OBS! Ansökningsperioden för denna annonsen har
passerat.
Arbetsbeskrivning
Over the last 20 years, Kindred Group has brought together 11 of Europe’s most successful online gambling brands – forming one of the largest online gambling companies in the world.
What started as Unibet is today Kindred Group, a diverse team of 1,400 people representing 50 nationalities located across offices in more than 10 locations. We are listed on Nasdaq Stockholm and serve over 20 million customers worldwide. As we look forward, our heritage of ‘offering players a better way to gamble’ remains crucial. Innovation in technology, marketing and data offers huge opportunities to get even closer to the customer, and keep us as pioneers of online gambling. Even as the online gambling industry changes, our group works constantly to keep up with new market dynamics and regulations – ensuring a sustainable and profitable business today, tomorrow and beyond. Preferably we are looking for an individual whose experience and education fits the following, however security is a broad area and as such we are mainly looking for individuals who are a good team fit capable of personal growth:
At least 3 years experience working in a security related domain (either directly in a security team or focusing on security in, for example, web application security, penetration testing)
Detailed technical knowledge of at least two of: application security, system security, network security, authentication/authorization protocols. Hands-on experience in at least one of the above.
Experience in security vulnerability assessments and remediation techniques.
Very good communication skills and excellent English, both verbally and written.
You have strong people skills and work well in groups and can take an independent responsibility to develop and improve the information security area.
Preferably some previous experience developing and delivering security software tools
Preferably some experience with security in service-oriented architectures and web services.
Preferably some experience in penetration testing and exploitability-focused vulnerability assessment.
Preferably some experience in threat modelling and risk identification.
Preferably some experience with cloud (Highly desirably: AWS, Desirable: GCP, Azure)
You are an effective communicator who engages well with technical and non-technical audiences alike.
Excellent written and oral communication skills.
Development experience is preferable (java, javascript)
Working knowledge of basic scripting (e.g python, bash)
Education / Qualifications/ Professional Certificates
Desirable: Relevant university degree, GNFA, GCFE, GPEN, GREM
Highly desirable: OSCP and OSCE The Group Security team is embarking on a mission of rapid maturity and require a highly motivated and talented cyber security specialist to help guide us on this journey. The Group Security team operates out of Stockholm and is responsible for securing the Kindred Group and its assets.
We are searching for that certain someone who is not satisfied in just knowing common standards and frameworks, but instead likes to understand vulnerabilities, the exploitability, how to think like the adversary, and most importantly how to defend against them. You will have a real personal passion for security (across a broad range of domains), technology and an insatiable lust to develop further as a security expert (both technically and generally).
What will you be doing?
Perform end-to-end application security reviews to ensure critical information is appropriately protected.
Identify security vulnerabilities and risks, and develop mitigation plans.
Working with the team to perform/support penetration testing and the pen test programme
Educating members of the security champion network, and security liaisons on secure practices
Provide security architecture and design consultations to product teams, to help them build applications that are secure from the start.
Assisting the security operations team in the identification of threats and vulnerabilities and appropriate remediation plans (including forensics and malware analysis/reverse engineering)
Architect, design, implement, support, and evaluate security tools and services.
Develop and interpret security policies and procedures.
Helping to mature the web application security for the Kindred platforms, bringing your expertise to our team to change the way we work