Get ai-powered advice on this job and more exclusive features.
direct message the job poster from infovision inc.
we’re looking for a talented security engineer to join and help grow our team. Our security operations team is tasked with monitoring and protecting us from an ever growing number of security risks, and finding new and creative ways to do so. We have a strong focus on engineering and innovation, and are seeking individuals who love to find new problems and hate fixing the same problem twice.
what you’ll need:
* 5+ years experience working in cyber security operations
* thorough understanding of the threat landscape, the latest security trends, attack vectors for corporate and cloud environments, and how build detection and response tooling to identify and respond to malicious actors
* experience with building and scaling soar/siem technologies
* experience with incident detection and remediation
* strong working knowledge of threat vectors, vulnerabilities, and what anomalies to look for
* strong working knowledge of linux and/or windows logs & indicators
* one or more scripting languages to automate or build features, python, or powershell preferred.
* hands-on experience with incident response and monitoring tools, such as siem, edr, firewall management.
* excellent communication skills, especially the ability to communicate security risks in “business” rather than purely “engineering”
* strong understanding of cyber security best practices and frameworks such as nist, mitre, att&ck framework, and owasp top 10
what you’ll do:
* in this role you will work closely with the cyber security organization to build monitoring and response tooling and processes to improve our monitoring and response capabilities
* logging - get all security relevant cloud, infrastructure and application logs parsed, and into our siem
* detection - setup detection and prevention rules and policies, poc and deploy tools that help with detection, tune/audit deployed rules/policies in security tools on true and false positives, setting up a detection framework, threat intel framework/program, ato detection program/framework etc.
* response - build plan and procedures for incident response, create playbooks to be followed, automate response, develop/deploy malware analysis tools and techniques, forensic tools and techniques to capture evidence/malware, poc and deploy tools that help with response, integrate with customer service teams and engineering teams etc.
* build security alerts & dashboards in various incident response tools. Monitor for suspicious activities/alerts in the cloud/infrastructure/application from various sources such as internal reports from employees as well as external reports such as customers/social media, vendors, partners, bug bounty programs etc., deployed/integrated security tools, data visualization tools etc.
* analyze these suspicious activities/alerts including malware analysis and forensics
* respond to security alerts and incidents, respond to novel issues and take appropriate action to remediate and resolve
what we offer:
* benefits above law
* availability to work from home (only inside méxico).
apply here, or share with me your update resume right to:
joab.acosta@infovision.com
seniority level
* seniority level
not applicable
employment type
* employment type
full-time
job function
* job function
information technology
* industries
it services and it consulting
referrals increase your chances of interviewing at infovision inc. by 2x
sign in to set job alerts for “security engineer” roles.
security engineer (middle/senior) id35384
security engineer (middle/senior) id35384
linux cryptography and security engineer
linux cryptography and security engineer
system software engineer - gcc/llvm compiler, tooling, and ecosystem
system software engineer - gcc/llvm compiler, tooling, and ecosystem
graduate software engineer, open source and linux, canonical ubuntu
graduate software engineer, open source and linux, canonical ubuntu
entry level software developer - application security (remote - mexico)
system software engineer - rust compiler, tooling, and ecosystem
we’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of ai.
#j-18808-ljbffr