Blog Archives
Home / Blog Archives


március 26, 2024

Network Security Engineer


Network Security Engineer

Job Overview:
The Perimeter Security Build Engineer will play a crucial role in developing and implementing perimeter security solutions for our organization. This role emphasizes the hands-on deployment, and configuration of security systems at the network's edge, focusing on protecting against external threats. The ideal candidate will possess a strong background in network security, with a particular emphasis on building and implementing robust security infrastructures.

Responsibilities:

  • Security Infrastructure Development:
    • Design, build, and deploy perimeter security solutions, including firewalls, intrusion detection systems (IDS), intrusion prevention systems (IPS), and VPNs.
    • Implement security measures that effectively safeguard the organization's network periphery.
    • Ensure new security solutions are seamlessly integrated into the existing network architecture
  • Network Routing and Configuration:
    • Understand and manage network routing protocols and configurations.
    • Ensure optimal network performance and security through effective routing strategies.
    • Troubleshoot routing issues and optimize network routes for security and efficiency.
  • Configuration and Implementation:
    • Configure security infrastructure for optimal protection and performance.
    • Collaborate with network architects and IT teams to ensure alignment of security measures with overall network strategy.
  • Documentation and Compliance:
    • Document build processes, configurations, and standard operating procedures.
    • Ensure compliance with relevant security policies and regulatory standards in all implementation tasks.
  • Collaboration and Communication:
    • Work closely with various internal teams and security vendors to enhance perimeter security
    • Effectively communicate project statuses, challenges, and achievements to stakeholders.

Qualifications:

  • Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or related field.
  • 2-4 years of experience in network security, with a focus on security infrastructure development and implementation.
  • Strong familiarity with security technologies, including but not limited to Checkpoint, Palo Alto Networks, and Cisco.
  • Knowledge of network protocols, routing, and firewall management.
  • Basic Understanding of automation scripting languages such as Python or PowerShell or Ansible is desirable.
  • Understanding of Cloud Security is an advantage.
  • Relevant certifications are highly desirable, including CompTIA Security+, CCNA, Check Point Certified Admin (CCSA), Palo Alto Networks Certified Network Security Administrator (PCNSA).

Skills:

  • Excellent technical skills with a strong focus on security infrastructure and problem-solving.
  • Ability to manage multiple projects and tasks simultaneously.
  • Strong communication and teamwork capabilities.
  • Detail-oriented approach with a commitment to high-quality outcomes.


február 29, 2024

Senior Python Developer


Within Company, the Global Infrastructure Defense Security Engineering Team is focusing on designing, developing, testing and architecting Company’s global network security solutions across the globe.

In this role you will be responsible to develop tools/toolsets to address strategic security engineering needs for the global enterprise. The main goal is to come up with tools that help the everyday life of security engineering and operation teams by automating and abstracting otherwise complex systems. The group you will be working for has the freedom of choosing the right asset for the task, also to build software from scratch and to build the operating stack for that software. Your development work will be supported by the Budapest laboratory, where your hands are not bound to experiment with your proposed solutions for a problem. Your teammates will have a social, result-oriented and helpful attitude.

As a Senior Python Developer you will
 

  • Develop Security Automation Frameworks, Tools and Security Management products for a global ecosystem
  • Abstract complex security APIs or ecosystems into consumable artifacts for systems integration
  • Work on the development of global telemetry gathering and data visualization efforts
  • Own and maintain the life cycle of the developed solutions (production hardware and software strategy, end of support, etc.) from an engineering perspective
  • Follow secure software development best practices and standards
  • Develop and maintain business relationship with key industry partners and vendors especially in the open source community
  • Provide visionary insight into global security automation capabilities, trends and values
  • Fully comply with all Companyand Engineering security policies, processes and best practices.
  • Engage with other Engineering teams, Architecture forums and Company businesses to develop products and toolsets that enhance security defense posture for the firm

Ideal background

  • 5+ years of Experience with secure software development
  • Strong knowledge of Python
  • Good understanding of TCP/IP technologies and network routing
  • Understanding of security paradigms
  • Strong understanding of Database Technologies especially time series databases
  • Data Visualization Principles
  • NodeJS / AngularJS technology – nice to have
  • Large Scale Engineered Systems experience
  • University / College degree in any STEM area or equivalent industry/technology knowledge
  • Ability to lead software development projects focusing on security abstraction and automation
  • Experience in managing multiple development efforts with clear focus on must win battles
  • Ability to represent Data in a visually appealing way is a big plus
  • Ability to turn slow un-optimized code into beautiful data highways for processing

Benefits

  • opportunity the internal security posture for a large financial and thus shaping the industry overall
  • exposure to a broad range of investment technology businesses and products
  • access to our word class testing lab with physical hands on using hundreds of devices in the IT security ecosystem
  • competitive compensation package
  • flexible work arrangements
  • access to Company’s huge training database and subscription to external online training
  • a socially active team and communities with diverse networking opportunities


február 29, 2024

Junior-Medior Python Developer


Within Company, the Global Infrastructure Defense Security Engineering Team is focusing on designing, developing, testing In this Python Developer role you will be responsible to develop tools/toolsets to address strategic security engineering As a Python Developer you will:
Develop Security Automation Frameworks, Tools and Security Management products for a global ecosystem.
Abstract complex security APIs or ecosystems into consumable artifacts for systems integration.
Work on global firewall and security abstraction, automation and network data path visualization
Own and maintain the life cycle of the developed solutions (production hardware and software strategy, end of support, Follow secure software development best practices and standards.
Engage with industry partner organizations on open source development
Provide visionary insight into global security automation capabilities, trends and values.
Fully comply with all Company and Engineering security policies, processes and best practices.
Engage with other Engineering teams, Architecture forums and Company businesses to develop products and toolsets that Ideal background:
3+ years of Experience with secure software development.
Strong knowledge of Python.
Good understanding of TCP/IP technologies and network routing.
Strong understanding of MongoDB.
Prometheus, Grafana knowledge desirable.
NodeJS / AngularJS technology – nice to have.
Large Scale Engineered Systems experience.
University / College degree or equivalent industry/technology knowledge.
Ability to lead software development projects focusing on security abstraction and automation.
Ability to represent Data in a visually appealing way is a big plus.
Fluent English.



február 29, 2024

Information Security Analyst


Job Purpose / Description:

This position will be responsible for assisting in the engineering of the application connectivity through Security Operations (SECOPS) managed firewalls, the creation and management of the documentation for the connectivity in the Company Connectivity Registry (CCR), representing the registered connectivity for approval on the Third Party Access Solutions Working Group (3PASWG) Weekly Call, and reviewing the Firewall Change Request for accuracy and compliance to support all third party connectivity.  They will ensure third parties are registered in CASP (Company Approved Service Providers) database and the requested applications are listed in the Company Systems Inventory (CSI) or Company Technology Catalog (CTC).  They will confirm network connectivity by accessing network equipment and confirm configurations and status.  They will work with client organizations, Helpdesk and other CT groups to ensure all firewall and ACL related troubles are corrected and documented in a timely manner.  They must possess the ability to document any new policies and/or procedures into the appropriate format.  They will work with other group members to ensure that the Process Control Management documentation and other documentations (drawings, databases, spreadsheets, etc.) are up to date and accurate.
 
Job Responsibilities:
 
As a member of External Connectivity Security Team (ECS) you will:

  • Process Firewall, Proxy, RAS requests and perform risk assessments to ensure that the connectivity is compliant with Company Information Security Standards and IS Policies.
  • Provide Information Security oversight and guidance to Company businesses requiring 3rd party connectivity as it relates to Company Information Security Standards and IS Policies.
  • Liaise with multiple technology teams (i.e. CATE Network Engineering; Proxy OPs and Integration; Perimeter Security Ops; System Based Computing; Remote Access Services and Business Information Security Officers); to facilitate cross functional solutions as it relates to 3rd party connectivity aligning with Company Information Security Standards.
  • Modality solutions include (but not limited to) RAS, B2B, Firewall; Proxy; and TPA solutions.
  • Test and pilot system enhancements/changes and/or other.
  • Complete all tasks – having connection with the organization’s activity but not detailed in the JDs – charged by the manager or superior.
  • Identify and develop new and improved technical procedures and process control manuals
  • Identify significant IS threats and vulnerabilities as it relates to connectivity requests.
  • Assume informal/formal mentorship role within teams and assist with the coaching and training of new team members
  • Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Company, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency.

 
Qualifications:

  • Firewall Administration 1 – 3 years
  • Network Administration 1 – 3 years
  • TCP/IP Protocols IPSec/GRE/GETVPN Project Management 1 – 3 years
  • Management of Technology Projects including Platform Migration Data Migration Network/Firewall Connectivity Windows/Unix/Linux 1 – 3 years
  • Administration Security Configuration Scripting Web Services and FTP Encryption 1 – 3 years
  • Encryption Algorithms Hardware Encryption (Encryptions/IPSec/GRE/GETVPN) Software Encryption (NDM/FTP/Application) VPN solutions
  • Routing Configuration Access Control Lists TCP/IP Protocols IPSec/GRE/GETVPN Preferred Skills

 
Key Responsibilities:

  • Collection of metadata, validation and registration of Firewall and Proxy rules related to migrations.
  • Validating legacy connectivity for ownership, registration, and usage
  • Providing support of Business requests for Changes and validation
  • Completing additional tasks in connection with the role but not detailed in the current job description, charged by the direct manager, supervisor, or the functional head.


február 21, 2024

Senior Java Developer


Senior Java Developer – Data Security Engineering

The Global Data Security Engineering Team is focusing on designing, developing, testing, and architecting Company’s global encryption, and crypto security solutions across the globe.
In this role you work together with the engineering team who is responsible to design and develop crypto solutions at the enterprise level, which will include working on PKI and Key Management architectures, defining crypto algorithms and solutions. In addition, the candidate will be engaged on researching and developing new security solutions to enhance the security posture, define new security solutions in cryptography and data security.
The candidate will be expected to architect integrated solutions based on functional and technical requirements and apply common Integration Architecture concepts and patterns to the solution in order to promote maintainability, reusability, scalability, performance, security and performance where needed. The candidate must be familiar with information security concepts and products. A sound knowledge of encryption algorithms and peripheral technologies is required. The group you will be working for has the freedom of choosing the right asset for the task, also to build software from scratch and to build the operating stack for that software. Your teammates will have a social, result-oriented, and helpful attitude.

As a Senior Java Developer, you will
 

  • Develop Security Automation Frameworks and Security Management products for a global ecosystem
  • Abstract complex security APIs or ecosystems into consumable artifacts for systems integration
  • Build enterprise-scale RESTful API based microservices
  • Work with other engineering and developer teams in various system integration projects
  • Work with business partners on crypto and HSM related requests
  • Work on the development of global telemetry gathering and data visualization efforts
  • Provide visionary insight into global security automation capabilities, trends, and values
  • Engage with other Engineering teams, Architecture forums and Company businesses to develop products and toolsets that enhance security defence posture for the firm

Ideal background

  • University / College degree in any STEM area or equivalent industry/technology knowledge
  • 5+ years of experience with secure software development in Java
  • 1-3 years of hands-on experience designing and developing microservices using Java, Spring
  • Strong knowledge at least one of the Java Microservices Framework (e.g., Spring)
  • 3 years of relevant experience with API concepts and technologies such as REST
  • Knowledge of data stores (SQL, NoSQL database, Message Queue, Key-value store)
  • Development experience of software life cycle and automation using CI/CD pipeline
  • Experience in managing multiple development efforts with clear focus on must win battles
  • Ability to represent Data in a visually appealing way is a big plus
  • Ability to turn slow un-optimized code into beautiful data highways for processing
  • Experience in cryptography, understanding of security paradigms, knowledge of authentication methods
  • Basic software development in Python or C# .Net is a plus

Benefits

  • opportunity to work on the internal security posture for a large financial and thus shaping the industry overall
  • exposure to a broad range of investment technology businesses and products
  • access to our word class testing lab with physical hands on using hundreds of devices in the IT security ecosystem
  • competitive compensation package
  • access to Company’s huge training database and subscription to external online training
  • a socially active team and communities with diverse networking opportunities
  • flexible work arrangements
  • Paid Parental Leave Program: At the Company, we aim to support families through all life stages, and do our best to help our colleagues manage work and family life, we provide additional support to our employees (maternity leave and paternity leave) on top of the local legal requirements.
  • We offer recognition of your efforts through our compensation package with added benefits:
    • Private Medical Care Program and onsite medical rooms in our buildings
    • Pension Plan Contribution to Voluntary Pension Fund
    • Group Life Insurance


november 9, 2023

Info Sec Tech Analyst


Job Description

  • Info Sec Tech Analyst is responsible for automating infrastructure activities, application onboarding and provisioning requests fulfillment in the Authentication Platforms space on the enterprise platform.
  • The job is heavy on collaboration with many partner support teams including vendor support, System administrators / architects on a regular basis and have the ability to track the issue to closure as Level 3 SME.
  • Candidate should be a fast-learner, able to do multitasking and has the ability to work under pressure.
  • Must have good work ethic and follow documented process. Understanding of implementation of appropriate controls in above products for the safety and security of the organization.
  • Should have very good attitude, agile personality and work as a good team player.

Key Responsibilities

  • Perform deployment of applications and configurations in web/application servers and test the automation use cases.
  • Provide basic support for applications on UNIX or LINUX environment like start/stop services.
  • Work in Python, shell or other scripting languages.
  • Support setting up monitoring dashboards on tools like AppDynamics.

Experience and Skills

Must-have Skills
2-5 years of relevant industry experience in two or more of the following:

  • Understanding of web servers and app servers required to support application deployments and basic tasks.
  • Strong ability to utilize Unix and Linux systems like Redhat Enterprise Linux 8.x/7.x/ 6.x.
  • Hands on in Python, shell or other scripting languages.

Desired Skills

  • Conversant in Linux-based environments (preferably RHEL) that includes being conversant in terminal commands and developing shell scripts.
  • Create automated playbooks using Ansible and/or Jenkins platform.
  • Familiarity with IT Service Management processes and tools such as a Service Now
  • Exposure to one or more of the following:
    • Appdynamics, sensu
    • Splunk processing language
    • Data Warehouse, ETL and Business Intelligence (BI)
    • BI products: PowerBI, Qlikview, Tableau, Cognos, Arcadia

Education

  • Bachelor's Degree.
  • Certifications such as ITIL, CISSP, AWS are desired, but not mandatory. However, willingness to complete certification would be expected.

 



november 9, 2023

MSS Specialist


Mobile Security Services specialist

Mobile and SaaS applications have become critical in providing access to our clients and we continue investing in these capabilities and our clients build dependency into their mobile devices. The cross-functional MSS team has the mission to collaborate with the businesses and IT globally to support these initiatives ensuring appropriate integration and controls.
In support of Global Identity and Access Management within Cyber Security Services, the Mobile Security Services specialist is responsible for managing High availability, complex, and fault tolerant Security services globally. The role requires interaction and collaborative efforts with highly skilled Engineers, strategic suppliers, program managers, and business contacts. MSS specialist helps our client to publish their mobile applications in the various marketplaces (ie: iTunes, Google Play, etc.) while adhering to security and compliance standards
 
Responsibilities:

  • Handle day-to-day operational onboarding of applications, support application issues, perform root cause analysis/resolution for application and system issues including but not limited to resolving defects and performing enhancements on the systems in collaboration with multiple teams in to meet safety and soundness requirements
  • Serve as an SME and responsible for managing and reviewing application integration requests, develop and adapt processes and assist technical teams during the on-boarding process end to end.
  • Maintain SLA and keeps themselves and his team to the highest standards.
  • Responsible for on-boarding, processing and publication of mobile applications into marketplaces (ie: iTunes, Google Play, etc.) end to end.
  • Maintain candor and gain customer trust while educating and enforcing process requirements and controls.
  • Collaborate with technical teams to understand business requirements and provide solutions by acting as a liaison between operations and engineering teams.
  • Proactively identify compliance gaps and support leadership in creating controls issues, understand internal controls and support automation and processes that meet operational and compliance standards
  • Ability to work independently to manage peer groups and management’s expectations
  • Stay abreast of new technology requirements and changes over time.
  • Ensure that frictionless rich customer experience is at the center of services provided while meeting highest security and compliance standards.

*** Occasional work outside of normal operating hours required depending on project needs.

Qualifications:

  • Critical thinking – Understand how operations work
  • Attention to detail as changes may surface so that business delivery can continue without abdicating control measures.
  • Experience in authentication domain with Security knowledge
  • Working knowledge of Shell script usage
  • Demonstrated ability to take ownership and follow up on issues to completion
  • Demonstrated ability to work in a team and to work well under pressure
  • Advanced analytical and problem-solving skills
  • Consistently demonstrates clear and concise written and verbal communication
  • Demonstrated ability to remain unbiased in a diverse working environmentt
  • Information security industry certification on any one of CISSP, CISA, and CISM, ITIL preferred

Nice to have
 

  • Experience with NoSQL and/or Microsoft SQL & Oracle RDBMS preferred
  • Knowledge of security on Cloud, AWS, GCP, Azure, Kubernetes, Chef, containers,
  • Automation related experience with CI/CD pipeline, Jenkins – a plus
  • Experience with using bigdata such as Splunk
  • Working knowledge of product and technologies like open SSH, open SSL, PGP, Encryption protocols and mobile security standards

Education:

  • Bachelor’s degree/University degree or equivalent experience
  • Master’s degree preferred


július 21, 2023

Information Security Analyst


Responsibilities:

    • Create new Cognos reports and maintain existing reports; be able to author complex reports with highly level of sophistication and formatting technical requirements writing.
    • Create and maintain a library of Information Security documents Design data sets suitable for Analytics and create intuitive Cognos Analytics dashboards.
    • Be part of operations in monthly report production: Produce monthly and periodic reports on designated Information Security (IS) programs and on any assigned topics. 
    • Work with the program owners, gather risk data from them, process the data as needed and produce reports and metrics. 
    • Maintain the reports as needed. 
    • Analyst needs to have a keen eye for the numbers, be able to self-QC their own reports and data, be able to present the data concisely. 
    • Perform QC on others' reports for both formatting and data issues. 
    • Be able to look at the source data and compare it with the pdf reports and spot discrepancies and other issues. 
    • Have hands-on experience in reporting 
    • Have a thorough understanding of SQL, databases, tables, and data design concepts 
    • Create, maintain, and improve the interactive analytics dashboards with appropriate data visualizations 
    • Presentation skills: The reports and data analysis artifacts must be presented to stakeholders in clear and easily understood format in Excel, PowerPoint, Word, or PDF documents. 
    • Work on CISO Metrics related projects: Work on assigned projects which generally involve the above areas.

Qualifications:

    • Undergraduate degree required; Master’s in data sciences preferred. 
    • Industry Info Security certifications are a plus. 
    • Proficiency in Cognos report authoring is a must. 
    • Strong understanding of Information Technology and Information Security is a huge plus. 
    • Minimum 5 years working in Information Security, preferably focused in the Financial Services industry. 3+ years of Reporting area experience is a must. 
    • Excellent communication, interpersonal, and presentation skills to senior management and business users 
    • Customer-oriented, resourceful, and enthusiastic. 
    • Focused on considering business enablement while reaching balanced information risk judgments. 
    • Analytical problem-solving skills Be able to present materials in a format that facilitates senior management decision making. 
    • Adept at multitasking and time management with the ability to remain calm under pressure and meet deadlines

Required technical skills:

    • Design and build reports and templates on Cognos platform 
    • Prior experience creating and maintaining documents 
    • Advanced concepts of PowerPoint-based reports in Cognos, automatic report generation, and distribution are desired skills to have 
    • Design and build interactive analytics dashboards on Cognos platform 
    • Be proficient in creating, modifying, and generating reports 
    • Must be able to produce precise and well-crafted reports, familiarity with SQL, and databases 
    • Should be able to work independently and in a team environment 
    • Be able to multi-task Be able to pay attention to details 
    • Be proficient in Microsoft Office products such as Excel, Access, PowerPoint, and Word 
    • Have a working understanding of databases, tables, and data design concepts 
    • Have good presentation skills and produce precise and well-crafted reports Be able to automate one's tasks for expediency Be able to construct queries and manipulate the data when necessary Data analysis & manipulation and data design skills are a must
© 2023 Manpower. All Rights Reserved.