• Act as the technical focal point for critical incidents and complex problems, and document them in the ITSM tool; • Perform advanced troubleshooting in FortiGate and FortiWeb environments; • Define and review security architectures and policies (firewall and WAF); • Implement and optimize security rules, VPNs and integrations; • Analyze security events and support incident response; • Provide technical support to mid-level and junior analysts and serve as a team reference; • Interact directly with customers in critical and strategic situations; • Create and evolve technical procedures, standards and best practices; • Drive continuous improvement of environments and operational processes; • Ensure technical quality of deliverables and comprehensive documentation of support activities; • Train and transfer knowledge to the technical team across all shifts, including procedures for off-hours support.

• Execute security testing on web applications, APIs, infrastructure, and cloud environments under supervision. • Assist with reconnaissance and attack surface mapping activities. • Participate in Red Team exercises and controlled attack simulations. • Perform analysis and validation of vulnerabilities identified by automated scanners. • Support Threat Hunting activities using SIEM, EDR data, and threat intelligence sources. • Investigate indicators of compromise (IOCs) and suspicious behavior. • Prepare technical documentation and executive reports on vulnerabilities and findings. • Collaborate with development and infrastructure teams to provide guidance on remediation. • Keep up to date with trends, TTPs (MITRE ATT&CK), campaigns, and new techniques used by malicious actors. • Take part in security research and development of proofs of concept (PoCs).

Role Description You don’t want to cry when you hear about WannaCry? Loki isn’t only a German firegod to you? You know what Meltdown/Spectre are, maybe you even know what cryptojacking is? Then the following position is for you! If you join us, your daily tasks will be as follows: - Detection, analysis and management of security incidents - Making and evaluating reports - Monitoring the customer’s environment - Tracking IT security issues (vulnerabilities, 0day exploits, malware) and making/fitting the rules for detecting them in the client's environment - Change and incident management - Analysis of malicious code in sandbox Qualifications - If you love to learn and you have a need for continuous development - If you know network models (OSI, TCP/IP) - If you know how operating systems work (Windows, Linux) - You speak English on business level - You are fluent in Hungarian - It's not a problem if you have to spend about one-third of your working hours in shifts - You have basic knowledge of script languages: python, bash, JS and so on - You are familiar with the logs of security systems: proxy, AV, WAF, IDS, Webserver, DNS - You've done PCAP analysis Benefits - Please be informed that our remote working possibility is only available within Hungary due to European taxation regulation. Company Description As Hungary’s most attractive employer in 2025 (according to Randstad’s representative survey), Deutsche Telekom IT Solutions is a subsidiary of the Deutsche Telekom Group. The company provides a wide portfolio of IT and telecommunications services with more than 5300 employees. We have hundreds of large customers, corporations in Germany and in other European countries. DT-ITS received the Best in Educational Cooperation award from HIPA in 2019, acknowledged as the Most Ethical Multinational Company in 2019. The company continuously develops its four sites in Budapest, Debrecen, Pécs and Szeged and is looking for skilled IT professionals to join its team.

Role Description As a GRC Security Analyst, you will serve as a fully qualified, experienced professional responsible for ensuring Clear Capital adheres to all relevant security standards, regulations, and policies within the highly regulated mortgage lending and appraisal industry. You will play a critical role in maintaining our Governance, Risk, and Compliance (GRC) posture. What you will work on: - Monitoring and enforcing compliance with critical security frameworks (such as NIST CSF, NIST RMF, ISO 27001/27002, SOC 2, ISO 42001) and industry-specific regulations (such as GLBA, CCPA, GDPR) pertinent to the financial services and real estate valuation sectors. - Conducting comprehensive risk assessments of diverse scope to identify security vulnerabilities, evaluating the effectiveness of existing controls, and resolving a wide range of issues using judgment and interpretation. - Developing, maintaining, and adapting security policies, procedures, and guidelines in alignment with industry best practices, client contractual requirements, and mortgage lending regulatory standards. - Leading preparation and participation for internal and external security audits, adapting existing approaches to resolve audit findings based on limited information and precedent. - Enhancing relationships with cross-functional teams to develop and implement remediation plans for identified security gaps and weaknesses. - Evaluating the security posture of third-party vendors and assessing their compliance with contractual security requirements to protect sensitive financial and property data. - Maintaining accurate records of compliance activities, findings, and remediation efforts, creating comprehensive reports for management, clients, and regulatory authorities as needed. - Defining qualitative and quantitative metrics to assess the success of the security program and provide regular reports to security and business leadership. - Staying abreast of emerging security threats, technologies, and regulatory changes in the financial and real estate tech space. - Other relevant duties as assigned. Qualifications - A minimum of 5 years of related experience in GRC, security compliance, or risk management roles with a Bachelor’s degree; or 3 years and a Master’s degree; or equivalent work experience. - Complete knowledge and full understanding of relevant security frameworks and standards (e.g., NIST CSF, SOC 2, ISO 27001, ISO 42001) and data privacy regulations (GLBA, GDPR, CCPA). - Relevant industry certifications: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Artificial Intelligence Governance Professional (AIGP), or equivalent. - Sophisticated analytical and problem-solving skills, with the ability to assess diverse, unusual, and complex security issues and develop effective solutions independently. - Strong communication and interpersonal skills, with a proven ability to persuade differing audiences and advise senior stakeholders on difficult compliance matters. - Familiarity with GRC technologies (i.e., Vanta, Drata, OneTrust, etc.), risk assessment tools, and practices specific to maintaining data integrity and confidentiality in the financial services or appraisal management industry. - Detail-oriented focus on accuracy and thoroughness in documentation, reporting, and policy formulation. - Commitment to maintaining the highest standards of confidentiality, integrity, and professionalism. - Capacity to understand legacy and progressive technology and security controls along with respective risks. Working knowledge of technologies such as cloud computing, DevOps, and application security is required. - Advanced proficiency in utilizing spreadsheets for comprehensive data analysis, audit metric tracking, and complex compliance reporting. Benefits - Compensation: The base salary for this position ranges from $114,000 to $139,000 annually, depending on your location, experience, and qualifications. - Additional compensation offerings include company profit-sharing bonus program, communication stipends, and referral bonuses. - Inclusive benefits package offering: - Comprehensive medical, dental, and company paid vision insurance. - 401(k) retirement plan with employer match. - Voluntary life and AD&D insurance options. - Voluntary supplemental insurances for accident, critical illness, and legal services. - Paid time off (PTO) and paid holidays. - Employee assistance and wellness programs. - Company paid short term disability coverage. - Company contributions to health saving funds (with participation in the high deductible health plan). - Company paid access to Galileo for virtual primary care and Rula for virtual mental health resources. - Through our Anniversary Program, we celebrate the meaningful milestones and long tenure that reflect how much we value your contributions and commitment to our team. - Career and skill development resources to help advance your career and personal growth. - A mission-driven environment where your work makes a measurable impact on the real estate industry. Company Description Clear Capital is a national real estate analytics, data solutions and valuation technology company with a simple purpose: to build confidence in real estate decisions to strengthen communities and improve lives. Our goal is to provide customers with a complete understanding of nearly every U.S. property through our AI-driven analytics, data solutions, valuation services and automated appraisal review platforms. Our commitment to excellence - wherever it leads, whatever it takes® - is embodied by our team members across our brands and has remained steadfast in this pursuit since our first order in 2001. Clear Capital is an equal-opportunity employer.