Oferty pracy

< Back

Container Security Technical SME

Salary:
1250-1450 pln/md net+VAT
Type of employment:
B2B
Date:
2024.09.16
Location:
Kraków
Job description

Creating an inspiring place to thrive for the talented, we use their expertise and courage to introduce the technology of the future into your business. - This is the foundation of Mindbox and the goal of our business and technology journey. We operate and develop in four areas:

🤖 Autonomous Enterprise - automation of business processes using RPA, OCR, and AI.

🌐Business Managment Systems ERP - we implement, adapt, optimize, and maintain flexible, safe, and open ERP of production and distribution companies worldwide.

🤝Talent Network - we provide access to the best specialists.

☁️ Modern Architecture - we build integrated, sustainable, and open CI / CD environments based on containers enabling safe and more frequent delivery of proven changes in the application code.

We treat technology as a tool to achieve a goal. Thanks to our consultants' reliability and proactive approach, initial projects usually become long-term cooperation. For over 16 years, it has provided various services to support clients in digital transformation.

#LI-Hybrid

 

Offer
  • We are open to the employment form according to your preferences 
  • Work with experienced and engaged team, willing to learn, share knowledge and open for growth and new ideas 
  • Remote working system in Poland
  • Mindbox is a dynamically growing IT company, but still not a large one – everybody can have a real impact on where we are going next
  • We invest in developing skills and abilities of our employees
  • We have attractive benefits and provide all the tools required for work f.e. computer
  • Interpolska Health Care, Multisport, Warta Insurance, training platform (Sages) 
Tasks
  • Understand container related threats and risks to the Bank and communicate to different stakeholders.
  • Manage container scanning tool and ensure service is performing within defined KCI metrics.
  • Run security scans and help development teams understand vulnerabilities and remediation to these vulnerabilities.
  • Defining and maintaining scanning tool configuration, ruleset and policy and revising as required to minimise false positive ratio.
  • Leading and executing the creation, review and maintenance of security scanning quality assurance approach and related documentation.
  • Monitoring new product and technology trends, risk and threat intelligence feeds to advance HSBC's security capabilities while balancing an excellent user experience.
  • Data analysis to identify patterns and trends in security related findings.
  • Partnering with key stakeholders including engineering application teams, SDLC Federated Control Owners, Operational & Resilience Risk, CCO Technology, Cybersecurity Risk & Control Strategy and Cybersecurity Business Engagement.
Requirements
  • Experience in working in cloud environments. Ideally AWS or GCP. 
  • Experience in Cloud and/or Container Security review and Vulnerability assessment.
  • Experience in deploying containers and setting up Kubernetes clusters.
  • Experience in cybersecurity principles, assessment and triage for security flaws and common vulnerabilities for containerised applications.
  • Ability to understand and assess both threats and vulnerabilities, articulating these to both technical and business stakeholders. 
  • Some experience in development work utilising a programming language, preferably Python
  • Professional IT Security qualifications and/or certification.
  • An inquisitive approach, always asking how to achieve goals in a smarter and more effective way.
  • An ability and interest to learn and experiment with new approaches to vulnerability management, in different contexts, across the amazing scale that HSBC brings.
  • Experience of working in international and diverse environments.
  • Experience in engaging with business, technology, regional and regulator stakeholders.
  • Experience/ understanding of threat modelling and third party security assessments would be beneficial.
  • Good spoken and written communication and ability to adapt style based on audience (Fluent in spoken / written English).