About us

What is it like to work in UC colors? One thing is for sure, all 350+ of our colleagues would say the same: unique and unrepeatable. Professional and language training, soft skill training, team-building abroad and at home, IT Fest, Balaton Circle on two wheels or two feet, kUCkó aka UC wellness centre, themed craft afternoons, charity painting. Be a part of this experience of a lifetime!

The client / the project

Our team is seeking a motivated IT Security Expert to join our small, cyber team. We define strategy, plan projects, identify risks, and are the central cyber management body. This role offers a challenging and rewarding environment, directly impacting our organization's security. The IT Security Expert will maintain a strong technical security posture, enforce policies, manage cybersecurity information, and proactively work to prevent incidents. This role combines operational tasks, advisory responsibilities, and project work.

Responsibilities

• Responsibilities of the IT Security Team (good to have experience in some):
• Incident Management: Monitor security mailboxes, manage incidents, and coordinate with the SOC.
• SecOps Administration: Administer security tools (e.g., , Qualys, CybeReady), manage access, and perform administrative tasks (budgeting, reporting).
• Patch and Vulnerability Management: Maintain vulnerability scann coverage, licence set, and remediation efforts.
• Security Advisory: Contribute to policy creation, maintain documentation, and conduct security assessments.
• Security Awareness: Develop and deliver training programs and phishing campaigns.
• Audit Support: Assist with compliance audits and other security audits.
• Risk Management: Perform risk assessments, create and monitor security findings, and administer related tasks.
• Cyber Security Projects: Deliver ad-hoc mini-projects, such as reviewing application password settings, gathering information for DLP policies, and testing solutions in a sandbox environment.
• Penetration Testing: Coordinate penetration test engagements, managing special access, schedules, re-tests, and tracking findings.
• Patch and Vulnerability Management.
• Vulnerability Remediation: Define and implement actions to remediate vulnerabilities identified by Qualys scan results.
• Security Baselines: Define, monitor, and enforce proper security baselines (hardening policies).
• Development Vulnerability Management: Manage vulnerability scanning and remediation within the development lifecycle.
• Product Security: Manage and oversee product security initiatives.
• Security Architecture: Provide security architecture guidance and support.
• NIS2 Compliance: Deliver NIS2-driven policies, requirements, controls, and tool implementation.
• NIS2 Tasks: Drive NIS2-related tasks in close cooperation with developer team leads and product managers.

Technologies / Skills

• 4+ years of experience in Information Security.
• Degree in IT or IT Security, or relevant certifications (CISA, CISM, CEH, CISSP preferred).
• Strong understanding of cybersecurity concepts and best practices.
• Experience with security.

Why join us

• Work in a small team with enthusiastic, motivated, experienced colleagues and cutting edge technologies.
• Participate in relevant training and certification to acquire and maintain the knowledge to be effective.
• Our mission and core values match your own and motivate you.
• Great company environment that is serious about having fun in almost everything we do, including frequent team events and more.
• Informal, entrepreneurial and flexible atmosphere where thinking out-of-the-box is highly encouraged.