TEB Sh. A is one of the most reputable banks in Kosovo, and it is part of a recognized banking brand in Turkiye supported by the international power of BNP Paribas.

TEB is now seeking two qualified candidates for the position of Security Engineer in the Head Office.

Primary Responsibilities:

• Support IAM processes, including user lifecycle management, provisioning, modification, and de-provisioning
• Implement, configure, and maintain core security technologies, including IAM/IGA, EDR/XDR, PAM/PSM, SIEM/SOAR, and DLP solutions across the Bank’s infrastructure
• Fine-tune and continuously improve detection rules, correlation use-cases, and automated response playbooks to enhance threat detection and reduce false positives
• Support onboarding of systems, applications, and log sources into SIEM and monitoring platforms, ensuring full visibility of critical assets
• Manage and monitor endpoint security controls, ensuring effective detection, containment, and response to threats
• Support Identity and Access Management processes, including user provisioning, access modification, de-provisioning, and periodic access recertification campaigns
• Enforce least privilege and segregation of duties principles, identifying and remediating access-related risks
• Configure, monitor, and optimize Data Loss Prevention (DLP) controls for data in motion, at rest, and on endpoints
• Monitor security alerts and events, support incident detection, triage, investigation, and response activities in coordination with SOC/CSIRT teams
• Develop and maintain security use-cases aligned with the current threat landscape, business risks, and regulatory expectations
• Support vulnerability management processes, including validation of findings, coordination of remediation, and re-testing of vulnerabilities
• Ensure secure configuration and hardening of systems and security tools in line with internal baselines and best practices (CIS, NIST)
• Participate in incident investigations, root cause analysis, and remediation actions
• Ensure security controls are aligned with CBK regulations, NIST, DORA, PCI-DSS, and ISO 27001
• Identify gaps in current security controls and propose improvements

Knowledge and skill requirements:

• Bachelor's/Master's degree in Computer Science, Information Security, or a related field
• Banking experience in similar duties
• Required knowledge of server, web, and application solution technologies
• Ability to establish policies and procedures related to job demands
• Hands-on experience designing secure network topologies, firewall/WAF policies, load balancers, SIEM, IAM, DLP, and security gateways
• Proven experience with Zero Trust architectures, micro-segmentation, and data flow design
• Familiarity with vulnerability management, secure configuration, incident response, and remediation oversight
• Deep knowledge of network protocols, routing, VLANs, VPNs, segmentation, load balancers, firewalls, and WAFs
• Experience with SIEM, IDS/IPS, DLP, IAM, endpoint security, and cloud security
• Ability to coordinate cross-functional teams and influence decisions
• High integrity, confidentiality, and professional ethics are required in a financial institution
• Good level of the English Language
• Driving license Category B

The application should be done online through the bank’s web page. For applying, please refer to the Career Opportunities and follow the link.

Deadline for applying is 21.05.2026. Not completed applications will not be considered. Only shortlisted candidates will be contacted.