Sana Commerce — вакансии

Sana Commerce is an e-commerce platform designed to help manufacturers, distributors and wholesalers succeed by fostering lasting relationships with customers who depend on them. We’re a fast-growing SaaS company that allows you to take ownership of your career.

As a Security Engineer, you will play a pivotal role in fortifying our organisation's defences against cyber threats.

Your responsibilities will encompass the following:

• Architecting, designing, implementing, maintaining, and operating information system security controls and countermeasures to ensure robust security posture.
• Conducting thorough risk assessments and analyzing trends, news, and changes in the threat landscape and compliance environment to advise organizational management.
• You will develop and execute plans for compliance and risk mitigation.
• Documenting security certifications and ensuring adherence to compliance policies.
• Leading a minimum of two internal audits and one external audit annually, addressing identified gaps within agreed-upon timelines
• Performing routine IT security checks on managed systems to detect and remediate vulnerabilities.
• Sourcing and implementing new security solutions to enhance organizational protection.
• Collaborating with vendors to implement security solutions effectively.

Basic requirements:

• Degree in Cyber Security, IT or a related discipline like CEH/CHFI.
• Basic understanding of security technologies including IDS/IPS/HIDS, AV, SIEM, vulnerability assessment, and malware protection.
• Familiarity with secure software development practices such as threat modeling, secure design principles, secure coding, code analysis, and security testing.
• Proficiency in security incident management, monitoring, response, and issue triage.
• Sound knowledge of industry trends and emerging threats.
• Strong organization and management skills.
• Two to three years experience in IT security operations.
• Proficiency in English, written and spoken. (B2 or higher).

Preferred requirements:

• Experience in next-generation firewall technologies.
• Understanding Cloud networking and multi-cloud environments with networking and security posture, including public cloud and Hybrid Cloud topologies.

Joining our team as a Security Engineer, you will contribute to our mission of maintaining a secure environment while staying ahead of evolving cyber threats. We look forward to welcoming a dedicated professional who shares our commitment to safeguarding our organisation's assets and data.