SUSE, the world’s largest independent open source software company, powers digital transformation with true open source technologies for the enterprise that simplify, modernize and accelerate traditional, cloud and edge solutions. SUSE collaborates with partners, communities and customers to deliver and support solutions that enable mission-critical business outcomes. SUSE’s container and cloud platforms, software-defined infrastructure, and artificial intelligence and edge computing solutions allow customers to create, deploy and manage workloads anywhere – on premises, hybrid and multi-cloud. For more information, visit www.suse.com.
Náplň práce
Prague, Czechia
Responsible for the analysis, design, testing and implementation of security measures at the SUSE endpoint systems (Windows, Linux, Mac OS) – with priority on the Microsoft OS, applications & their security.
This team member will work on designing the post-incident hardening measures, as well as participate on the continuous improvement when it comes to new systems and/or security products being evaluated and implemented on the SUSE endpoints.
Responsibilities:
Propose, test, and apply security policies & configurations to meet security objectives of the endpoint systems.
Perform cybersecurity testing of SUSE endpoint systems for the purpose of hardening recommendations.
Perform security reviews, identify gaps in security architecture, and develop proposals for future architecture decisions & changes.
Assess the effectiveness of security controls.
Implement security measures to resolve vulnerabilities, mitigate risks, and recommend security changes to system or system components as needed.
Provides cybersecurity recommendations to leadership based on significant threats and vulnerabilities.
Represents security during projects when endpoint systems in scope.
Požadujeme
Education and Experience Required:
Typically 4+ years of relevant experience.
Relevant University degree and/or recognized industry certifications are plus, but not required.
Knowledge and Skills:
Knowledge of computer networking concepts and protocols, and network security methodologies.
Knowledge of cybersecurity and privacy principles.
Knowledge of cyber threats and vulnerabilities.
Knowledge of installation, integration, and optimization of system components.
Knowledge of network access, identity, and access management (e.g., public key infrastructure, Oauth, OpenID, SAML, SPML).
Knowledge of operating systems, especially Windows.
Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).
Knowledge of systems security testing and evaluation methods.
Knowledge of countermeasure design for identified security risks.
Skill in developing and applying security system access controls.
Skill in evaluating the adequacy of security designs.
Skill in recognizing vulnerabilities in security systems. (e.g., vulnerability and compliance scanning).
Nabízíme
Kontaktní osoba
Jméno | Niki Kostova |
niki.kostova@suse.com | |
Telefon |