Security Engineer
Work set-up:
Full Remote
Experience:
Mid-level (2-5 years)
Offer summary
Qualifications:
Minimum 3 years of experience in security, systems, or DevOps engineering., Strong knowledge of authentication and authorization protocols like SAML, OIDC, and SCIM., Experience with IAM and PAM solutions, including administration and support., Proficiency in Linux administration, Kubernetes, and automation scripting with Python..Key responsibilities:
- Manage and support IAM (Keycloak) and PAM (Teleport) systems as the main administrator.
- Collaborate with DevOps teams to integrate security processes into workflows.
- Monitor and enhance infrastructure security and compliance using monitoring tools.
- Implement new security tools, services, and best practices across the organization.
Job description
Overview:
SOFTSWISS is hiring a Security Engineer to join our Infrastructure Security team.
Purpose of the role:You will manage and improve the company’s IAM and PAM systems, drive automation of access and security processes, collaborate with DevOps teams to embed security into workflows, and contribute to strengthening infrastructure security and compliance across the organisation.
Key responsibilities:
- Support and develop the current IAM solution (Keycloak) as the main administrator and L3 support
-
- Support and develop the PAM solution (Teleport) as the main administrator and L3 support
-
- Monitor and maintain systemapplication metrics related to IAMPAM (e.g. authentication flows, login failures)
-
- Enhance and maintain automation for security and access provisioning operations
-
- Collaborate with system engineers to integrate IAMPAM into DevOps workflows
-
- Monitor and improve infrastructure security and compliance using opensource monitoring tools
-
- Implement new security services, tools, and best practices across the company
-
Required Experience:
- 3+ years of experience as a SecuritySystemDevOps engineer, or relevant experience
-
- Strong knowledge and understanding of authenticationauthorisation protocols:
- Mandatory: SAML, OIDCOpenID, SCIM
-
- Nice to have: LDAP, Kerberos, EAPTLS
-
-
- Experience in administering Identity and Access Management (IAM) or Privilege Access Management (PAM) solutions
-
- Experience with AAA diagnostics
-
- Strong Linux administration skills (especially with sudoers, facl, auditd)
-
- Solid Kubernetes administrator skills (in terms of Groups, Roles, RoleBindings)
-
- Good understanding of IT monitoring tools (Prometheus, Grafana, VictoriaMetrics)
-
- Experience with Python scripting for automation and infrastructure management
-
- Basic experience with IaC (SaltStack, Terraform, Ansible); interest in IaC
-
- Clear written and verbal communication skills
-
- Intermediate or higher level of English and Russian
-
Our Benefits:
- Fulltime remote work opportunities and flexible working hours
-
- Private insurance
-
- Additional 1 Day Off per calendar year
-
- Sports program compensation
-
- Comprehensive Mental Health Programme
-
- Free online English lessons with a native speaker
-
- Generous referral program
-
- Training, internal workshops, and participation in international professional conferences and corporate events.
-
- 3+ years of experience as a SecuritySystemDevOps engineer, or relevant experience
- Strong knowledge and understanding of authenticationauthorisation protocols:
- Mandatory: SAML, OIDCOpenID, SCIM
- Nice to have: LDAP, Kerberos, EAPTLS
-
- Experience in administering Identity and Access Management (IAM) or Privilege Access Management (PAM) solutions
- Experience with AAA diagnostics
- Strong Linux administration skills (especially with sudoers, facl, auditd)
- Solid Kubernetes administrator skills (in terms of Groups, Roles, RoleBindings)
- Good understanding of IT monitoring tools (Prometheus, Grafana, VictoriaMetrics)
- Experience with Python scripting for automation and infrastructure management
- Basic experience with IaC (SaltStack, Terraform, Ansible); interest in IaC
- Clear written and verbal communication skills
- Intermediate or higher level of English and Russian
-
- Fulltime remote work opportunities and flexible working hours
- Private insurance
- Additional 1 Day Off per calendar year
- Sports program compensation
- Comprehensive Mental Health Programme
- Free online English lessons with a native speaker
- Generous referral program
- Training, internal workshops, and participation in international professional conferences and corporate events.
-
Our Benefits:
- Mandatory: SAML, OIDCOpenID, SCIM
Required Experience:
Required profile
Experience
Level of experience: Mid-level (2-5 years)
Industry :
Computer Software / SaaS
Spoken language(s):
EnglishRussian
Check out the description to know which languages are mandatory. Other Skills
- Communication
Security Engineer Related jobs
Security Engineer Infrastructure (m/w/d)
Security Engineer Infrastructure (m/w/d)
Today
DATEV eG
- From: Germany (Full Remote)
- Full time
Cloud ComputingIncident ResponseIT SecurityThreat Detection
Product Solution & Security Engineer
Product Solution & Security Engineer
Today
Dotmatics
- From: Canada (Full Remote)
- Full time
Security TestingSoftware SecuritySecurity ImplementationProject Integration
Remote: Fire Protection Engineer (BIE)
Remote: Fire Protection Engineer (BIE)
Today
Planate Management Group
- From: Florida (USA) (Full Remote)
- Full time
Fire SafetyFire ProtectionBuilding Design
Product Solution & Security Engineer
Product Solution & Security Engineer
Today
Dotmatics
- From: United Kingdom (Full Remote)
- Full time
Security TestingSoftware SecuritySecurity ImplementationProject Integration
Databricks Security Engineer, Senior (Security Clearance) -Remote work local to DC Metro or FL
Databricks Security Engineer, Senior (Security Clearance) -Remote work local to DC Metro or FL
Today
ICF
- From: Florida (USA), Virginia (USA) (Full Remote)
- Full time
Data ModelingDatabricksCyber Risk