Security Engineer – Kazakhstan
We are looking for a Security Engineer in the Infra Security team.
Infra Security provides the following services: Ensuring infrastructure security across on-prem and cloud environments, Designing and implementing cloud security controls, Protecting internal networks and production environments, Securing employee workstations and endpoint devices, Managing access control and privileged access, Monitoring and responding to security incidents, Hardening systems and improving security baselines, Participating in risk assessments and remediation initiatives.
Infra Security provides the following services: Ensuring infrastructure security across on-prem and cloud environments, Designing and implementing cloud security controls, Protecting internal networks and production environments, Securing employee workstations and endpoint devices, Managing access control and privileged access, Monitoring and responding to security incidents, Hardening systems and improving security baselines, Participating in risk assessments and remediation initiatives.
- Design, maintain, and optimize our endpoint security stack solutions
- Develop and enforce OS hardening standards to minimize the attack surface of corporate endpoints
- Test, assess, and deploy new security products and technologies specifically designed for employee workstations
- Configure advanced workstation logging and telemetry
- Proactively identify, assess, and resolve vulnerabilities and misconfigurations on workstations
- Respond to workstation-level security incidents
- Maintain and develop high-quality documentation
- Proven track record of managing and securing Windows/MacOS endpoints in enterprise environments at scale
- Proven experience administering cloud-based AV/EDR solutions
- Ability to use scripting languages PowerShell/Python/Bash to automate repetitive security tasks and deployments
- Expertise in managing system configurations via MDM solutions or other configuration management tools
- Understanding of log collection mechanisms with experience using tools and techniques to gather and analyze logs across various operating systems (Windows, macOS)
- Knowledge of operating system hardening best practices
- English level (B1+)
- Experience securing Linux workstations
- Experience working with one of the popular SIEM solutions (Splunk, ArcSight ESM, IBM QRadar, Elastic Security, etc.)
- Professional certificates in practical information security in offensive and defensive areas
- Experience with CTFs
- Stable salary, official employment
- Health insurance
- Hybrid work mode and flexile schedule
- Relocation package offered for candidates from other regions
- Access to professional counseling services including psychological, financial, and legal support
- Discount club membership
- Diverse internal training programs
- Partially or fully payed additional training courses
- All necessary work equipment
