Security Engineer (Incident Detection & Response)
Мэтч & Сопровод
Для мэтча с этой вакансией нужен Plus
Описание вакансии
TL;DR
Security Engineer (Incident Detection & Response): Building and operating detection and response capabilities across cloud, application, identity, and endpoint environments with an accent on SIEM management, incident investigation, and threat hunting. Focus on automating response playbooks, improving detection logic, and ensuring resilience against emerging security threats.
Location: Must be based in Honduras (Hybrid work model)
Company
is a leading SaaS platform enabling businesses to automate marketing and customer communication through messaging channels.
What you will do
- Monitor, triage, and investigate security alerts across SIEM, EDR, cloud, and identity platforms.
- Lead incident response activities including scoping, containment, root cause analysis, and post-incident reviews.
- Develop and tune detection logic, correlation rules, and investigation runbooks.
- Analyze telemetry from AWS, Okta, WAF, and other business systems to identify suspicious activity.
- Partner with Infrastructure and Engineering teams to remediate risks and improve security controls.
- Contribute to threat hunting activities and maintain compliance documentation for SOC 2 and ISO 27001.
Requirements
- 5+ years of experience in security operations, incident response, or detection engineering.
- Strong proficiency with SIEM platforms, log analysis, and alert triage workflows.
- Hands-on experience with EDR tools and investigating identity-related events (e.g., Okta).
- Solid understanding of MITRE ATT&CK framework, cloud misconfiguration risks, and attacker techniques.
- Ability to perform structured incident response and document findings clearly.
- Fluent English communication skills (written and verbal).
Nice to have
- Experience with detection-as-code workflows and AWS security services (CloudTrail, GuardDuty).
- Scripting or automation skills using Python, Bash, or Terraform.
- Security certifications such as GCIH, GCFA, or CySA+.
- Experience supporting SOC 2 or ISO 27001 compliance in a SaaS environment.
Culture & Benefits
- Comprehensive health insurance for you and your family.
- Flexible benefits package with a personal budget for well-being and home office setup.
- Professional development budget for conferences and courses.
- Hybrid work environment with generous, flexible time off.
- Access to AI tools like Claude and OpenAI to enhance productivity.
- Company-funded team-building events and annual offsites.
Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →