getirfinans operates within Banking as a Service model, having established partnerships with players at banking sector.

What You’ll Be Doing

• Securing our Private Cloud (OpenShift, VMware) by leveraging cloud security solutions
• Hardening and managing Linux, Windows, and macOS systems
• Designing, optimizing, and implementing WAF & IPS security policies
• Protecting company data with database activity monitoring and enterprise DLP solutions
• Driving Blue Team–focused security projects using NIST & MITRE ATT&CK frameworks
• Leading Purple Team exercises to bridge defensive and offensive capabilities
• Enhancing detection and response with SIEM & security automation projects
• Managing and optimizing the SIEM solution, with a strong emphasis on Splunk, in cooperation with our MSSP partner
• Integrating log sources through methods such as syslog, regex parsing, and database log ingestion
• Performing incident analysis and coordinating event response in cooperation with the MSSP to effectively mitigate threats
• Conducting threat hunting activities and assisting in developing threat intelligence strategies using the existing SIEM environment
• Collaborating with the team to adopt a Blue Team approach, enhancing defensive measures
• Mentoring and guiding team members on emerging technologies, proof-of-concepts (PoCs), and internal projects

What You’ll Bring

• A minimum of 7 years of experience in the IT industry, with at least 5 years in cyber security and security product administration
• Expertise in private cloud and container security
• Demonstrated experience in log integration and incident handling, along with familiarity with advanced threat detection techniques
• Strong analytical skills with a problem-solving mindset
• Fluency in English, with excellent written and verbal communication skills
• Strong understanding of the MITRE ATT&CK Framework, NIST, ISO 27001, or similar security standards
• Strong hands-on Linux security experience
• Strong understanding of Windows and macOS security fundamentals
• Experience in DLP and network security policy management (WAF, IPS)
• Proven Blue Team operations background and Purple Team collaboration mindset
• Holding certifications such as CISSP, CISM, CCSP, CKAD, OSCP, or GIAC is a plus
• Up-to-date with cybersecurity trends and adaptable to new technologies
• Research-oriented and eager to learn
• Comfortable working in a fast-paced startup culture

Diversity makes us stronger. Our diverse cultures, backgrounds, beliefs, values, abilities, and lifestyles help us learn from each other. We’re proud to strive for a genuinely diverse and inclusive workplace. We know we can do better though. That’s why we hire and promote people with equity and equality in mind.

We will process your personal data as part of our recruitment procedures. To find out more, please consult our Candidate Privacy Notice.