This is a fully remote position, open to applicants in Mexico.

• Take initiative to triage and investigate security events, identifying root causes and mitigating possible incidents.

• Revise and maintain response playbooks for events of interest and potential incidents, integrating insights from threat intelligence.

• Perform basic threat hunting utilizing SIEM queries and EDR tools to detect potential threats.

• Engage in purple team exercises, working alongside blue and red teams to assess and enhance detection capabilities.

• Gather and analyze threat intelligence from both internal and external sources (e.g., IOCs, TTPs) to improve detection rules.

• Execute risk enumeration to identify vulnerabilities and misconfigurations, leveraging scanning tools and threat intelligence.

• Support the training of Junior Engineers on tools, processes, and fundamental purple teaming concepts.

• Document findings and contribute to reports on security events, events of interest, and threat intelligence.

• A Bachelor’s degree in Cybersecurity, Computer Science, or a related discipline (or equivalent experience).

• 2–4 years of experience in cybersecurity, with a minimum of 1 year in a detection/response role.

• Expertise in SIEM platforms, EDR tools, and basic scripting (e.g., Python, PowerShell) for automation tasks.

• Experience with purple teaming exercises and the application of threat intelligence in detection processes.

• Strong comprehension of attack vectors, malware analysis, and network protocols.

• Relevant certifications such as CySA+, CEH, or equivalent are mandatory.

• Capability to work independently while also collaborating with cross-functional teams.

• Health insurance

• Paid time off

• Professional development

Security Analyst

People also viewed