitation frameworks, Active Directory misconfiguration abuse, and manual exploit creation.
• Experience with scripting or programming languages for understanding root cause of application vulnerabilities, automating tasks, and developing security solutions. Professional development experience is a plus.
• Excellent problem-solving skills and the ability to think critically under pressure.
• Effective written and verbal communications skills with the ability to convey technical information to both technical and non-technical audiences.
• Possesses an insatiable sense of curiosity
  We are focused on building a diverse and inclusive workforce. If you’re excited about this role, but do not meet 100% of the qualifications listed above, we encourage you to apply. While we try to be thorough with our job descriptions, not everything about you as a candidate can be condensed into a list of bullet points.

• Monitor intrusion detection systems and be a member of Veson’s security incident response team.
• Proactively identify vulnerabilities in our applications, networks, and processes through ongoing penetration testing
• Collaborate with internal IT, development, and operations teams to investigate security events, prepare for incident response, and remediate vulnerabilities
• Stay up-to-date with the latest cybersecurity trends, threats, and technologies. Recommend and implement new security tools and practices.
• Partner with internal stakeholders at the product level to establish a hardened security posture resilient to threats.
• Be a professional mentor and teacher to your teammates.