Junior Security Engineer (Application & Infrastructure Security)

Компания "Научсофт"

Nauchsoft is an international IT consulting and software development company. We have been in the IT business for 36 years and continue growing.

We are expanding our Cyber Security capabilities and are looking for a Junior/Junior+ Security Engineer to join the team. This role is prospective and has been created in line with the company’s planned team expansion.

This role is designed for a motivated security professional who wants to grow in both application and infrastructure security. You will work across multiple security domains, gain hands-on experience with real environments, and gradually expand your responsibilities.

We value candidates who are proactive, eager to learn, and capable of quickly adapting to new challenges.

You will contribute across several areas, including:

• Supporting secure development practices and reviewing applications from a security perspective;

• Assisting in network security analysis and troubleshooting;

• Supporting Windows and Linux systems from a security standpoint;

• Participating in infrastructure security monitoring and improvement initiatives;

• Contributing to vulnerability analysis and remediation activities;

• Collaborating with engineering teams to strengthen overall security posture.

Security Fundamentals:

• Understanding of the CIA Triad (Confidentiality, Integrity, Availability);

• Knowledge of Cyber Kill Chain and MITRE ATT&CK framework;

• Basic cryptography concepts;

• Symmetric & asymmetric encryption;

• Hashing;

• TLS/SSL.

Networking:

• Strong understanding of TCP/IP stack;

• Knowledge of DNS, HTTP/HTTPS;

• Ability to analyze network traffic (Wireshark, tcpdump);

• Understanding how firewalls and IDS/IPS operate.

Operating Systems:

• Confident Linux CLI usage:

• File system;

• Permissions;

• Logs;

• Process management;

Basic Windows knowledge:

• Event Logs;
• Active Directory fundamentals;
• Windows registry basics.

Tools & Practical Experience:

• Hands-on experience with at least some of:

• Nmap;

• Burp Suite Community;

• Metasploit;

• Familiarity with monitoring systems (e.g., Splunk, Wazuh, QRadar – nice to have);

• Ability to write simple automation scripts in Python or Bash;

• Ability to read and understand code for vulnerability analysis.

• Exposure to cloud platforms (AWS/Azure/GCP) and their security basics;

• Participation in bug bounty programs or CTF platforms (TryHackMe, Hack The Box, etc.);

• Personal home lab experience (VirtualBox/VMware, Kali Linux, etc.);

• Basic understanding of AWS security services.

• 1+ year of experience in cybersecurity, IT security, or related technical role;

• Junior-level position with growth potential;

• English B2+.

Открыть контакты работодателя

Зарегистрируйтесь или войдите, чтобы открыть контакты работодателя