MAKERS_PATTERN_edited.jpg
MAKERS_PATTERN_edited.jpg
MAKERS_PATTERN_edited.jpg

Security Engineer 

Projects we will work on together

  • Building Energy Management System / USA
    Our customer is a full-service technology partner that opens the energy marketplace to real estate owners and transforms built environment into a flexible power network. We share common infrastructure with our customer and you will become a member of our common team. Your responsibility will be to support this infrastructure and people that are using it in EU.

Night Shift at Office
Lock Picking Tools

Your Teamleader and team

Dávid Kőszeghy

(Linuxhead trying to automate best security practices in docker containers and Kubernetes environments)

 

Dávid is Chief Software Lead in MAKERS and one of the co-owners. He is a big fan of CNCF/cloud technologies and is active in multiple technology meetups (such an IoT Bratislava, Kubernetes, etc.).

Infrastructure Team is responsible for working with containers/orchestration tools/automation/CNCF cloud applications to get our solutions to our customers

web_DSB_4746.jpg

Your daily job and responsibilities

  1. Propose concepts of development and operation to keep the project on track with relevant security policies/directives and ensure compliance with security requirements

  2. Asses security risks in the solution architecture and design

  3. Estimate efforts needed for feature development, deployment and maintainability of security solutions

  4. Share knowledge with the team in Security areas that you excel at/looked into during work on the project, provide reports for teams of the policies/operations needed to keep everybody secure

  5. Keep CTO/Security Expert on a safe side

  6. Propose, conduct and summarise results of security penetration tests, security assessments, and risk analyses

  7. Be part of the INFRA Quick Reaction Force (QRF) designing and implementing a data-oriented SLA program for our customers (Security incident orientation)

  8. Analyze security standard specifications and design steps that need to be taken to comply with NIST/FIPS/PIV/BSI/ISO27k equivalent standards

  9. Follow CVE’s and issue security update newsletters

Relevant skills, knowledge and experience

  • MUST HAVE

    • Experience with maintaining compliance with Company security standards (ICT, Security Audits, Workplace processes, etc)

    • Experience with conducting security penetration tests, security assessments, and risk analyses

    • Experience with any Linux Distribution Operating system and security practices

    • Experience with GSuite Security policies

    • Experience with Cloud Architecture knowledge and security practices

    • Software Networking Knowledge

  • SHOULD HAVE 

    • Docker/Kubernetes concept knowledge

    • NIST CSF/ISO 27001 standards knowledge (advantage knowledge 27000 range or NIST equivalent

    • Experience with any object-oriented programming language (Python is advantage) or Assembly
       

  • COULD HAVE

    • ​Knowledge of data formats JSON, XML, YAML

    • Reverse engineering/Hardware hacking/Ethical hacking experience

MAKERS_PATTERN_edited.jpg
MAKERS_PATTERN_edited.jpg
MAKERS_PATTERN_edited.jpg
MAKERS_PATTERN_white_edited_edited_edite
MAKERS_PATTERN_white_edited_edited_edite

What you can expect

  • Result-oriented company - we care about results, not hours. We support each other to reach goals.

  • Interesting job and projects - we work in emerging business and technologies, mostly for foreign customers in the USA and Europe.

  • Learn by experience - you will work with experienced players who love to move forward.

  • Remote-first job - work from wherever you want, our office is a social space, not a mandatory place to work.

  • Flexible time hours - no attendance system or anything similar, choose your time when you work and are productive. 

  • No limit to sick days or holidays - we believe in work-life balance, our people decide how much they work.

  • We like your growth - we care about people in the company, each person has his own growth plan, performance feedback twice per year with engineering level, and rate re-evaluation.

  • We love to learn - Coursera for free, certifications paid and our own internal workshops

  • Transparent environment - we believe in transparency and give our people the possibility to shape the company as their own.