Data Scientist / ML Ops Scientist

Project description

Join our Development Centre in Bucharest and become a member of our open-minded, progressive and professional team. In this role you will be working for one of our world-famous clients. The Chief Security Office (CSO) of our client comprises the Chief Information Security Office (CISO) and the Corporate Security unit. The CISO organization guarantees information security for our client. This role's purpose is to design, build, and maintain scalable automation platforms that deliver end to end Cyber Hygiene outcomes across SCM, Vulnerability Management, Logging/SWAT, and Governance, enabling continuous risk reduction, regulatory compliance, and proactive remediation. On top of attractive salary and benefits package, Luxoft will invest into your professional training, and allow you to grow your professional career.

Responsibilities

• *Will build and maintain the advanced AI/ML models that drive intelligent drift analysis, root cause prediction, and risk-based prioritization within SCM *Ensure the AI capabilities are continuously refined and deployed effectively *Experience with groups and parsing large chunks of data, have practical application of developing work building the LLM and MCP server *Database and data model experience *Architecture and Automation Engineering
• Design automation services across the Cyber Hygiene Automation Architecture, covering: o Asset discovery and inventory normalization o Configuration and vulnerability scanning pipelines o Data aggregation, enrichment, and correlation layers
• Implement pre activation and post activation scanning workflows for: o Core Builds o Applications o Infrastructure platforms *SCM Automation
• Automate: o Core Build activation configuration scans o Pre activation application configuration scanning o CIS benchmark mapping to DB relevant technologies
• Engineer logic for: o Configuration baseline profiling o Config drift detection, trend analysis, and drift prediction o Mapping regulatory key settings (TRC, SOX) to config baselines
• Integrate threat priority intelligence into configuration risk scoring. *Vulnerability Management Automation
• Build automated pipelines for: o Core Build vulnerability assessments o Pre activation application vulnerability scans
• Implement: o Patch remediation drift prediction o Patch cluster analysis and prioritization o Dynamic remediation owner assignment (App vs Infrastructure)
• Automate detection of remediation bottlenecks. *Data Engineering and Analytics
• Build scalable data pipelines enabling: o Root cause analysis (config & vuln) o Cross domain correlation (SCM ↔ VM ↔ Syslog)
• Support predictive analytics use cases (drift, failure likelihood). *Integration and Controls
• Integrate with: o Scanning tools (config, vuln, logging) o Identity and privilege detection services o Notification and workflow engines
• Ensure secure by design, auditable automation aligned to DB standards.

SKILLS

Must have

• Strong experience building enterprise automation platforms
• Proficiency in: o Python, Java, or similar backend languages o API driven architectures o Event driven or workflow orchestration
• Experience with: o Configuration management & vulnerability management concepts o Data pipelines and analytics platforms o Regulatory or audit driven environments

Nice to have

• Experience in a multinational company