IT SECURITY ANALYST III - Linux

This job requires to be based in/close to Prague. We currently work in a hybrid model and meet in our office 3 days a week.

We are looking for an experienced, senior IT Security Analyst who supports the strengthening of our Linux/Unix security posture, focusing on one or more of the following: risk management, regulatory compliance, threat security policy development and enforcement..

In this job you are accountable for

• Risk Management: Brings advanced level skills to assess the information security risk associated with existing and proposed business operational programs, systems, applications, practices and procedures in very complex, business-critical environments. May conduct and document very complex information security risk assessments. May assist in the creation and implementation of security solutions and programs.

• Regulatory Compliance: Brings advanced level skills to manage programs to establish, document and track compliance to industry and government standards and regulations, e.g. ISO-27001, PCI-DSS, HIPAA, FedRAMP, GDPR, etc. Researches and interprets current and pending governmental laws and regulations, industry standards and customer and vendor contracts to communicate compliance requirements to the business. Participates in industry forums monitoring developments in regulatory compliance.

• Mentoring and training other team members.

• Compilation of information and reporting for management.

• Up to 20% yearly salary bonus - based on both individual and business performance
• Sick leave compensation
• 1 extra week of annual leave above your legal entitlement of 4 weeks of annual leave of paid leave to support your well-being and family life
• Pension insurance contribution
• Cafeteria benefit system & Multisport card
• Training and Development Plan, supported by certified training and learning platforms like Udemy, Pluralsight and O’Reilly
• Referral Bonus
• Flexible work time

• Excellent knowledge of Linux, Unix, AIX

• Knowledge or experience with Active Directory, LDAP

• Monitors and evaluates systems and procedures to protect systems from unauthorised access

• Perform and review technical risk assessments

• Support the design and implementation of privileged access management systems

• Document technical processes and procedures including regular revision of support / knowledge documents

• Develop company-wide best practices

• Research security enhancements and make recommendations

• Excellent knowledge of coding languages like PowerShell, Python, Bash to write and update scripts

• Reporting progress to stakeholders on a regular basis

• 8 years of experience working on Linux/Unix in a large-scale organization

• Prior experience with Privileged Access management tools (CyberArk)

• Prior experience with SIEM technologies; arcsight, splunk, qradar

• Prior experience with Microsoft Azure cloud

• RHCSA, RHCE certifications

• Knowledge/Experience with compliance frameworks (e.g., ICFR, SOX)