Information Security Engineering Team Lead in Constanţa

This role is responsible for overseeing the implementation and maintenance of security policies, procedures, and tools to protect the network, cloud and data center infrastructure, endpoints, and overall data of the company. This includes defining the security objectives, standards, and best practices, as well as identifying the security risks and vulnerabilities to protect corporate infrastructure and corporate perimeter from threats. About your key responsibilities and impact: Leading and managing teams of security professionals, ensuring their motivation, engagement, and productivity through hiring, training, and mentoring; Establishing team goals, KPIs, and SLAs, develop and implement a comprehensive security strategy aligned with business objectives and industry standards, and plan activities based on client and market trends; Architecting, implementing, and managing network security controls, monitoring network traffic and security events, and collaborating with network engineering teams to design secure network architectures; Designing and maintaining endpoint protection strategies, implementing security solutions, enforcing security policies, conducting vulnerability assessments, and automating security workflows for endpoint security; Designing and implementing secure cloud solutions, implementing security controls for AWS environments, maintaining vulnerability scanners, and developing overall vulnerability management strategies; Ensuring compliance with industry regulations and standards, participating in incident investigation and handling, engaging with external partners and security communities, and collaborating with internal stakeholders to align security initiatives with business objectives. Essential professional experience: In-depth knowledge of cybersecurity concepts, tools, principles, best practices and technologies; Ability to develop and execute long-term security strategies to address evolving threats and risks; Knowledge of common security threats, vulnerabilities, attack vectors, and mitigation strategies across application, infrastructure, and network layers; Deep knowledge of implementing security controls and configurations as code using tools such as Terraform, Ansible; In-depth understanding of endpoint security technologies and OS security configuration best practices (Linux, Windows, macOS); Proficiency in antivirus software, endpoint detection and response (EDR), endpoint management platform, DLP for laptops and mobile devices; Strong understanding of firewall technologies, including packet filtering, and stateful inspection; Expertise in application layer filtering; Experience with designing and implementing firewall rules to enforce security policies; Expertise in configuring and managing Intrusion Detection/Prevention Systems (IDS/IPS) to detect and block malicious activities on the network; Proficiency in Virtual Private Network (VPN) technologies for securing remote access and site-to-site communications, including the configuration of VPN concentrators, authentication methods, and encryption protocols; Knowledge of device authentication mechanisms and protocols; Strong understanding of security controls and skills of their administration in one of the popular cloud providers (AWS, GCP, Azure); Knowledge of vulnerability management processes, including vulnerability scanning, prioritization, remediation, and tracking using tools like Nessus, Qualys, or OpenVAS; Expertise in securing containerized applications and orchestrators like Docker, Kubernetes, and Docker Swarm, including container image scanning, runtime security, and access control; Experience in defining, provisioning, and managing infrastructure resources using code, ensuring consistent and secure deployment environments; Familiarity with security governance frameworks, policies, standards, and regulatory requirements (e.g., GDPR, PCI DSS, ISO/IEC 27001); English: B2. What we offer: Benefits Cafeteria: Sports compensation; Medical coverage; Psychological support; Home-office coverage. Work-life: Remote work, Coworking compensation; Childcare budget; Maternity leave; Paternity leave; Additional 2 days for family events. Our GR8 Culture: Open feedback and transparent direct communications; Growth and development: better every day; High tolerance to experiment and mistakes; Supportive friendly environment.