Vulnerability Analyst- София

Описание

Paysafe Limited (“Paysafe”) (NYSE:PSFE) (PSFE.WS) is a leading specialized payments platform. Its core purpose is to enable businesses and consumers to connect and transact seamlessly through industry-leading capabilities in payment processing, digital wallet, and online cash solutions.

Paysafe’s Cyber Threat Management team is looking for a highly motivated team player to join as a Vulnerability Analyst. This role is fundamental to the protection of Paysafe’s environment, as you will be responsible for assessing Paysafe’s exposure to vulnerability exploitation activity, as well as working with the appropriate teams to ensure the business is protected against computer network intrusion activity.

You will be part of the Cyber Threat Management team, which seeks to proactively identify, detect, and prevent cyber threat activity by collating data on active campaigns and producing actionable outcomes in the form of vulnerability remediation, detection rules, proactive threat hunts and the development of processes and controls. In this role you will work with multiple cyber security disciplines and other departments within IT, to ensure that we are protected against the latest threats and vulnerabilities.

This is a great opportunity to be part of a growing team involved in proactive research and response to real life cyber threat activity.

What will you be doing?
Identifying and responding to high-risk or critical vulnerabilities present on our environment by monitoring our security tooling, including vulnerability scanners and threat intelligence providers. Performing daily triage activities to ensure we are on top of the latest threat activity.
Responding to inbound alerts from multiple sources relating to new vulnerabilities and new exploitation activity, to ensure we are responding appropriately.
Regularly prioritising the remediation of vulnerabilities using an understanding of attacker techniques, asset exposure and criticality, as well as threat intelligence relating to exploitation, so that we are taking a threat-led approach for our vulnerability remediation.
Working with Information Security Compliance teams to ensure we are addressing vulnerabilities in our PCI environments following scanning and penetration testing activities.
Tracking and reporting on the remediation of vulnerabilities, as well as following up with IT teams to ensure appropriate remediation has taken place.
Producing thematic reporting on Paysafe’s defensive posture against sets of widely exploited vulnerabilities, issued by government agencies and cyber security vendors.
Working with internal teams to improve process efficiencies through the development of automation. This includes working with Cyber Security Engineering to ensure appropriate configuration of vulnerability scanning tools.
Driving initiatives to improve processes and documentation for the Vulnerability Management team; ensuring that our vulnerability management policies are up to date and reflect current roles and responsibilities, documenting processes and flagging issues.
Supporting the Threat Intelligence team with the publication of tactical, operational, and strategic reporting for internal stakeholders, addressing topics concerning vulnerability exploitation.

Who is our ideal candidate?
Our ideal candidate would be highly organized and able to keep on top of a rapidly changing threat landscape. We need someone who is comfortable to have technical conversations with members of IT, as well as respond to senior management queries clearly and concisely. There are some areas we would consider highly beneficial to be successful in the role:

Experience working in network defence, ideally in one of the following areas (or similar): Vulnerability Management, SOC, Penetration Testing, Cyber Threat Analysis.
Hands-on experience using vulnerability scanning solutions and understanding how to interpret the results, including severity ratings and how they should be considered against environmental and external factors.
Experience using open-source tooling for investigations: VirusTotal, Passive DNS, URLScan etc.
Experience using enterprise cyber security tooling including endpoint detection and response (EDR), and SIEM platforms.
Knowledge of logging sources and detection capabilities in an enterprise environment.
Perseverance, a willingness to adapt and a high degree of diligence.
Any of the following would be beneficial, but not essential:
Education and training in Information Technology, Cyber Security, or other areas applicable to the job role.
Cyber Security qualifications are great, but not a must.

What do you get in return?
The opportunity to write the history of a leading and growing multinational company;
Competitive remuneration and social benefits package (25 days annual paid leave, health insurance, sports card, team events, company discounts, variety of soft skills, business and technical training programs);
Training and support to help you get to where you want to be; this is your career, and we want to help you develop along with the team.
Be part of a highly regarded team within Information Security, with the flexibility of a start-up and access to state-of-the-art security tooling
Be part of a relatively new function, shaping the way it operates, what it produces, and the impact is has.
Working closely with other disciplines in cyber security; Threat Hunting, Threat Intelligence, Vulnerability Management and Penetration Testing included.
A friendly and collaborative work environment; we don’t judge, we don’t discriminate, and the best ideas are the ones we pursue. There are no stupid questions here and you will get support from your teammates whenever you need it.
With offices in Canada, USA, EU, India, and the UK, Paysafe Group offers individuals an opportunity to join a fast-moving global company with energy, passion and drive, committed to developing world-class online financial solutions.

We take pride in our employees and offer excellent remuneration and benefits, as well as a positive, rewarding and fun work environment.

Are you ready to take your career to the next level? Join our team that is inspired by a unified vision and propelled by passion.

Send your CV in English.

Only shortlisted candidates will be contacted for an interview.

Equal Employment Opportunity
Paysafe provides equal employment opportunities to all employees, and applicants for employment, and prohibits discrimination of any type with regard to ethnicity, religion, age, sex, national origin, disability status, sexual orientation, gender identity or expression, or any other protected characteristics. This policy applies to all terms and conditions of recruitment and employment. If you need any reasonable adjustments please let us know. We will be happy to help and look forward to hearing from you.

Изисквания към кандидата

Езикови познания:

Трудов опит:
С професионален опит от 1 - 3г.

Образование:

Ние предлагаме

Вид заетост:

Срок на заетост:

Договор:

Ниво в йерархията:
Експертен персонал без ръководни функции

Категория:

ИТ и Компютърни специалисти

Държава:

България

Населено място:

Гр. София

Адрес:

90, Tsarigradsko Shose blvd., 1784 Sofia

Дата:

22.11.2021

Организация:

Paysafe Bulgaria EOOD
Фирма/Организация - Директно търсеща служители

Детайли за организацията:

Повече информация за Paysafe Bulgaria EOOD може да получите ТУК