Senior IT Security Engineer in Constanţa

IT Security (regular) Azure AD (regular) T-SQL (regular) Microsoft Server (advanced) Active Directory (advanced) For our client - the global chemical industry we are looking for a person to fill the position of Senior IT Security Engineer. Requirements Experience with Microsoft server technologies; Min. 5 years in an infrastructure security role; 4 years Microsoft Active Directory administration and architecture (including Group Policy creation and use of AD for automated security hardening); Experience managing and deploying anti-virus architecture. Including integration with virtual and highly consolidated systems; Experience with techniques and tools used to secure/harden a server's operating system and applications running on the server; Experience with patch management systems for Microsoft based systems; Experience with authentication systems including two factor and federated systems; Experience with vulnerability assessment techniques; Experience with T-SQL database scripting and database security concepts; Experience with encryption, cryptography, public key infrastructure (PKI); Experience with highly sensitive systems, such as internet facing servers and process control network; Experience in a multi-platform and networked environment.  Responsibilities Create system-level security architecture and design which includes definition of technical security controls (e.g., access control, authentication, encryption, deterrence measure, etc) and definition of non-technical security controls (e.g., process and procedure) necessary to achieve the security requirements and remediate audit finding; Overall enterprise responsibility for endpoint protection, including anti-virus, anti-spyware, intrusion prevention, host DLP, and data encryption using McAfee ePolicy Orchestrator and Microsoft Defender for Endpoint/Identity; Maintain and develop two factor authentication infrastructure leveraging RSA Secure ID; Manage Azure AD (SSO Configuration, Application Registration, MFA, etc.) and on-prem Active Directory (GPO, Kerberos/SPN, Domain Controllers, Distributed File System, etc.); MCAS Policy Creation/Modifications; Network Policy Server Support; Oversee the deployment, integration and configuration of all new security solutions, and any enhancements made to existing security solutions, to improve overall enterprise security; Develop and maintain the company’s infrastructure security documents (policies, standards, baselines, guidelines and procedures); Determine appropriate levels of security controls and systems monitoring; Use effective measures to respond to infrastructure security alerts; Understand the latest hacker techniques and propose appropriate countermeasures; Lead and assist in advanced troubleshooting of complex issues that cross multiple domains, applying core knowledge and troubleshooting to lead group to resolution; Manage workstation policies to lockdown end-points without sacrificing user experience; Work with members of the IT staff to realize enterprise approach to security; Perform ticket queue monitoring and prioritization; Assist with IT audits to support.  The offer Healthcare; Multisport card; Insurance; Annual bonus; Hybrid work ( 2 days HO , 3 days in the office).