Ľutujeme, spoločnosť ponúkajúca danú pracovnú pozíciu ukončila zverejnenie ponuky na stránke.
Ďakujeme za porozumenie.
Zobraziť podobné ponuky
Ďakujeme za porozumenie.
Zobraziť podobné ponuky
Information Security Analyst
Multitude IT Labs (as part of Multitude Group)
- Place of work: Pradiareň 1900, Svätoplukova, Ružinov, Slovakia, Bratislava (Job with occasional home office)
- Basic wage component (gross) and other rewards: 2 000 EUR/monthThe minimum salary is 2000 EUR gross monthly but will be higher if you are a senior candidate. Our final offer to you will be set up fairly, considering your skills and experience.
- Start date: By agreement
- Contract type: full-time
Job description, responsibilities and duties
We are hiring an Information Security Analyst to work in our Information Security squad to strengthen the organisation’s second line and security risk posture. You will monitor our systems and networks for security events, vulnerabilities and incidents through various systems (e.g. SIEM), services and tools (e.g. vulnerability scanning and penetration testing). In addition, you will be carrying out risk assessments of internal systems, networks, assessing security risks in third party service provision as well as assessing the physical security of the Multitude Group.
To do well in this role, you should be detail-oriented and able to juggle multiple issues efficiently and effectively. You should be able to think outside the box to analyse security issues and possess a sound information security background. Previous experience in a similar role in a financial services institution is an asset.
The Information Security Analyst will be:
- Analysing and responding to security threats from various security platforms and technologies.
- Responsible for conducting research and evaluating technical and all-source cyber intelligence to develop in-depth assessments of threats to the organisation’s networks, systems, users, and data.
- Serving as liaison and point of contact for new issues and vetting
- Creating technical assessments and cyber threat profiles of current events based on inventive collection and research to enable advanced threat intelligence
- Developing and maintaining analytical procedures to meet changing requirements and enable more strategic detections
- Staying abreast of innovative business and technology trends in IT security, risk, and controls
- Advising leadership on technology initiatives that support latest trends in IT security, risk and controls
- Ensuring effective execution of the risk management framework by managing relationships with key stakeholders within strategic business groups and technology
- Verifying that information security risks are appropriately mitigated and leads multiple stakeholders in agreement on appropriate solutions/controls
- Responsible for identifying applicable regulatory risks from changes or additions to regulatory guidance and requirements
- Providing expertise for resolution and risk mitigation.
- Championing information security with tribes, squads and chapters in the organisation to provide security training, increase security awareness and/or discuss potential security issues and scenarios.
- Developing, tracking, and reporting on Key Risk Indicators (KRIs) for information security
- Monitoring, tracking, and reporting mitigation and resolution of information security risks
- Performing process-level walkthroughs, control testing, etc. for the identification and assessment of IT risks and controls
- Effectively communicating key risks, findings, and recommendations for improvement with key stakeholders.
- Performing any other duties that may be assigned from time to time.
To do well in this role, you should be detail-oriented and able to juggle multiple issues efficiently and effectively. You should be able to think outside the box to analyse security issues and possess a sound information security background. Previous experience in a similar role in a financial services institution is an asset.
The Information Security Analyst will be:
- Analysing and responding to security threats from various security platforms and technologies.
- Responsible for conducting research and evaluating technical and all-source cyber intelligence to develop in-depth assessments of threats to the organisation’s networks, systems, users, and data.
- Serving as liaison and point of contact for new issues and vetting
- Creating technical assessments and cyber threat profiles of current events based on inventive collection and research to enable advanced threat intelligence
- Developing and maintaining analytical procedures to meet changing requirements and enable more strategic detections
- Staying abreast of innovative business and technology trends in IT security, risk, and controls
- Advising leadership on technology initiatives that support latest trends in IT security, risk and controls
- Ensuring effective execution of the risk management framework by managing relationships with key stakeholders within strategic business groups and technology
- Verifying that information security risks are appropriately mitigated and leads multiple stakeholders in agreement on appropriate solutions/controls
- Responsible for identifying applicable regulatory risks from changes or additions to regulatory guidance and requirements
- Providing expertise for resolution and risk mitigation.
- Championing information security with tribes, squads and chapters in the organisation to provide security training, increase security awareness and/or discuss potential security issues and scenarios.
- Developing, tracking, and reporting on Key Risk Indicators (KRIs) for information security
- Monitoring, tracking, and reporting mitigation and resolution of information security risks
- Performing process-level walkthroughs, control testing, etc. for the identification and assessment of IT risks and controls
- Effectively communicating key risks, findings, and recommendations for improvement with key stakeholders.
- Performing any other duties that may be assigned from time to time.
Employee perks, benefits
• Job opportunity in a fast-growing, international fintech company with a lot of new ideas
• Great working environment supporting technological innovation
• Access to LinkedIn learning with over 8000 courses
• Possibility to work from home and the office
• 4 sick days a year
• Gym in the office and additional sporting options via MultiSport card
• Healthy snacks and fresh fruits in the office as well as other office entertainment
• Your assigned business laptop available for your free personal use, after the 5th year equipment renewal policy
• Share purchase matching program up to 10% of annual gross salary, currently offered bi-annually with matching 1:1 with a vesting period of 2 years from purchase
• Opportunities for growth, the realization of own ideas and further training
We support trainings, certifications and development internally and externally with individual approach based on your needs and requests.
• Great working environment supporting technological innovation
• Access to LinkedIn learning with over 8000 courses
• Possibility to work from home and the office
• 4 sick days a year
• Gym in the office and additional sporting options via MultiSport card
• Healthy snacks and fresh fruits in the office as well as other office entertainment
• Your assigned business laptop available for your free personal use, after the 5th year equipment renewal policy
• Share purchase matching program up to 10% of annual gross salary, currently offered bi-annually with matching 1:1 with a vesting period of 2 years from purchase
• Opportunities for growth, the realization of own ideas and further training
We support trainings, certifications and development internally and externally with individual approach based on your needs and requests.
Requirements for the employee
Candidates with education suit the position
Follow-up/Higher Professional Education
University education (Bachelor's degree)
University education (Master's degree)
Postgraduate (Doctorate)
University education (Bachelor's degree)
University education (Master's degree)
Postgraduate (Doctorate)
Educational Specialization
IT
Language skills
English - Advanced (C1)
Personality requirements and skills
- A minimum of bachelor’s degree in Computer Science, Cyber Security, Information Technology, or a similar technical degree
- Minimum 4 years of generic IT professional experience, of which minimum 2 years of relevant professional experience in Information Security Management.
- Practical expertise with EDR, SIEM and SOAR
- Experience with Linux, Windows and Network Operating Systems required.
- Familiarity with Microservice architecture, event sourcing, distributed systems and asynchronous communication is considered an asset.
- Basic knowledge of Kafka, Docker, Kibana, New Relic, Mongo, Elasticsearch, Oauth2, Kubernetes, terraform is considered an asset.
- Good programming and scripting skills (Python, Bash, PowerShell).
- One or more of the following qualifications is desirable (CISSP, CISM, CISA, CRISC, ITIL V3, ISO27001 Lead Auditor).
- Be fluent in English and have strong oral and written communication skills to work effectively with employees at all levels of the organisation.
- Being comfortable driving conversations with teams with varied backgrounds and purpose, such as conversing with Risk Business Tribes and Squads, Technology Squads, Vendors and Senior Management. It is also important that you are receptive to guidance from your Chapter/Squad Lead and able to effectively communicate results to the Squad Lead.
- You must be highly organised with ability to prioritise and multi-task, as well as able to thrive in a fast-paced environment
- Excellent problem-solving skills and the ability to be highly productive, both working alone and as part of a team.
- Minimum 4 years of generic IT professional experience, of which minimum 2 years of relevant professional experience in Information Security Management.
- Practical expertise with EDR, SIEM and SOAR
- Experience with Linux, Windows and Network Operating Systems required.
- Familiarity with Microservice architecture, event sourcing, distributed systems and asynchronous communication is considered an asset.
- Basic knowledge of Kafka, Docker, Kibana, New Relic, Mongo, Elasticsearch, Oauth2, Kubernetes, terraform is considered an asset.
- Good programming and scripting skills (Python, Bash, PowerShell).
- One or more of the following qualifications is desirable (CISSP, CISM, CISA, CRISC, ITIL V3, ISO27001 Lead Auditor).
- Be fluent in English and have strong oral and written communication skills to work effectively with employees at all levels of the organisation.
- Being comfortable driving conversations with teams with varied backgrounds and purpose, such as conversing with Risk Business Tribes and Squads, Technology Squads, Vendors and Senior Management. It is also important that you are receptive to guidance from your Chapter/Squad Lead and able to effectively communicate results to the Squad Lead.
- You must be highly organised with ability to prioritise and multi-task, as well as able to thrive in a fast-paced environment
- Excellent problem-solving skills and the ability to be highly productive, both working alone and as part of a team.
Advertiser
Brief description of the company
Multitude is a fully regulated growth platform for financial technology. Its ambition is to become the most valued financial ecosystem. This vision is backed by +15 years of solid track record in building and scaling financial technology. Through its full European banking license, and profound know-how in technology, regulation, cross-selling, and funding, Multitude enables a range of sustainable banking and financial services to grow and scale.
Currently, it has three independent business units on this growth platform: Ferratum as a consumer lender, CapitalBox as a business lender, and SweepBank as a shopping and financing app. Multitude and its independent units employ over 700 people in 19 countries, and they together generated EUR 230 million turnover in 2020. Multitude was founded in 2005 in Finland and is listed in the Prime Standard segment of the Frankfurt Stock Exchange under the symbol ‘FRU.
Our employees can choose where and when they work by taking full advantage of our hybrid-work environment. Whether you’re mostly in the office, working remotely or a mix of the two, you’ll be empowered to do whatever brings out your best. We understand that happy people make happy employees!
Currently, it has three independent business units on this growth platform: Ferratum as a consumer lender, CapitalBox as a business lender, and SweepBank as a shopping and financing app. Multitude and its independent units employ over 700 people in 19 countries, and they together generated EUR 230 million turnover in 2020. Multitude was founded in 2005 in Finland and is listed in the Prime Standard segment of the Frankfurt Stock Exchange under the symbol ‘FRU.
Our employees can choose where and when they work by taking full advantage of our hybrid-work environment. Whether you’re mostly in the office, working remotely or a mix of the two, you’ll be empowered to do whatever brings out your best. We understand that happy people make happy employees!
Number of employees
500-999 employees