Startup Jobs
Post a Job
CEX.IO

Information Security Specialist

full-time Remote

AI overview

Ensure robust security operations by maintaining a comprehensive security infrastructure and proactively identifying vulnerabilities while leading compliance initiatives across regulatory standards.

We are looking for a hands-on Information Security Specialist whose focus will be to ensure implementation of appropriate controls and to continuously maintain and protect the confidentiality, integrity, and availability of company information assets. The position combines technical expertise with the development and enforcement of internal and regulatory security standards.

Responsibilities: 
Security Operations & Engineering:

  • Administer and maintain the full security infrastructure stack (e.g., Endpoint Protection, SIEM, DLP, IDS).
  • Develop and enforce internal standards for secure system and network configuration.
  • Proactively identify and remediate vulnerabilities across the organization.

Threat Management & Incident Response:

  • Monitor and analyze security events, developing methods for advanced threat detection and rapid response.
  • Lead or participate in security incident investigations and digital forensics.
  • Manage and monitor access controls and user identities for all critical information systems.

Governance & Compliance: Lead or support initiatives to ensure comprehensive regulatory compliance (e.g., PCI DSS, ISO 27001, GDPR, and DORA).

Requirements: 

  • Experience & Education: A minimum of 2 years of hands-on experience in Information Security is required. This must be paired with either a Degree in Computer Science (or a related field) OR 5+ years of direct, relevant experience in the security domain.
  • Security Tool Proficiency: Proven, practical experience in administering and utilizing core security infrastructure tools, including Endpoint Protection, IDS/IPS, Network/Web Application Scanners, and DLP solutions.
  • System & Network Security: Demonstrated proficiency in configuring and securing UNIX/Linux operating systems. Must possess a strong working knowledge of network architecture and operations.
  • Cloud & Containerization: Hands-on experience working with major cloud environments (AWS, Google Cloud, or DigitalOcean) and familiarity with containerization technologies (Docker, Kubernetes).
  • Advanced Security Practices: Basic understanding of penetration testing methodologies.
  • Threat Management: Experience participating in security incident investigations and adhering to best practices for digital evidence handling.
  • SDLC & Compliance: Understanding of Secure Development Lifecycle (SDLC) concepts and practices. Familiarity with key international security standards like PCI DSS, ISO 27001, GDPR, and DORA.
  • Emerging Technologies: Basic understanding of blockchain principles and associated security considerations.



CEX.IO
View all jobs
Get hired quicker

Be the first to apply. Receive an email whenever similar jobs are posted.

Ace your job interview

Understand the required skills and qualifications, anticipate the questions you may be asked, and study well-prepared answers using our sample responses.

Information Security Specialist Q&A's
Report this job
Apply for this job