Data Protection Engineer

Area: support and improve existing controls and IT security to protect critical IT resources and confidential corporate data; implementation of new processes and projects to improve the overall level of IT / information security of the Company; investigation of incidents of leakage of confidential information.

Functional description:

1. Supporting the existing Company Safety Infrastructure (SIEM, DLP, TRAPS, etc.) and improving it as needed.

2. Monitoring of information security systems of the Company.

3. Analysis of architectural solution on compliance with information security and SOX standards when implementing company systems. Participation in Company IS projects. 

4. Conduct presentations and support for general awareness of information security for internal users.

5. Participation in the investigation of incidents of information security.

6. Development of policies, procedures and instructions related to information security (IS) and IT security

7. Carrying out of separate assignments of his direct supervisor on other matters of activity on a post.

Requirements:

Education: Bachelor or Master diploma in IT/Information Security or any other IT related area

Experience: 3-5 years in IT/IS field

Language skills: English verbal/writing – fluent; technical reading/writing – fluent

PC Skills: Advanced PC user: MS Excel, Power point, Outlook, Project, Word, Jira

Special requirements:

• Confident knowledge of Ukrainian legislation in the information security field 

• Expert knowledge of information protection modern methods and means 

• Experience in conducting investigation of information security-related leaks 

• Expert knowledge and practical experience in DLP systems administration

• Experience in conducting audits of information system protection and providing recommendations on methods and means of its strengthening 

• Good knowledge and practical experience in administering Windows-based server infrastructure, VMWare virtualization tools

• Practical experience in investigating information security incidents

• Good knowledge in the cryptography field 

• Software knowledge: understanding of user, server and mobile OS security architecture (Win *, * NIX, iOS, MacOS, Android, etc.)

• Knowledge of information security and control (ArcSight / Elastic, PaloAlto Cortex, PAM, TrendMicro Apex One, Tenable, Nessus, etc.)