Snapp is the pioneer provider of ride-hailing mobile solutions in Iran that connects smartphone owners in need of a ride to Snapp drivers who use their private cars to offer transportation services. We are ambitious, passionate, engaged, and excited about pushing the boundaries of the transportation industry to new frontiers and being the first choice of each user in Iran.
About the Role:
To improve security maturity level in organizations in different areas and domains including DC, DevOps, Cloud, and Data team,...
Responsibilities:
Maintain and enhance our security monitoring toolkit (SIEM, sensors, etc.)
Work as part of a team to deploy and maintain secure and reliable network architecture as well as server/system security best practices
Participate in business process documentation, metric reporting, and process automation
Design, engineer, deploy and maintain custom automation products
Build security tooling and automation for internal use that enables the Security Department to operate at high speed and wide-scale
Support or contribute to the different levels of the incident response process in case of confirmed incidents.
support and contribute to the execution of incident simulation exercises for validation and improvement of the overall incident response capabilities.
Operate and optimize security processes and tools.
Create, Modify, and Update Host/Network Intrusion Detection Systems (IDS).
Create, Modify, and Update Web Application Firewall(WAF).
Participate in team problem-solving efforts and offer ideas to solve the issues.
Advice and support the company in all security-related matters
Qualifications:
Mandatory Qualifications
Understanding of Information Security
Strong analytical and creative problem-solving skills
Strong knowledge of Linux-based operating systems and their security-related components (overall architecture, system calls, Auditd)
Good knowledge of IDS/IPS, WAF, endpoint security, etc.
Advanced Python (or similar) coding skills
Experience in Docker and Kubernetes environments
Preferred Qualifications
3+ years of operational experience in Information Technology & Information Security.
Good written and verbal communication skills in English
Certifications such as CEH, Security+, and SANS would be considered as an
asset.
Good interpersonal communication and presentation skills.
Ability to be a team player.
Ability to work effectively in multiple cultures and at a range of levels.
Ability to constantly build up skillset using a mix of self-motivated and course-based learning environments.
Ability to work independently, and proactively to see the big picture, and work through solutions as needed.
Good knowledge of Windows, Linux, databases (MySQL, no-SQL), anti-malware, IDS, and other security technologies.
Basic understanding of virtualization and software-defined data center concepts.Knowledge of OSI reference model and networking fundamentals (switching, routing, load-balancing, firewalling).
Understanding of commonly used Internet protocols such as SMTP, HTTP, and DNS.
Basic understanding of cryptographic functionality within such protocols would be of advantage.
Experience with digital forensics and malware analysis would be an advantage.
Deep knowledge of host security.
Good knowledge of Threat Intelligence.
Experience with SIEM or any other log analysis solutions.
Knowledge of system/network security and security best practices (network ACLs, authentication mechanisms, OS hardening)
معرفی شرکت
اسنپ محصولی ایرانی است که از تیمی خلاق، جوان و تحصیلکرده قدرت میگیرد و در تلاش است تا صنعت فناوری اطلاعات و ارتباطات را به زندگی روزمره جامعه پیوند بزند.
اهداف بزرگی در سر داریم و بلند پروازیم. قصد داریم اسنپ را به بهترین راهکار برای سفرهای درونشهری ایران تبدیل کنیم و در این راه به کمک افراد خلاق، سختکوش و بلندپرواز احتیاج داریم. اگر چنین خصوصیاتی دارید خوشحال میشویم که رزومه خود را برایمان ارسال کنید.