Lead Security & Network Engineer

With multiple awards to our name, Larian Studios has proven that we’re dedicated to delivering high-quality role-playing games. As we move on to new projects, the studio that brought you Baldur’s Gate 3 & Divinity: Original Sin 2 is looking for a Lead Security & Network Engineer to lead the efforts on company's security strategy and to ensure secure infrastructure.

Responsibilities

• Manage a team of 5 security/network engineers
• Identifying, assessing, and mitigating vulnerabilities in infrastructure components and applications 
• Deploy and use security tools to identify and resolve issues across a wide range of systems and applications
• Run security monitoring, vulnerability assessments and forensic log analysis to proactively detect security incidents and threats
• Enforce network security policies and proceduresInstall and maintain network equipment(switches, routers, firewalls)
• Implement and manage network security components such as next generation firewalls, intrusion detection and prevention (IDS/IPS) systems
• Maintain documentation regarding network hardware and software
• Assist in technical design and implementation. 
• Perform technical security audits
• Develop best practices and ensure documentation is up to date
• Design and implement security baselines for operating system
• Educate and train staff on information system security best practices
• Investigate and utilise new technologies, tools and techniques to enhance security capabilities and performance
• Work closely with IT management team on the company’s information security strategy
• Participate in change management workflow
• Responsible for ensuring incident handling procedures and security incident reporting

Requirements

• Experience managing a team of 5+ people
• Minimum 5 years’ relevant experience working in a challenging IT environment
• Expert knowledge of network design, systems, protocolsExperience in WAN/LAN technologies (ethernet/fiber/MPLS)
• Experience working in datacenter environments
• Background in design, configuration and troubleshooting of routing protocols OSPF, BGP, OSPF, EIGRP, VRF
• Experience with enterprise network switching, routers and firewalls
• Experience with Cisco equipment
• Experience with Palo Alto hardware/softwareKnowledge of multiple security domains
• Experience with vulnerability assessments and penetration testing
• Proven ability to implement proper system security controls, metrics and performance indicators for IT systems and service security
• Knowledge of security frameworks and industry best practices
• Excellent communication skills in English

Nice to have

• Responsibility for security across multi site locations
• AWS experience
• Experience with automation platforms such as Terraform & Ansible
• Experience with scripting for automations