Technology Specialist - Security in Constanţa

Microsoft Powerplatforms (junior) SLDC (junior) SAP PO (junior) API Connect (junior) Boomi (junior) UiPath (junior) Security (regular) Technology Specialist - SecurityAt D&T we are committed to making Heineken the most connected brewery. We digitize and integrate our processes to ensure first-class technology in the company. IT’s on us!By joining us you will have a direct impact on building the future of Heineken!We are looking for IT specialists who are passionate about constantly developing, who can work independently and find themselves in an international team, who share our values ​​and who like to relax with a beer at the end of a busy day. Your responsibilities would include: The Security technical specialist will assist with the design, development and implementation of security measures for solutions deployed into various cloud, hybrid, and on-premise systems in HEINEKEN environment. Ensure security by design principles are upheld in the implemented productsEnsure embedding of joint security responsibility models definition related to federated governance systemsThoroughly document security decisions and implementations,Provide input and feedback on security architectures/setup/configurationPerform risk assessments on any new resource/application/functionality implemented in the cloud platformsParticipate in the Security and Quality assurance chapter and help embed security by design mindset into the HEINEKEN organizationEnsure performance and automation of compliance and security controlsSupport product teams in security decisions related to the product platformsSupport in automating continuous security testing for the product platformsSupport in resolving any security related audit or compliancy issues You are a good candidate if: 1-3 years working experience in security operations and advanced level of understanding regarding systems security at both technical and procedural levelOperational experience in securing one or more of the following solutions;low /no-code platformsRobotics process automation (e.g. UiPath)Integration and middleware platforms (Boomi, API Connect, SAP PO)SLDC Tools (E.g. AzureDevOps, Confluence, Zephyr, SonarQube)Microsoft PowerplatformsPossess a solid understanding and have experience with systems automation platforms and technologies.Certifications such as CEH, CIR, CISM, CISA, CGEDIT, any of the OWASP or similar are a plusKnowledge of industry standard security frameworks for information systems (NIST, ISO 27001/2, CSA, COBIT), the Cyber Kill Chain & MITRE ATT&CK frameworkBeing able to translate technical language into a story that can be understood, and cohesively present it back to different stakeholders with a clear messageBachelor’s degree or equivalent experienceHave a passion for security and enjoys solving problemsYou understand the Agile mindset and have basic knowledge on working in a Scrum Team. You show end-to-end ownership on work that you do.Excellent knowledge of English, written and verbal You have experience with outsourced managed servicesYou look for structural solutions over one-time quick fixes.Experience representing technical viewpoints to diverse audiences and in making timely and prudent technical risk decisions. Content/Technical experience: Knowledge of industry-standard security frameworks for information systems (CVSS, CIS Benchmarking, OWASP, NIST, ISO 27001/2, CSA, COBIT)Relevant technical knowledge on securing platforms/solutions such as robotics automation platforms, low/no-code platforms, integration and middleware (for a complete list see section above).Basic knowledge of:Working knowledge of common and industry standard cloud-native/cloud-friendly authentication mechanisms (OAuth, OpenID, etc.).Identity and access managementSecuring other infrastructure. E.g.: Active Directory, Azure AD)System security (operating systems, applications), networking, and web applicationsEnabling services (e.g. NTP, SMTP, patching, Antivirus)Server infrastructure (VMWare ESXi, storage, Azure, AWS)basic cryptography knowledge (basic algorithm knowledge)DB security knowledgeauthentication protocol knowledgeKey storage solutions, security monitoring solutions (e.g. Splunk), SSO, security solutions (SSL, Remote Access, IPSEC, Reverse Proxy, IDS/IPS, Firewall)