Job title:
an information security manager position is available to lead security operations, incident response, and platform engineering.
-----------------------------------
about the role
this role requires a hands-on approach to managing 24/7 security operations capability, core security platforms, and incident response efforts. The ideal candidate will have deep technical execution skills, as well as team leadership experience.
the position works closely with an external managed security service provider (mssp) and serves as the technical escalation point for security events affecting various operations.
based in mexico, supporting north american operations, this hybrid work arrangement prefers being based in querétaro or fully remote within mexico for exceptional candidates.
key responsibilities
* incident response & threat management:
o lead real-time response to security incidents, making containment and remediation decisions that minimize business impact.
o manage escalations from our mssp and make rapid triage decisions on security alerts.
o conduct post-incident reviews and drive remediation of root causes.
o develop and maintain incident response runbooks, playbooks, and procedures.
* security platform engineering & architecture:
o own architecture, deployment, and optimization of security operations stack including siem, edr, ndr, soar, and related detection/response platforms.
o drive complex security engineering projects from conception through production deployment, including enterprise-scale initiatives like secure web gateway deployments, network security architecture, and cloud security tooling.
o develop detection rules, automation workflows, and integrations to improve mean-time-to-detect (mttd) and mean-time-to-respond (mttr).
o design and implement security solutions protecting network infrastructure, cloud environments, and data across retail locations, corporate, and ecommerce operations.
o troubleshoot complex security platform issues and optimize configurations for performance and efficacy.
* vendor & partner management:
o serve as primary technical liaison with our managed security service provider, managing slas, escalations, and service quality.
o evaluate and onboard new security technologies and services.
o coordinate with networking, cloud, and infrastructure teams on security architecture decisions.
* team leadership & development:
o directly manage and mentor a team of 3 security professionals.
o provide technical direction, skill development, and career coaching.
o build team capabilities in key areas like cloud security incident response.
o maintain on-call rotation and ensure team readiness for 24/7 incident response.
required qualifications
* 5+ years hands-on information security experience with at least 3 years focused on security operations, incident response, or security engineering.
* 2+ years people management experience leading security analysts or engineers.
* proven track record executing complex security platform or infrastructure deployments from start to finish.
* hands-on technical expertise with at least 3 of the following platform categories: siem, endpoint detection & response, network detection & response, security orchestration, automation & response, secure web gateways, next-generation firewalls, ids/ips, or network access control systems.
* detailed experience leading or participating in security incident investigations, containment, and remediation.
* strong enterprise networking knowledge including network architecture, routing/switching, and sd-wan.
* excellent english communication skills (written and verbal) for coordination with us-based teams, vendors, and stakeholders.
* spanish proficiency for team communication and local stakeholder engagement.
benefits
* a competitive salary package.
* a comprehensive benefits program.
* opportunities for professional growth and development.
* a collaborative and dynamic work environment.
how to apply
if you are a motivated and experienced information security manager looking for a challenging role, please submit your application.