To successfully work on projects, you need:

• Extensive experience with automation and CI/CD tools (e.g., Jenkins, GitHub Actions, GitLab CI/CD, Azure DevOps)
• Strong proficiency in security analysis tools: SonarQube, Checkmarx, Snyk, Veracode, and others (SAST, DAST, SCA)
• In-depth knowledge of cloud security principles and best practices across major providers (AWS, Azure, GCP)
• Hands-on experience managing security infrastructure tools such as WAFs (Web Application Firewalls), IDS/IPS (Intrusion Detection/Prevention Systems), and SIEM (Security Information and Event Management) solutions
• Proven track record working with Infrastructure as Code (IaC) tools (e.g., Terraform, AWS CloudFormation)
• Ability to leverage monitoring and logging solutions (Splunk, ELK Stack, Datadog, etc.) for effective threat detection and analysis
• Solid understanding of security standards and frameworks (NIST, ISO 27001, CIS Controls, PCI DSS, HIPAA)
• Practical experience with containerization technologies (Docker, Kubernetes) and securing their deployment lifecycle
• Familiarity with scripting and programming languages (e.g., Python, Bash, PowerShell) to automate security processes and tasks
• Exceptional communication skills for effective collaboration and interaction with diverse technical and non-technical teams
• English at Upper-Intermediate level

Will be a plus:

• Experience working within a Security Operations Center (SOC) environment.
• Possession of relevant security and cloud provider certifications (e.g., CISSP, CISM, AWS/Azure Security certifications)
• Proficiency in conducting penetration testing using tools like Kali Linux, Metasploit, and Burp Suite
• Background working with Zero Trust architectures and Identity and Access Management (IAM) systems
• Familiarity with modern AI tools and practical experience applying them to security operations