go to searchsenior security engineer
Senior Security Engineer
We are looking for a Senior Security Engineer to join our remote team.
Your primary focus will be to monitor the on-prem and AWS infrastructure for attacks, intrusions, and unusual, unauthorized, or illegal activity. You will be responsible for creating SIEM and SOAR detection and remediation scenarios, and implementing them as rules, as well as performing threat hunting and supporting threat intelligence processes. Your excellent knowledge of security monitoring, investigations, and relevant tools will enable you to generate reports for both technical and non-technical staff and stakeholders.
responsibilities
- Monitor on-prem and AWS infrastructure for attacks, intrusions, and unusual, unauthorized, or illegal activity
- Monitor identity and access management, including monitoring for abuse of permissions by authorized system users
- Create SIEM and SOAR detection and remediation scenarios and implement them as rules. Create, test, and update playbooks
- Perform threat hunting and support threat intelligence processes
- Generate reports for both technical and non-technical staff and stakeholders
- Use advanced analytic tools to determine emerging threat patterns and vulnerabilities
- Work collaboratively with cross-functional teams to achieve project goals
- Engage with your mentor for continuous learning and development of technical and soft skills
requirements
- 3+ years of experience in Information Security or related field, with a focus on SOC (Security Operations Center) operations
- Hands-on experience with Splunk Enterprise Security, AWS Cloud Security, and Cortex XSOAR
- Experience with CrowdStrike Products and Services, Linux, PowerShell, Python, and Windows
- Familiarity with network security protocols and related technologies, including IDS/IPS, firewalls, content filtering, Network Behavior Analysis tools, Anti-malware, and packet inspection
- Experience with SIEM solutions such as Splunk, QRadar, ArcSight, LogRhythm, ELK, Wazuh, Apache Metron, OSSIM, etc.
- Experience with SIRP/SOAR tools like TheHive, Cortex, Phantom, Demisto, Resilient, etc.
- Thorough understanding of host and network security hardening, common intrusion techniques, and common risk management concepts
- Excellent communication skills in English, with an Upper-Intermediate level competency
nice to have
- Experience with Firewalls (F5, Juniper, Check Point, Palo Alto, Cisco)
benefits for locations
Colombia
For you
- Prepaid Medicine with Colsanitas for you and your legal dependents
- MetLife Life Insurance for you
- Thousands of projects for top brands
- Stable income
For your comfortable work
- 100% remote work forever
- Free licensed software
- Possibility to work on your own device (BYOD)
- Stable workload
- Flexible engagement models
For your growth
- Free trainings for technical and soft skills
- Free access to LinkedIn Learning platform
- Support from a personal Skill Advisor
- Language courses
- Free access to internal and external e-Libraries
- Access to internal communities and competency centers
- Certification opportunities
don't have time? Apply later!We send you a link to the job in your e-mail
get job alerts in your inboxHundreds of open jobs for Software Engineers, QA, DevOps, Business Analysts and other tech professionals
