Information Security Lead in Delasport

Delasport — Implementing Technological Solutions Here and Now.Delasport is an iGaming Software company providing Sports Betting & Online Casino software, and turnkey B2B solutions. Established in 2010, Delasport delivers a one-stop-shop solution of Sports Betting and Online Casino from a White-Label, with a full range of management services to a Plug&Play iFrame and a complete Turnkey. We are establishing an R&D center in Kyiv, and are looking for top talents to join our team.RESPONSIBILITIESMonitor compliance with information security and privacy policies at a technology companyConduct vendor security assessments and reviews to ensure our partners align with security standardsReview security clauses in customer and vendor contracts to ensure proper alignment with policies and regulationsProvide, review, and enhance security training and awareness programs for internal teamsManage the organization's technological risk assessments, identifying potential vulnerabilitiesHelp security leaders identify, assess, and mitigate organizational risks by developing strategiesDevelop and implement best practices for assessing and evaluating IT and security controls within the company and third-party businessesManage the end-to-end process of penetration testing and technical risk assessmentsSupport the business with customer engagements, including attending calls and supporting sales teamsREQUIREMENTS5 years of experience in application security and network security, including the understanding of application security attacks, vulnerabilities, and mitigationsKnowledge of common Web Application security vulnerabilities (OWASP TOP10, SANS 25, etc.)Proficiency with cloud security principles and best practices (e.g., AWS, Azure, GCP), experience with DevOps, SRE, Kubernetes, Containers, and CI/CDHands-on experience in the implementation and maintenance of Palo Alto / Checkpoint Firewall systems and a deep understanding of working with L2/L3/L7 PoliciesFamiliarity with security tooling such as WAF, FW, CSPM, CNAPP, EDR, SIEM, SOAR, DLPAbility to conduct investigations into information security events – analysis of network and application-based events, issuing IOCs and implementing them in the systemsAbility to work autonomously, taking ownership of security challenges and driving solutionsExcellent communication skills and ability to effectively communicate security risks and recommendations to technical and non-technical stakeholders Fluent in EnglishWHAT WE CAN OFFER YOUModern office in Podil with an uninterruptible power supply and the InternetPersonal time off (21 business days of paid vacation, paid days on special occasions, sick leaves, emergency days off)Public holidaysHealth insurance with the broker which is available from the first month of cooperationLife insurance with the broker which is available from the first month of cooperationModern technical equipmentEnglish courses with native speakersUkraine-based educational programsSports activities reimbursementCorporate entertainmentsHappy hours on FridaysGig contract support Show moreShow LESS Official level Not applied Type of employment Full -time Job responsibilities Engineering Industry Construction work