Senior Information Security Engineer

Krakow, Poland

Full Time Senior-level / Expert EUR 55K - 102K *

Ocado Group

View all jobs at Ocado Group

Apply now Apply later

Posted 3 hours ago

As a Information Security Engineer, you’ll be part of the InfoSec team in a highly dynamic and innovative environment committed to enhancing businesses' security posture and improving their infrastructure's security on cloud platforms. How you contribute to this goal will be determined by your skills and interests, whether this could be writing code for systems to improve it, helping automate infrastructure scanning, defining security architecture for infrastructure-as-code provisioning processes or you might be doing something else entirely! Whatever you do, you’ll do it as part of a highly motivated and passionate team with broad experiences that are happy to mentor and be mentored.

Roles & Responsibilities:

Manage and secure on-premises infrastructure, ensuring it adheres to best practices in information security.
Lead vulnerability management efforts, including identifying, assessing, and remediating security vulnerabilities.
Apply in-depth Linux expertise for system hardening, secure configurations, and troubleshooting.
Deploy, manage, and fine-tune Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS).
Monitor and secure networks, leveraging a deep understanding of network protocols (TCP/IP, DNS, HTTP/HTTPS) and network security tools.
Develop and maintain automation scripts and tools, preferably Python, to streamline security processes.
Contribute to security monitoring of cloud environments, with hands-on experience in AWS or GCP.
Assess and address common security vulnerabilities, understanding their impact and mitigation strategies.
Collaborate with cross-functional teams to improve overall infrastructure security.
Stay updated with the latest in the security community, including tools, vulnerabilities, and emerging threats.
Write clear and comprehensive documentation, reports, and recommendations.

Knowledge, Skills and Experience:

Essential

Extensive Linux knowledge: Proven ability to manage, secure, and troubleshoot Linux systems.
On-prem infrastructure expertise: Familiarity with managing physical and virtualised infrastructure.
Network protocols: In-depth knowledge of L3-L7 protocols, network design and troubleshooting.
IDS/IPS experience: Hands-on knowledge of deploying and managing intrusion detection/prevention systems.
Vulnerability management: Strong understanding of vulnerability assessment tools and frameworks.
Python scripting: Proficiency in Python for automating tasks and processes.
Network security: Familiarity with firewalls, WAFs, and SSL/TLS configuration.
Security expertise: Understanding of security vulnerabilities, CVE assessments, and remediation techniques.

Desirable

Experience with security monitoring tools (e.g., SIEMs).
Cloud platforms: Practical experience with AWS and/or GCP security services.
Knowledge of container security (e.g., Docker, Kubernetes).
CISSP, CEH, AWS Security Specialty, and similar certifications are a plus.
Familiarity with Kanban methodology

Key Attributes

- Technical Excellence: Demonstrates intellectual rigor and learns new tools quickly.
- Problem Solving: Skilled at addressing complex issues and contributing to continuous improvement.
- Adaptability: Flexible and focused under pressure, able to adapt to changing priorities.
- Communication: Strong written and verbal communication skills with the ability to influence and collaborate effectively.
- Proactive Mindset: Takes ownership and accountability for tasks, driving them to completion.
- Teamwork: Works collaboratively, contributing towards shared objectives across teams.

What we offer you:

Our employee benefits are designed for you, we care about people and we’ve ensured we have a wealth of benefits that focus on your well-being. We regularly review our benefits to ensure we are supporting our employees appropriately. Currently, we offer technically stretching work, a competitive salary and;