Security Engineer

Company Description

It all started in 2007, with a pizza and a plan. Sana Commerce is an e-commerce platform designed to help manufacturers, distributors and wholesalers succeed by fostering lasting relationships with customers who depend on them. We’re a fast-growing SaaS company that allows you to take ownership of your career.

What you'll get:

• Personal development. We believe that as our company grows, our people should be able to grow with us. We value learning and development opportunities for all our employees. So, from learning on the job to training and coaching, it’s all there. Together with your manager, you are in charge of your own personal growth.
• Onboarding and buddy program. It’s always quite new and exciting to start your next adventure. We value a strong onboarding. You will be joining our general onboarding, will be introduced to a buddy, and will get a role-specific onboarding as well.
• Entrepreneurial environment. We are a fast-growing international scale-up organization in software. We encourage initiatives and ideas from our people. We like to accomplish things together as a team.
• Health and well-being. We believe that every employee should be at their best, that’s why we want to offer you private healthcare and a contribution to fitness subscription.
• Extra benefits: We offer flexible working hours, a hybrid working schedule, Friday afternoon drinks, Weekly lunch with your team, and monthly social activities.  

As a Security Engineer, you will play a pivotal role in fortifying our organisation's defences against cyber threats. Your responsibilities will encompass the following.

Job Description

• Architecting, designing, implementing, maintaining, and operating information system security controls and countermeasures to ensure robust security posture

• Conducting thorough risk assessments and analyzing trends, news, and changes in the threat landscape and compliance environment to advise organizational management.

• You will develop and execute plans for compliance and risk mitigation.

• Documenting security certifications and ensuring adherence to compliance policies.

• Leading a minimum of two internal audits and one external audit annually, addressing identified gaps within agreed-upon timelines

• Performing routine IT security checks on managed systems to detect and remediate vulnerabilities.

• Sourcing and implementing new security solutions to enhance organizational protection.

• Collaborating with vendors to implement security solutions effectively.

Qualifications

Basic requirements

• Degree in Cyber Security, IT or a related discipline like CEH/CHFI

• Industry certifications such as CISSP, CISM, or equivalent are advantageous.

• Basic understanding of security technologies including IDS/IPS/HIDS, AV, SIEM, vulnerability assessment, and malware protection.

• Familiarity with secure software development practices such as threat modeling, secure design principles, secure coding, code analysis, and security testing.

• Proficiency in security incident management, monitoring, response, and issue triage.

• Sound knowledge of industry trends and emerging threats.

• Strong organization and management skills.

• Two to three years experience in IT security operations.

• Proficiency in English, written and spoken. (B2 or higher).

Preferred requirements

• Experience in next-generation firewall technologies, with a preference for Palo Alto and pfSense Firewalls.

• Understanding Cloud networking and multi-cloud environments with networking and security posture, including public cloud and Hybrid Cloud topologies.

Joining our team as a Security Engineer, you will contribute to our mission of maintaining a secure environment while staying ahead of evolving cyber threats. We look forward to welcoming a dedicated professional who shares our commitment to safeguarding our organisation's assets and data.

Who we are:

So, what does it mean to be a part of the Sana Commerce team?

• Entrepreneurial. Sana Commerce exists today because a few people had a great idea and brought that idea to life.
• Result-driven. We also know that being result-driven is about more than just KPIs. It’s about creating value, tackling challenges head-on, and supporting our colleagues in reaching their goals.
• Customer-Centric. We’re in it for the long haul. Through good times and bad, we stick together because we believe in our product, our promise, and our people.
• Team spirit. At Sana Commerce, everyone is eager to help their colleagues and success is always a team effort.
• Learning mindset. Sana Commerce people are constantly looking to improve and challenge their existing knowledge base.