Security Engineer
Luxoft is a global leader in high-end software development.
Luxoft is looking for talents with a passion for technology & ready to create original solutions. Once on board, you are invited to expand your knowledge & skills, offering you a continuous learning experience helping you stretch your potential.
So if you’re enthusiastic by the idea of accessing cutting edge technology & innovation to make an impact, why don't you join us?
Security Engineer
Miejsce pracy: Krakow
Nr Ref.: VR-10984
Responsibilites
The candidate will:
- be responsible for the handover of installation manuals and release notes to the integrator/deployer on behalf of SWCM
- be responsible that UBS application deployment and configuration management standards are fulfilled in the respective application systems
- be responsible to integrate 3rd party software into the bank (off the shelf or on behalf UBS development)
- ensure standardization according to the Software Development Life Cycle (SDLC) definitions and other UBS standards
- ensure high quality and timely and cost-effective preparation of software deployment to development, test and production environments.
- be responsible to collect and deliver an system engineering effort estimate on request for projects
- be responsible to contribute information at hand of PM regarding risks and issues
Requirements
- Very solid understanding of web-based technologies including multi-tier applications and security standards (SSL, HTTP, Cookie Handling, SAML, WS-Trust).
- J2SE / J2EE development experience.
- Experience of engineering, configuring and deploying highly available enterprise solutions (preferably in the security area).
- Understanding of security issues, application-level security, encryption, SSL, vulnerabilities
- Generic Identity Management experience including access control, single sign-on, authentication, authorization, provisioning.
- Source code control and change management.
- Solaris & Linux Red Hat operating system knowledge including bash scripting.
- Experience packaging applications for deployment onto production infrastructure.
- Degree in Computer Science or equivalent experience.
- Proven record in an IT Security Engineering role.
- Strong communication skills in English (written and verbal) in order to liaise with internal and vendor team members.
Nice to have:
- Experience with Directory Services (LDAP) and RDBMS preferably Oracle & Sybase.
- Product knowledge of CA SiteMinder / CA Single Sign-On.
- Familiar with financial industry and audit requirements with respect to Access Control and Identity Management.
- Experience in engineering a detailed design of highly available, high capacity geographically distributed applications.
- Experience integrating applications into operational support tools (e.g. monitoring/alerting tools).
We offer
Security IT is a group-wide function which ensures integrated, secure and risk-aware IT operations for Investment bank by offering best fit, easy to leverage, reliable and cost effective security services, tools, processes and expertise across all business groups.
- We are a part of the transition program dedicated to build IT security center in Poland (one of three global localizations) for global financial services company
- The IT security consists of 3 departments: Identity and Access Management, Application Security and Cyber Thread Security
- Today we are a team of 20 persons but we are going to grow up to 100 within the next 2 years
- As team member of IT Security candidate will be part of one of the many security projects established in Poland
- IT security is the of the fast growing areas in IT sector
A dedicated SSO Engineer with a well-rounded exposure to software development and a broad range of skills is sought to implement and enhance our authentication systems. The sought individual should have a solid IT engineering background, preferably with a specialization in IT security services / Single-Sign On technologies (SSO). Specific role activities of an SSO Engineer include:
- Gain a deep technical understanding of our global strategic Single Sign-On platform.
- Implementation, unit testing and support of assigned requirements, especially on CA SiteMinder product suite enhancement (Java SDK) and their integration into a silent installation (packaging / scripting using Bash).
- Provide detailed deployment and support documentation around components developed.
- Problem analysis and technical investigation of support queries escalated by the global support team.
- Packaging of software via Maven/Jenkins and creation of deployment guides.
- Liaise closely with the off-shore testing team to ensure test cases are correct and support the testing team in general when they have questions.