(Senior) Engineer, Cloud and System Security

ROLE DESCRIPTION:
We are looking for a (Senior) Engineer, Cloud & System Security to join our team in Bucharest!

Join our fast-growing Cyber Security team to help defend the largest fleet of commercial MEO/GEO satellites in the world. At SES, you will have the opportunity to work on the latest security topics amongst leading experts in the field. In your role you will work with cross-functional, global teams and guide them through their Cyber Security journey. The work is demanding, but you will see your contribution having a global impact. Come be a part of this exciting company where you can develop yourself and drive your own career! There is no better place in Bucharest to work in the field of Cyber Security.
 
Your mission is to translate advanced security requirements using the latest technologies in cyber security into comprehensive effective and effi-cient technical security concepts. You will manage and advise several projects and BizDevOps teams to deliver resilient zero trust solutions in a diverse and fast paced environment. You will also autonomously steer and deliver zero trust complex cyber security implementation projects as well as design, implement, and automate advanced cloud, system, and application security controls. 

You will be responsible for (this is not an exhaustive list):

• Translate advanced security requirements into comprehensive, effective and efficient technical security concepts in line with industry and governmental security standards that effectively mitigate security related risks, threats and vulnerabilities while accommodating complex operational needs in complex hybrid infrastructures
• Manage and advise architects and BizDevOps teams on effective and efficient zero trust cyber security strategies, architectures, and technical security controls to meet advanced security requirements and deliver resilient solutions against advanced threat actors
• Lead complex cyber security implementation projects as laid out in SES’s information security strategy and deliver them within time, cost and scope 
• Support the execution of the Zero-Trust strategy for SES by designing, implementing and automating advanced zero trust cloud, system and application security controls leveraging best of breed and cloud native state of the art security technologies, including:
  • EDR, O365 Security
  • Data leakage prevention and rights management
  • Identification and access management
  • Active directory security
  • Secure software development
• Define and develop secure Azure products and policies in collaboration with cloud product owners and increase the Secure Score on Azure environment
• Define policies, processes, procedures, configuration standards and guidelines to ensure appropriate security risk management throughout the system life cycle 
• Perform technical security assessments and audits of information systems, applications and infrastruc-tures to identify vulnerabilities and non-compliance with established security standards and recommend efficient and effective zero trust mitigation strategies
• Pro-actively evaluate emerging risks and advise on and implement effective risk mitigations and state-of-the-art security concepts
• Support security incident response, focussing on preventions, containment, eradication, and recovery of information systems

YOUR PROFILE

1. Must have 

• Degree in Computer Science or Software Engineering and a minimum of 7 years of experience 
• Sound, hands-on knowledge of and experience with managing system related security risks, including the assessment of system security risks, specification of security requirements, the definition of security concepts, secure system design, implementation of security controls, specification of secure configuration standards, assessment of security controls and vulnerabilities
• Experience in developing and deploying zero trust security controls in Microsoft Azure and Ofice365 environments, including knowledge of Intune, Conditional Access, Cloud App,  Microsoft Purview Information Protection, Microsoft Purview Data Loss Prevention 
• Experience with setting security standards and best practices 
• Experience with 1 or more Identity and Access Management and with Strong Authentication Systems; knowledge of Azure AD, Active Directory, Kerberos, SSO, SAML, and/or OAuth 
• Knowledge of attacker techniques and how to mitigate them in complex environments
• Experience with Public Key Infrastructure including HSM 
• Experience with Privileged Access Management and password vault solutions
• Knowledge in Malware protection, Enterprise Detection and Response and Host-based Intrusion Preven-tion Systems
• Security standards, best practices and guidelines (e.g., NIST SP-800 series, DISA STIGs, CIS)
• Vulnerability, compliance and patch management solutions for complex, heterogeneous systems

2.    Nice to Have

• Experience with security in AWS or Google environments
• Experience with Microsoft DevOps
• Experience with MITRE ATT&CK framework for Enterprise and Cloud
• Cloud security certifications 
• Solid knowledge of cyber security threats, vulnerabilities, security technologies, controls and best prac-tices

WHAT'S IN IT FOR YOU

• Flexible working policy
• Bonus plan
• Comprehensive and competitive benefits plan
• A range of wellness activities and employee assistance programs 
• An employer that values all aspects of Diversity and respects every individual’s story

GOOD TO KNOW

Embark on a career with us, where diversity isn't just a buzzword – it's our driving force. We are crafting a workplace mosaic that values every hue, background, and perspective. Join a global team where inclusivity sparks innovation, and individuality is not only embraced but celebrated. At SES we are committed to hiring inspiring individuals from all backgrounds. We take great pride in creating safe and inclusive processes and we support the recruitment, retention, and evolution of all employees irrespective of gender, colour, race, ethnicity, religion, sexual orientation, disability, veteran or marital status, background or walk in life.