Security Engineer
Kraków
How would you feel about taking an active part securing a global leader in online multi-asset trading services, currency data, corporate payments and FX services?
OANDA is looking for a versatile Security Engineer to help improve their overall security by joining the growing Security Team.
This is a hands-on position: responding directly to the CISO, you’ll have the opportunity to suggest, evaluate, take ownership, implement, configure and maintain numerous security solutions; investigate security incidents, perform application security review, security assessments and other activities that can help improve OANDA’s security posture.
Do you know any other way to make our environment more secure? At OANDA you'll have the opportunity to put it in practice.
Who we are
OANDA Corporation is an innovator in computer engineering and financial modeling that provides online trading and currency information services to everyone, from individuals to large corporations; portfolio managers to financial institutions. We are a market maker and a trusted source for currency data with one of the world's largest historical, high frequency, filtered currency databases. We continue to experience tremendous growth since our start in 1996, providing unprecedented opportunities for our employees to redefine the online trading market with new products we create.
In this position you will:
- Help define Security processes and standards
- Perform Security Assessments
- Drive the Vulnerability Management process
- Manage Endpoint Protection
- Respond to security incidents and perform investigations
- Spread Security Awareness across the company
Additionally, you may also be required to:
- Find opportunities for automating security
- Assist in audit and compliance activities
- Participate in evaluation, implementation, configuration, improvement and troubleshooting of security tools/processes
- Perform internal pen-tests
- Drive the Vulnerability Disclosure Program
You fit this position if you have:
- Excellent communication (English)
- Deep knowledge in at least two Operating Systems (Windows, Linux and macOS)
- Excellent understanding of network, web, authentication, cryptography and security protocols. Including tools used to perform their analysis
- Exposure to scripting languages (Bash, Python, PowerShell)
- Good knowledge in general security principles and best practices; and how to leverage them in a global, financial and regulated environment
We also appreciate it if you have:
- Experience in improving security of software development process
- Working experience with compliance standards and frameworks such as CIS, NIST, PCI-DSS, GDPR, SOC2 and ISO27001
- Certifications with emphasis on Information Security such as CIPP, CISSP, CompTIA Security+ and CRISC
OANDA Global Corporation is a diverse and global team with offices around the world. We value the unique skills and experiences each individual brings and we are committed to creating and sustaining a relaxed work environment in which all individuals are treated with dignity and respect, and reflects the diversity of the community in which we operate.
We provide an inclusive and accessible environment for everyone. Candidates selected for an interview will be contacted directly. If you require accommodation during the recruitment and selection process, please let us know. We will work with you to provide as seamless a recruitment experience as possible.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security Bash CIPP CISSP Compliance CompTIA CRISC Cryptography GDPR ISO 27001 Linux MacOS NIST PowerShell Python Scripting Security assessment SOC 2 Vulnerability management Windows
Perks/benefits: Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs