Security Engineer (Cybersecurity&Infrastructure, Security Team)

We’re always looking for the ones truly passionate about their work. If you are amongst them, you can rest assured there is a place for you in eMAG. We’ve grown very fast and we are determined to keep doing so. What brought us here is our desire for continuous evolution and practical results.

 

More than 6000 colleagues are part of eMAG Teams. We strongly believe in people development and therefore every year we invest more and more energy and resources to remain an organization that is constantly learning. We want to make sure that you’ll have the most talented colleagues, as well as the proper environment to grow and achieve great results, to become what you desire on a personal and professional level. Join us, grow faster!

 

Security Engineer (Cybersecurity&Infrastructure, Security Team)

 

eMAG’s Cyber Security team has the mission of protecting eMAG`s data and IT assets by employing a range of technologies and processes to prevent, detect, and manage cyber threats. In order to sustain that evolving landscape, new capabilities need to be introduced or created.

 

In this role, you will be involved in the development and implementation of processes and guidelines concerning the information security policy of the entire organization.

 

If you understand the ever-growing number of security threats, you have the right knowledge and tools to lock them out of the ecosystem, then you can join our team and find the perfect spot to prove it.

 

What you’ll have to do:

 

·       Monitor critical infrastructure and information security threats on an ongoing basis

·       Perform incident management activities

·       Perform vulnerability testing, risk analyses, and security assessments

·       Triage security alerts, incidents, and disasters

·       Install and maintain internal security tools

·       Assist engineers in solution designs in relation to various aspects of information security technologies, processes, and requirements

·       Develop and maintain internal security policies and procedures

·       Conduct monitoring, operations, and control tasks regarding Security Operations Center (SOC) activities

·       Research, plan and design robust security architectures for various IT infrastructures based on internationally recognized standards and best security practices

·       Provide Cyber Security guidance and assistance to technical experts within other operational teams

·       Contributes to security best practices, ISO or NIST compliance, and new security standards

·       Follow up on implementation of corrective actions from assessments and incidents

·       Acts as a key member of information security incident response ad hoc teams 

·       Develop and assist in security trainings and awareness activities

·       Research technological advancements and evaluate the complex architecture of a rapidly growing infrastructure to detect potential pitfalls, recommend and implement mitigation whenever possible.

·       Perform and participate in various security projects

·       Keep technical knowledge current through continuing learning

 

How we’d like you to be:  

 

·       Proven track record of security activities, like investigations, forensics, and incident response

·       Have solid understanding of computer networks (TCP/IP protocols) 

·       Have basic understanding of web application standards and security best practices, such as OWASP Top 10 

·       Have experience in security engineering, computer and network security, authentication and security protocols 

·       Have experience with SIEM systems (onboarding data, alert creation, alert monitoring) 

·       Have experience with DLP best practices 

·       Have experience with IDS / IPS  

·       Have experience with vulnerability management 

·       Have experience in detection platforms, endpoint data, and network equipment, in generating incident timeline, in gathering evidence from affected systems

·       Have hands-on experience with at least one scripting and /or programming language 

·       Have basic experience with offensive security tools 

 

 

What we’ve prepared for you:

 

·       Medical subscription: Medicover, MedLife or Regina Maria.

·       A flexible budget that you can invest in yourself as you wish: meal tickets, holiday tickets, cultural vouchers, private pension, foreign language classes, eMAG, Fashion Days, Tazz, Therme & Genius, membership to different gyms or even professional development classes.

·       Different discounts from our partners: banking, mobile, dental medicine or wellness.

·       Access to the Bookster library and free credits on the Atlas psycho-emotional health platform.

·       An accelerated learning environment, with access to over 100.000 curated online resources and platforms, learning academies and development programs.  

·       A friendly office. We redesigned our headquarter office to suit our hybrid work model: we doubled the number of meeting rooms and we equipped them with state-of-the-art technology.

 

Curious to find out more about the next step in your career? Apply now and if your experience is relevant for the role you wish, we will give you a call for more details!