Total 168 Legal / Public / Security job vacancies in us ca beverly hills 325 n maple drive

JOB DESCRIPTION

• Administrative support to the Corporate Secretarial department
• Ensuring due diligence and compliance is performed
• Generation of reports, maintenance and upkeep of documents and records
• Sending of filing deadline reminders to clients
• Prepare billings and monitor debt recovery
• Answering of phone calls, arrangement of courier service
• Other ad-hoc services when required

REQUIREMENTS

• Degree or Diploma holder
• Completed or pursuing SAICSA or relevant post graduate/ professional qualifications will be of advantage
• Experience in administrative support for accounting, corporate secretarial firms or legal firms will be advantageous
• Good working knowledge of the Companies Act 1967
• High professional integrity
• Meticulous attention to fine detail
• Computer proficiency in Microsoft Office
• Proficiency in written and spoken English
• Must be able to work independently and interpedently
• Team player
• Able to work under pressure and tight deadline

Job Description
You will be a member of the Group Information Security Team responsible for initiating, implementing and maintaining security products and solutions to support enterprise security.

Key Responsibilities

• Subject matter expert (SME) for the security systems owned by the Information Security Team.
• Ensure security systems are utilised to their maximum capabilities.
• Plan, identify, assess, design, operationalise and maintain multiple security related software and/or hardware.
• Recommend and drive cyber security solution and initiatives to improve cyber security of the organisation.
• Prepare RFQ and evaluation criteria. Proof of concept (POC) during product evaluation. Liaising with vendors to implement security solutions.
• Provide security consultancy, technical guidance, expertise, solutioning and education.
• Advise infrastructure teams on security design that is relevant and fit for purpose.
• Identify and assess cyber risks in the IT infrastructure environment.
• Review firewall requests.
• Keep up to date on emerging security threats and vulnerabilities on new platforms adopted by the SIA Group and propose mitigating controls.
• Any relevant ad-hoc duties. Manage individual project priorities, deadlines and deliverables.
• This is an individual contributor role. Deliver tasks with minimal supervision.
• Strong communication skills.

Requirements

• Degree in IT or related field, with at least 5 years in information security, especially in the application security space.
• Professional security certifications (CISSP, CSSLP, CEH etc) preferred.
• Experience in security products POC and RFQ.
• Prior experience in implementing and maintaining any of tools for EDR, XDR, SOAR, SIEM, UEBA, PAM, AM etc. and/or network security. Able to review firewall requests.
• Technical proficiency in one or more of the following security areas: network design, zero trust, Internet of Things, cryptography etc.
• Familiar with common web/mobile application vulnerabilities and technical knowledge to address and mitigate vulnerabilities. Any prior vulnerability management experience preferred.
• Knowledge of cyber security threats, vulnerabilities, hacking and exploit methods etc.
• Strong oral, written, presentation and inter-personal skills.
• Possess positive attitude with drive, initiative, enthusiasm, and a keen sense of urgency in resolving high-priority issues.
• Able to work independently and in a team-oriented, collaborative environment.

Job Description

You will be a member of the Group Information Security Team responsible for ensuring that IT solutions (both applications and infrastructure) are developed and designed with security inbuilt.

Key Responsibilities

•Provide security consultancy, technical guidance, expertise, solutioning and education for en-terprise.

•Advise application and infrastructure teams on application and infrastructure security design that is relevant and fit for purpose.

•Align security architecture frameworks and standards with business strategies and functions. Maintain Cyber risk management framework and perform assessment of applications for emerging areas like cloud security, machine learning etc.

•Advise and review application security design to detect potential security issues and for each issue, propose and drive remediation tasks. Develop application security blueprints. Propose and/or develop training courses to advance developers’ security knowledge.

•Perform threat modelling on security critical applications. Keep up to date on emerging secu-rity threats and vulnerabilities on new platforms adopted by the SIA Group. Define scope and review the results of security tests, reviews and audits to ensure security assurance is achieved.

•Any relevant ad-hoc duties. Manage individual project priorities, deadlines and deliverables. This is an individual contributor role. Strong communication skills.

Requirements

•Degree in IT or related fields, with at least 5 years in information security, especially in the application security space.

•Professional security certifications (CISSP, CSSLP, CEH, CCSP etc) preferred.

•Technical proficiency in one or more of the following security areas: network design, zero trust, Internet of Things, cryptography etc.

•Strong in-depth working knowledge in secure application development techniques. Secure by Design. Secure source code review. Prior experience with any of the following tools: Static Application Security Testing (SAST), Dynamic Application Security (DAST), Software Compo-sition Analysis (SCA).

•Strong understanding of Agile, DevSecOps, OWASP Top 10, and securing cloud technolo-gies. Familiar with common web/mobile application vulnerabilities and technical knowledge to address and mitigate vulnerabilities.

•Knowledge of cyber security threats, vulnerabilities, hacking and exploit methods etc. Any prior vulnerability management experience preferred.

•Strong oral, written, presentation and inter-personal skills.

•Possess positive attitude with drive, initiative, enthusiasm, and a keen sense of urgency in resolving high-priority issues.

•Able to work independently and in a team-oriented, collaborative environment.

Civil Engineer (indoor office-based job)

Salary up to $5200

• To take charge of the Ducts and Manholes Implementation and Maintenance Works.

• To coordinate underground ducts and manholes implementation works with external parties.

• To support Plant Maintenance and Operation on Civil & Structural (C&S) matter

• C&S engineering SME

Responsibilities:

• New Development and Diversion of Services:

- Take charge and coordinate Service laying with main project team (Developer, Main Contractor) and authorities, including deconflicting with others for new build and diversion.

- Project Manage the implementation of underground ducts and Manholes within new development and service diversion.

- Review method statement and coordination drawings and other relevant construction documents.

• Review 3rd party submission on matters related to Netlink Underground Services

• Support Facilities and Maintenance team on Civil & Structural related issues.

• Participate in tender, contract administration

Requirements:

• Civil Engineering Degree with 3-year engineering/construction experience

• Diploma holders in Civil Engineering with extensive relevant experience will be considered

• Experience in infrastructure (Road works) projcts and its geotechnical aspects.

• Exposure in Service coordination with Authorities and Service providers

• Good understanding of Specifications, contracts and ability to read and interpret engineering drawings and engineering reports.

• Ablity to review Method statement. Ability to generate method statements is preferred.

To apply:

Please email Resume in Microsoft Word format

Please state your Position/ positions applied on the “on TOP” of your resume.

Please state Available Commencement Date or notice period

Please state current and last SALARY and Expected Salary in your resume.

Please state Reasons for leaving current & previous Employment.

A. Overall Purpose of The Job

The primary role of the Infrastructure Security Engineer is to support our security technologies to ensure smooth daily operation and its maintenance. This includes project delivery and subsequent refresh program for all the in-scope security devices.

B. Key Responsibilities

● Provide expert guidance and oversight in the day-to-day administration of various security tools, including Crowdstrike EDR, Netskope SWG, CyberArk PIM/PAM, and others.

● Take a sme role in building, implementing, and maintaining the CyberArk PIM/PAM solution within the Organization environment, ensuring the smooth operation of CyberArk PAM/PIM activities on a daily basis.

● Proactively identify issues and suggest potential solutions in operations.

● Manage and execute maintenance tasks, system upgrades, and the implementation of service packs, patches, hot fixes, and security configurations.

● Lead in-depth investigations into complex technical issues, collaborating closely with vendors until resolutions are achieved, and delivering comprehensive Root Cause Analyses (RCAs).

● Collaborate effectively with Server/Network/DB/App teams to efficiently onboard and configure devices and privileged identities.

● Demonstrate expertise in creating customized reports and dashboards within security tools, tailored to meet specific requirements.

● Maintain and update Standard Operating Procedures (SOPs), security standards, and procedures, ensuring they reflect best practices and the latest security protocols.

● Operate within the established configuration and change management policies to ensure that all changes made to security devices are well-documented, approved, and ultimately successful.

● Play a crucial role in the implementation of new infrastructure security technologies and products at Organization. This includes selecting the most suitable product vendor, conducting Proof of Concepts (POCs), and overseeing the product's implementation in collaboration with a preferred Systems Integrator (SI) partner.

C. Job Profile

Required Skills and Knowledge

● 7-8 years of valid experience in Infrastructure Security operations and projects

● 5-6 years of hands on experience in CyberArk PIM/PAM

● 3-4 years of hands on experience in any Endpoint Detection & Response and Secure Web Gateway technologies preferably Crowdstrike and Netskope

● Good understanding of Network Technologies, Systems, and Database

● Good understanding of security concepts (e.g., encryption, least privilege, need to know basis access, unauthorised access)

● Strong verbal and written communication skills and ability to work with all levels of management

● Firm understanding of IT Service Management processes and project management (i.e., ITIL and Agile)

● Team player and self-motivated

Required Qualifications

● Certifications in CyberArk Certified Delivery Engineer is preferred

● Cybersecurity certification such as CompTIA Security+ or CEH is an advantage

● University degree in Computer Science or a related field is preferred

- To answer occasional phone calls from public

- Station on Site to attend to feedbacks

- Attend monthly site meeting and prepare minutes of meeting

- Need to do site administration work:

Purchase orders, compilation of Delivery oders, Workers attendance and Work pass and safety course attendance

- Minimum 2 Years experience in public relations service or hospitalities and tourism field

- 5-Day work week

Site Office Location:

Ang Mo Kio Industrial Park 2

50 metres walking distance from Ang Mo Kio Ave 1

Bus Stop No: 54101

Job Objectives:

Tasked with aiding the Security Manager in safeguarding properties and ensuring the well-being of guests, employees, and the hotel. Supervise all activities of security staff to ensure compliance and proper application of department regulations and hotel policies. Documents all action in the department, including: emergencies, loss, theft, or accident.

Primary Responsibilities

• Manages the Security Department, alongside with Security Manager.
• Oversees the security department and their day to day operations.
• Trains all security personnel in their areas of responsibilities.
• Reviews policies, procedures, and instructions on a regular basis.
• Evaluates possible hazards or threats to security.
• Promotes a safety attitude amongst all employees.
• Ensures safety of persons in the hotel and property assets.
• Reports irregularity in employee or guest behavior.
• Handles loss, damage and accidents.
• Handles, documents, and follows up with necessary persons any accidents occurring in the hotel premises.
• Investigates theft as reported by guest or employee.
• Documents all action in the department, including: emergencies, loss, theft, or accident.
• Participates in weekly department heads meeting in absence of Security Manager - Rooms Division Meeting and any others if requested.
• Secondary liaison for interacting with government officials, ministries, and law enforcement agencies.
• Reviews emergency procedures regularly.
• Delivers security training and promotes awareness within the hotel.
• Performs other duties as assigned by Security Manager.

Job Requirements

• Minimum education of High Vocational diploma in any discipline. Bachelor degree holder have an advantage.
• At least 3 years’ experience in a similar position in security & safety operations.
• Basic knowledge of local laws, investigative methods and fire safety.
• Criminal-free record
• Have good English communication skills both in written and spoken
• Possess professional disposition with good communication and interpersonal skills

<br>

Job Description

<br>

Overview

CoStar Group (NASDAQ: CSGP) is a leading global provider of commercial and residential real estate information, analytics, and online marketplaces.  Included in the S&P 500 Index and the NASDAQ 100, CoStar Group is on a mission to digitize the world’s real estate, empowering all people to discover properties, insights and connections that improve their businesses and lives. 

We have been living and breathing the world of real estate information and online marketplaces for over 35 years, giving us the perspective to create truly unique and valuable offerings to our customers.  We’ve continually refined, transformed and perfected our approach to our business, creating a language that has become standard in our industry, for our customers, and even our competitors.  We continue that effort today and are always working to improve and drive innovation.  This is how we deliver for our customers, our employees, and investors.  By equipping the brightest minds with the best resources available, we provide an invaluable edge in real estate.   

CoStar builds and operates web applications related to real estate.  Web applications include Apartments.com, Homes.com, Lands.com CoStar.com, and 75 other web applications.  The backbone of our product security is our product platform security environment, which consists of commercial and custom developed security controls that run within the IDE, the CI/CD system, across cloud and Kubernetes platforms, and our product edge.  Our product platform security engineering group builds and operates centralized controls using infrastructure as code, scripting, and API integrations to scale security across all web applications in a consistent manner.

We're looking for a few more innovative, code driven security engineers to join our team and expand the features, functions, and flow of our product platform security suite.  Any level is an option - from associate to lead architect. 

This position is located in Washington, DC or Richmond, VA and offers a hybrid schedule of 3 days onsite, 2 days remote.

Responsibilities

Features (responsibilities and goals) of our product platform security suite: (AKA - what you will be building and evolving along a rockstar team that learns from and pushes each other to do great things!)

• Real-time vulnerability feedback in the IDE for insecure build patterns and artifacts (1P code, 3P code, containers, IAC, secrets)
• Gate environment builds to enforce vulnerability remediation SLAs
• Dynamic run-time scans of pre-prod to gate vulnerabilities from escaping into production
• Continual attack surface management pen testing and exploit validation
• Cloud security posture management and workload protection
• Cloud IAM security
• Kubernetes run-time security controls
• Cloud platform threat hunting
• API Security management
• WAF and Bot controls
• Integrated runtime/drift vulnerability feedback into respective product dev team's bug tracking system
• Federated cloud security hardening, detection and enforcement
• Data security posture management
• Hunting for secrets and sensitive data leakage in logs, code, and documentation

Basic Qualifications

• Bachelor’s Degree required from an accredited, not for profit university or college (preferably in Computer Science, Cybersecurity or a related field)
• A track record of commitment to prior employers 
• 2+ years solid experience and understanding of how to apply security at scale in one or more of: CI/CD system, Kubernetes platform, cloud environment, or CDN
• Demonstrated ability to author scripts or IAC from scratch in either Python, PowerShell, Ansible, CloudFormation, Terraform, or similar language
• Experience working in a software development environment with a mature CI/CD
• Passion for solving complex challenges, innovating, and engaging in your work

Preferred Qualifications and Skills

• Strong communication skills with both software development and software leadership audiences
• In-depth understanding of various assessment tools
• Knowledge of infrastructure operations across databases, network, and system administration
• Ability to communicate with different levels of leadership conveying risk and driving urgency for risk remediation.
• Ability to mentor and train team members to prioritize security efforts effectively.
• A self-starter who can advance the application security program and follow-through ideas to completion.
• Hands-on experience implementing security tools into CI/CD pipelines.
• Experience testing serverless cloud deployments

What’s in it for You

When you join CoStar Group, you’ll experience a collaborative and innovative culture working alongside the best and brightest to empower our people and customers to succeed.

We offer you generous compensation and performance-based incentives. CoStar Group also invests in your professional and academic growth with internal training, tuition reimbursement, and an inter-office exchange program.

Our benefits package includes (but is not limited to):

• Comprehensive healthcare coverage: Medical / Vision / Dental / Prescription Drug
• Life, legal, and supplementary insurance
• Virtual and in person mental health counseling services for individuals and family
• Commuter and parking benefits
• 401(K) retirement plan with matching contributions
• Employee stock purchase plan
• Paid time off
• Tuition reimbursement
• On-site fitness center and/or reimbursed fitness center membership costs (location dependent), with yoga studio, Pelotons, personal training, group exercise classes
• Access to CoStar Group’s Diversity, Equity, & Inclusion Employee Resource Groups
• Complimentary gourmet coffee, tea, hot chocolate, fresh fruit, and other healthy snacks

We welcome all qualified candidates who are currently eligible to work full-time in the United States to apply.  However, please note that CoStar Group is not able to provide visa sponsorship for this position.

#LI-Hybrid

#LI-CT5

<br>

CoStar Group is an Equal Employment Opportunity Employer; we maintain a drug-free workplace and perform pre-employment substance abuse testing

<br>

Job Description

<br>

Overview

CoStar Group (NASDAQ: CSGP) is a leading global provider of commercial and residential real estate information, analytics, and online marketplaces.  Included in the S&P 500 Index and the NASDAQ 100, CoStar Group is on a mission to digitize the world’s real estate, empowering all people to discover properties, insights and connections that improve their businesses and lives. 

We have been living and breathing the world of real estate information and online marketplaces for over 35 years, giving us the perspective to create truly unique and valuable offerings to our customers.  We’ve continually refined, transformed and perfected our approach to our business, creating a language that has become standard in our industry, for our customers, and even our competitors.  We continue that effort today and are always working to improve and drive innovation.  This is how we deliver for our customers, our employees, and investors.  By equipping the brightest minds with the best resources available, we provide an invaluable edge in real estate.   

CoStar builds and operates web applications related to real estate.  Web applications include Apartments.com, Homes.com, Lands.com, CoStar.com, and 75 other web applications.  CoStar has solid security tooling integrated into our hosting platform and CI/CD environments as a result of strong DevSecOps engineering.  We're looking to build out new product security roles and teams to drive greater security within our products - all by design. 

This position is located in Washington, DC or Richmond, VA and offers a hybrid schedule of 3 days onsite, 2 days remote.

Responsibilities

• Security minded experienced developer to author secure code guidelines, develop reusable secure code modules and templates, review sensitive code modules, and serve as a security SME consultant during product design and development. 

• Embedded security minded developer(s) to become an expert on how to consume all of our centralized security controls and apply them within a focused set of related web applications built by a common software development team.  These positions are matrixed between product security and product development.

• Threat modeling evangelist to refine our threat modeling process and tooling, train our engineering group on threat modeling, and lead threat modeling sessions for significant and sensitive headlining development projects

• Web application penetration testers join our in-house web pen testing team and pen test a wide range of web applications and their underlying cloud/web architectures and platforms. Operate and refine our automated, continual application and attack surface management pen testing systems.

Basic Qualifications

• Bachelor’s Degree required from an accredited, not for profit university or college (preferably in Computer Science, Cybersecurity or a related field)

• A track record of commitment to prior employers 

• Minimum 3 years total experience in a technical role such as software engineer or security engineer with at least 2 years as a software developer.

• Design, implementation, and operation of a secure software development lifecycle

• Experience with web application penetration testing and common attack vectors

• Experience with secure application development

• Experience with defense-in-depth strategies to help mitigate existing risk within applications

• Software development experience in a common programming language: C#, .NET Framework, Node, Web API

• Scripting experience - Python, PowerShell, GoLang, JavaScript, Terraform

• Security tooling automation in CI/CD pipelines and IDE interfaces

• Application security testing (DAST) through Metasploit, Burpsuite, OWASP ZAP, Acunetix, etc.

• Secure API development or management

Preferred Qualifications and Skills

• Strong communication skills with both software development and software leadership audiences

• In-depth understanding of various assessment tools

• Knowledge of infrastructure operations across databases, network, and system administration

• Ability to communicate with different levels of leadership conveying risk and driving urgency for risk remediation.

• Experience coordinating with application teams to drive security by design principles

• Ability to mentor and train team members to prioritize security efforts effectively

• A self-starter who can advance the application security program and follow-through ideas to completion.

• Hands-on experience implementing security tools into CI/CD pipelines.

• Experience testing serverless cloud deployments

What’s in it for You

When you join CoStar Group, you’ll experience a collaborative and innovative culture working alongside the best and brightest to empower our people and customers to succeed.

We offer you generous compensation and performance-based incentives. CoStar Group also invests in your professional and academic growth with internal training, tuition reimbursement, and an inter-office exchange program.

Our benefits package includes (but is not limited to):

• Comprehensive healthcare coverage: Medical / Vision / Dental / Prescription Drug

• Life, legal, and supplementary insurance

• Virtual and in person mental health counseling services for individuals and family

• Commuter and parking benefits

• 401(K) retirement plan with matching contributions

• Employee stock purchase plan

• Paid time off

• Tuition reimbursement

• On-site fitness center and/or reimbursed fitness center membership costs (location dependent), with yoga studio, Pelotons, personal training, group exercise classes

• Access to CoStar Group’s Diversity, Equity, & Inclusion Employee Resource Groups

• Complimentary gourmet coffee, tea, hot chocolate, fresh fruit, and other healthy snacks

We welcome all qualified candidates who are currently eligible to work full-time in the United States to apply.  However, please note that CoStar Group is not able to provide visa sponsorship for this position.

#LI-Hybrid

#LI-CT5

<br>

CoStar Group is an Equal Employment Opportunity Employer; we maintain a drug-free workplace and perform pre-employment substance abuse testing

Job Description

You will be a member of the Group Information Security Team responsible for ensuring that IT solutions are developed and designed with security inbuilt.

Key Responsibilities

• Provide security consultancy, technical guidance, expertise, solutions, and education for the enterprise.

• Advise IT application and infrastructure teams on application and infrastructure security design that is relevant and fit for purpose.

• Align security architecture frameworks and standards with business strategies and functions. Maintain Cyber risk management framework and perform assessment of applications for emerging areas like cloud security, machine learning etc.

• Advise and review application security design to detect potential security issues and for each issue, propose and drive remediation tasks. Develop application security blueprints. Propose and/or develop training courses to advance developers’ security knowledge.

• Advise and review security by design concepts in Cloud platforms such as GCP, AWS or Azure Cloud.

• Advise and review the compliance of integrating security tools and processes into the DevOps pipelines.

• Advice and review the adherence to security requirements for low code platforms.

• Perform threat modeling on security-critical applications. Keep up to date on emerging security threats and vulnerabilities on new platforms adopted by the SIA Group. Define scope and review the results of security tests, reviews, and audits to ensure security assurance is achieved.

• Manage individual project priorities, deadlines, and deliverables. Any relevant ad-hoc duties.

• Review RFP proposal compliance with security requirements.

• This is an individual contributor role. Strong communication skills are required.

• Note: You could be posted to any subsidiary in the SIA Group.

Requirements

• Degree in IT or related fields, with at least 7 years in information security, especially in the application security space.

• Professional security certifications (CISSP, CSSLP, CEH, CCSP, etc.) preferred.

• Technical proficiency in one or more of the following security areas: network design, zero trust, Internet of Things, cryptography, etc.

• Strong in-depth working knowledge of secure application development techniques. Secure by Design. Secure source code review. Prior experience with any of the following tools: Static Application Security Testing (SAST), Dynamic Application Security (DAST), and Software Composition Analysis (SCA).

• Strong understanding of Agile, DevSecOps, OWASP Top 10, and securing cloud platforms, such as AWS and GCP. Familiar with common web/mobile application vulnerabilities and technical knowledge to address and mitigate vulnerabilities.

• Knowledge of cyber security threats, vulnerabilities, hacking, and exploit methods, etc. Any prior vulnerability management experience is preferred.

• Strong understanding of technologies such as WAF, Anti Bot Protection

• Prior experience in application development and knowledge of the DevOps platform is desired.

• Strong oral, written, presentation and interpersonal skills.

• Possess a positive attitude with drive, initiative, enthusiasm, and a keen sense of urgency in resolving high-priority issues.

• Able to work independently and in a team-oriented, collaborative environment.

Roles & Responsibilities:

• Responsible for projects management, planning and design works
• Meeting clients & services providers on scope of service and conduct field surveys
• Handling project evaluation, budgets, documentation, technical specification and coordination
• Conduct analysis and selection of systems; evaluate project budgets
• Complete design documents & technical specifications
• Work coordination with other disciplinary teams including architectural, mechanical and electrical
• Assist in e-Submission to authorities for utilities services and related building regulatory submissions

Requirements:

• Degree in Civil Engineering accredited by Professional Engineer Board, Singapore.
• Minimum 3 years of experience in the industry, preferably in consultancy firm
• Able to work independently with minimal supervision
• Singaporean only

Company Overview

Kiteworks’ mission is to empower organizations to effectively manage risk in every send, share, receive, and save of sensitive content. To this end, we created a platform that delivers content governance, compliance, and protection to customers. The platform unifies, tracks, controls, and secures sensitive content moving within, into, and out of their organization, significantly improving risk management and ensuring regulatory compliance on all sensitive content communication. Kiteworks is carrying its bold vision forward while maintaining strong profitability and growth. This is a perfect time to join the company as it moved into a high growth phase and there are many opportunities to make a meaningful contribution to its future.

The Role

We are looking for a highly driven, talented, and self-motivated Senior Applications Security Engineer to be part of our growing application security team. You will be part of a team that is up to date on emerging security vulnerabilities and threats, and works toward improving the security of our products and our CI/CD environment and process.

Key Responsibilities:

• Develop automation and security tools to enhance the security posture.
• Research, evaluate, and integrate new security technologies/tools within CI pipelines.
• Perform STRIDE threat modeling before each product release.
• Provide consultation in design and security reviews for new features.
• Conduct product code reviews with a security-focused lens.
• Execute white box security scans and implement system/application hardening measures.
• Document security fixes and support customer service with security advisories.
• Maintain comprehensive documentation and handle CVE filings.
• Analyze reported vulnerabilities, assess risks using CVSS methods, and determine impact.

Job Requirements:

• Bachelor’s or master’s degree in computer science or computer engineering, specializing in cybersecurity.
• at least 2 years of hands-on experience in cybersecurity roles.
• In-depth knowledge of common web application vulnerabilities and mitigation strategies.
• Proven ability to validate and implement security fixes; manage bug bounty reports effectively.

Key Skills and Experiences:

• Demonstrated expertise in integrating security measures into CI/CD pipelines using Jenkins, GitLab, etc.
• Proficiency in executing and interpreting results from SAST and DAST tools.
• Strong background in Linux system hardening and implementing CIS security standards.
• Proficiency in PHP and Python for security-related tasks.
• Hands-on experience with blue team responsibilities like DFIR and security hardening.
• Familiarity with AWS and Azure; additional experience considered advantageous.
• Security certifications (e.g., SANS) are highly valued.

Desired Attributes:

• Exceptional analytical skills coupled with a meticulous problem-solving approach.
• Excellent written and verbal communication skills.
• Proven ability to convey complex technical concepts to diverse audiences.
• Passionate about Kitework’s domain and mission.

Compensation/Perks

You will be rewarded with a competitive compensation package, including excellent benefits and stock options. Other benefits include: medical, dental, and 18-21 days annual leave

Evotec is a leader in the discovery and development of novel small molecule drugs with operational sites in Europe, Asia and the US. The Company has built substantial drug discovery expertise and an industrialized platform that can drive new innovative small molecule compounds into the clinic. In addition, Evotec has built a deep internal knowledge base in the treatment of diseases related to neuroscience, pain, and inflammation. Leveraging these skills and expertise the Company intends to deliver superior science-driven discovery alliances with pharmaceutical and biotechnology companies.

We are looking for a full-time Senior Network and Security Engineer to join our team.  
 
Key responsibilities:
•    Responsible for the configuration, operation and fault clearance of the corporate WAN and LAN environment.
•    Design and Deployment of new sites and infrastructure.
•    Administration of the infrastructure of the central data centers and the Evotec sites and act as a contact for the network and security services used.
•    Provide 3rd tier support to local administration teams.
•    Plan, control, and implement changes to critical IT security and network infrastructures as part of a managed service.
•    Responsible for the documentation of the changes in the IT security and network environment.
•    Training of other administrators in the day to day functionality of the systems within their remit. 

Qualifications:

•    Completed IT-technical training or university degree.
•    Experience with network and firewall components (e.g. Cisco, Fortinet, Broadcom, F5, HP, Aruba) as well as with Windows networking.
•    Knowledge and experience in operation and troubleshooting in the following areas: Firewalls, VPN, Reverse Proxy, Load Balancers, Cloud Security, Cloud Services.

Evotec (US) Inc. is an Equal Opportunity Employer.  All qualified applicants will receive consideration for employment without regard to race, gender, age, disability, genetic information, gender expression, gender identity, national origin, religion, sexual orientation, or veteran status.

Evotec (US) Inc. is an Equal Opportunity Employer.  All qualified applicants will receive consideration for employment without regard to race, gender, age, disability, genetic information, gender expression, gender identity, national origin, religion, sexual orientation, or veteran status.

Who are we?