Select which cookies you accept
When you visit this website, it may store or retrieve information on your browser, mostly in the form of cookies. This information might be about you, your preferences or your device and is mostly used to make the website work as you expect it to. The information does not usually directly identify you, but it can give you a more personalized web experience.
Because we respect your right to privacy, you can choose not to allow some types of cookies. Below is a list of different categories of cookies that may be set and that you can freely change. However, blocking some types of cookies may impact your experience of the site and the services we are able to offer.
These cookies are required and must be accepted to use this site.
These cookies collect data about how visitors use this website.
These cookies allow the website to remember choices you make and provide enhanced, more personal features.
These cookies are used to deliver adverts more relevant to you and your interests.
You'll be responsible to make all our eco-system more secure by protecting system boundaries, keeping computer systems and network devices hardened against attacks and securing highly sensitive data.
We usually respond within
Security Engineer (f/m/d)
Stratio is the World’s Leading Real-time Predictive Fleet Maintenance Platform. The company's proprietary technology combines large-scale processing with the latest machine learning techniques to prevent hundreds of thousands of breakdowns from happening every day, thus saving millions of people from the hassle of public transportation delays, postponed deliveries, or late arrival of essential goods. Stratio’s platform enables zero downtime for 5 of the 10 largest transportation companies in the world and, in 2021, raised an investment of $12 million to boost leadership in predictive fleet maintenance. Fleet operators in Europe, North America, Asia-pacific, and Latin America trust Stratio’s technology to fully leverage the data under the hood to safeguard operations, and keep customers happy. Stratio’s technology has enabled transportation for 1.3 billion people so far.
Your contribute to a #zerodowntimefuture
You will be responsible to make all our eco-system more secure by protecting system boundaries, keeping computer systems and network devices hardened against attacks and securing highly sensitive data.
As Security Engineer you will
Audit applications and systems, through penetration testing and vulnerability management;
Propose remediation measures and help with their adoption;
Provide security guidance through the development lifecycle and help maintain and improve our Secure Software Development Life Cycle;
Be a security subject-matter expert (SME) and help development teams with their security needs;
Perform threat modelling (e.g., using STRIDE);
Provide internal security training sessions, focused in the engineering users;
Develop tools to automate security tasks;
Implement mechanisms to identify security threats (IOCs and TTPs) in the environment;
Monitor alerts and escalate issues as needed;
Work in conjunction with other teams in incident response activities;
Develop security standards and practices;
Recommend security enhancements to existing processes and tools;
Develop, maintain, configure, and troubleshoot (as needed, e.g.) SIEM tools;
Collaborate with key stakeholders to gather security requirements and ensure implementation;
Report findings to management;
Provide operational support of various security technologies;
Work closely with all teams to improve the overall security posture of Stratio.
This is what we believe is needed for this role
Proven work experience as a system security engineer or information security engineer;
Experience in building and maintaining security systems;
Detailed technical knowledge of database and operating system security;
Knowledge in cryptographic concepts;
Understanding of OWASP Top 10 security flaws;
Hands-on experience in security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, etc;
Experience with network security and networking technologies and with system, security, and network monitoring tools;
Thorough understanding of the latest security principles, techniques, and protocols;
Familiarity with web-related technologies (Web applications, Web Services, Service-Oriented Architectures) and of network/web related protocols;
Degree in Computer Science or related field;
Security-related certification is a plus;
Fluency in English.
Coding experience in one or more general-purpose languages (e.g., Java, Ruby, Python);
Experience with Infrastructure as Code (Terraform and / or Ansible preferred);
Experience with common infrastructure cloud providers;
Experience in conducting security tests in web and mobile applications;
Experience with malware detection and analysis;
Experience with forensic analysis;
Experience with SIEM tools;
Experience with SAST / IAST / DAST tools;
Strong understanding of cybersecurity standards and frameworks, e.g., ISO27001, NIST, CIS, OWASP, SANS;
Certifications such as OSCP, CISM, CISSP, GSEC.
What we offer
Fringe Benefits Policy;
Flexible Work Hours - adjust your schedule to your needs;
Work Setup - remote, hybrid, onsite - if your job can be done remotely, and you prefer to, you’re free to choose;
Hardware and software for a full remote setup;
Quarterly Events to discuss Strategy;
Autonomy and Ownership Culture;
Continuous feedback culture;
Remote / Hybrid / Lisbon / Coimbra
What you can expect from the recruitment
Screening call with HR
1st Interview (1h) HR and Hiring Manager We want to get to know you better and navigate through your experience, skills and motivation.
Technical Interview(1-2h) Hiring Manager and team members Deep dive into your skills and assessment of your technical knowledge.
Cultural Fit Interview (1h) HR Manager and one of our Founders Validate the cultural fit between you and Stratio and make sure you’re the person we’re looking for to help us build a #zerodowntimefuture.
We want inspiring individuals in our teams, where age, race, gender, sexual orientation, politics and religion do not matter, and seek to create a tolerant and open space for everyone. We thrive to provide an inclusive and trustworthy environment.
You can find our Culture Manifesto and more team information here.