Security Engineer

Sofia Stars is an operational services company based in Sofia. We offer a range of solutions for online businesses, including R&D, Marketing, Customer Support, KYC, Risk, and Anti-Fraud services. With 300+ bright stars on our team, we deliver secure, reliable solutions with a touch of quality that shines. When you join us, you’ll be part of a place where ideas light up, and growth isn’t just a promise — it’s a journey.

‼️ Important: This is an on-site position. Remote or hybrid work is not available. Candidates must either already be in the location or be willing to relocate. The relocation support will be provided if necessary.

We invite a Security Engineer.

✅ Requirements:

Must-Have:

✔️ 5 years of experience in IT infrastructure administration or information security roles.

✔️ Advanced administration of macOS, Windows, and Linux operating systems, including secure configuration, system hardening, access control management, and troubleshooting at the OS level.

✔️ Understanding of networking fundamentals, including IP networking, routing, switching, and network protocol behaviour relevant to security analysis.

✔️ Basic knowledge of regulatory requirements and standards such as ISO27001, ISO27701, PCI DSS, GDPR, and others.

✔️ Administration and configuration of EDR/XDR platforms, including policy management, detection rule tuning, incident investigation, and endpoint threat response.

✔️ Configuration and administration of enterprise VPN solutions, including secure remote access management, authentication policies, and network access control.

✔️ Administration and tuning of DLP systems, including policy development, data classification integration, and monitoring of data exfiltration risks.

Nice-to-Have:

✔️ Proficiency in working with any kind of simple scripts: bash, PowerShell or Python, etc..

✔️ Understanding of the basic principles of virtualisation platform functionality.

✔️ Experience in complex implementation or support projects of enterprise information security solutions (any solution classes from the list): MDM, SIEM, DLP, PAM, NGFW, Endpoint Security. Etc..

✔️ Experience with deployment and administration of IDS/IPS solutions, including rule tuning and network threat detection.

✔️ Experience with PaloAlto, Digital Guardian, OpenVPN security solutions.

✅ Responsibilities:

System Administration:

✔️ Manage security systems: DLP, XDR, Network VPN gateway.

✔️ Implement and maintain security control policies to enhance security.

✔️ Keep security system infrastructure updated and patched.

✔️ Integrate security systems with new IT solutions and assets.

✔️ Debug issues related to the security systems software - cooperate closely with vendor support.

Monitoring and Analysis:

✔️ Continuously monitor network activity, systems load.

✔️ Monitor and review vendor notifications about Saas security system maintenance, critical vulnerabilities, new releases and features.

✔️ Identify and analyze potential threats and vulnerabilities in the security systems.

Incident Response:

✔️ Respond to security incidents and provide 2-3 levels of support for the SOC team, coordinating incident response efforts.

✔️ Escalate incidents to other teams as necessary.

Reporting, Documentation, and Continuous Improvement:

✔️ Prepare tech documentation after implementation of new security controls, system configurations.

✔️ Create basic instructions for security software for end users.

✔️ Suggest improvements to security system configuration and incident mitigation.

✔️ Participate in post-incident reviews and propose enhancements.

✅ We offer excellent benefits, including but not limited to:

🏖️ Up to 25 vacation days;

🤒 6 Undocumented Sick Leave Days;

💷 Monthly food vouchers (102 EUR);

🏥 Private Medical Insurance;

🏋🏼 Multisport Card;

🎁 Birthday, Wedding and Newborn gifts;

🍔 Breakfast, Friday lunches, fruits, and snacks in the office;

🎭 Monthly company activities and team-building events;

🚀 Career growth opportunities.

Ready to shine? Let’s make it real.