Luxoft is a global leader in high-end software development.
Luxoft is looking for talents with a passion for technology & ready to create original solutions. Once on board, you are invited to expand your knowledge & skills, offering you a continuous learning experience helping you stretch your potential.
So if you’re enthusiastic by the idea of accessing cutting edge technology & innovation to make an impact, why don't you join us?
Key Responsibilities
Security Engineers within the Data Protection and Application Security organization work on a wide variety of tasks and activities that are closely aligned with the bank’s strategic programs:
Delivering security solutions for the internet facing infrastructure that runs in multiple data centers around the globe
Ensuring that individual security solutions form an effective security system as a whole
Creating detailed solution designs that fit well into bank’s established platforms and core eco-systems
Supporting product management and solution architecture in identifying effective solutions
Designing system-to-system interfaces that meet security requirements of the bank
Providing 3rd level engineering support for security products
Essentials Skills and Qualifications:
Graduate degree in Information Technology, Computer Science or related subject; alternatively an equivalent education in one of these topics
Proven track record of min. 8 years of work experience in IT and 2 years in a similar role (engineering/infrastructure integration)
Overall knowledge on security concepts (data security & application security)
Working knowledge & experience with one or more of the following areas in IT Security:
o Internet Facing Application components (Web Application Firewalls, Reverse / Forward Proxies, Single-Sign On etc)
o DMZ and network security
o Authentication Server (Siteminder, PING Federate, SAML, etc)
o Internet Security technologies (SSL/TLS, Apache, etc)
o Cloud Enablement, Cloud Access Security Broker (CASB)
Working knowledge & experience of Unix/Linux (incl. scripting)
Fluent written and spoken English
Desirable:
Experience with software packaging and versioning systems (eg. Subversion)
Ability in finding long-term IT solutions even if you are under pressure due to an IT incident
Experience in financial sector will be an additional asset
Familiarity with products and databases provided by MITRE and OWASP (CVE, CWE, OWASP CRS, Top 10)
Engineering or security certification is an advantage: CISSP, CISA, CSSLP, MCSE, RHCE, CCNE, CCSE
Technology Security Services (TSS) organisation has global responsibility for the design, delivery and operational support for business critical security services
Data Protection and Application Security organisation within TSS is responsible for the design and delivery of the key products and services related to information security. This includes public key infrastructure, data leakage prevention, information right management, application security and testing (DMZ: De-militarized Zone, WAF: Web Application Firewall, SSO: Single Sign-On, reverse proxy) and cloud security.