We are the company STV group — a national distributor of the world's leading FMCG brands, with branches throughout Ukraine.We are inviting an Information Security Specialist whose job will be to ensure the comprehensive protection of the organization's information assets through the implementation, monitoring and improvement of information security procedures. The specialist will be responsible for identifying and analyzing vulnerabilities, testing preparedness for cyber threats, and coordinatin
We are the company STV group — a national distributor of the world's leading FMCG brands, with branches throughout Ukraine.
We are inviting an Information Security Specialist whose job will be to ensure the comprehensive protection of the organization's information assets through the implementation, monitoring and improvement of information security procedures. The specialist will be responsible for identifying and analyzing vulnerabilities, testing preparedness for cyber threats, and coordinating actions during incidents. term;comfortable office;support at all stages;corporate equipment and professional development opportunities.Tasks:
- Ensuring compliance with established security procedures in the organization;
- Conducting tests on staff resistance to phishing and other social engineering methods;
- Execution of Red Team operations scenarios to test Blue Team readiness;
- Regular scanning and vulnerability analysis of information systems;
- Coordination of actions during incidents with other departments;
- Basic understanding of SIEM, IDS/IPS systems, DLP, antivirus and access control tools;
- Participation in the implementation and configuration of information protection tools and systems;
- Interaction with development teams, IT infrastructure;
- Preparation of reports and recommendations for improving the level of information protection.
Skills:
- Knowledge of information security principles (ISO 27001).
- Understanding IT infrastructure architecture: network protocols (TCP/IP, HTTP/S, DNS, SMTP), VPN, VLAN, Firewall, proxy.
- Practical skills of vulnerability analysis: working with tools OpenVAS, Burp Suite, Metasploit, Nmap.
- Basic understanding of security monitoring: working with SIEM systems.
- Basic understanding of Windows (Active Directory, GPO, PowerShell).
- Experience with Linux operating system (bash, system logs, privilege security).
- Preferred: professional certifications CPTS, CJCA, CWES (CBBH), eJPT, etc.
If you want to be part of our team, send your resume.
WE BELIEVE IN WINNING AND WE DO IMPORTANT MATTERS TOGETHER!
You can learn more about the STV group company HERE, car'ernaside HERE