
Security Engineer
Posted 2 days ago

Posted 2 days ago
This is a fully remote position, open to applicants in Chile.
• Enhance and refine SIEM detection rules along with alerting workflows.
• Recognize deficiencies in detection capabilities and create practical detection enhancements in response to evolving risks and environmental changes.
• Improve DLP and secure web gateway controls.
• Oversee and address findings from CASB and ISPM platforms.
• Examine security alerts and incidents, performing root cause analysis.
• Assist in vulnerability management across cloud environments, endpoints, and SaaS platforms, including prioritization and remediation tracking.
• Maintain and advance incident response protocols, including playbooks, tabletop exercises, and post-incident evaluations.
• Provide security insights for internal enterprise technology decisions, including new SaaS integrations and adjustments to cloud architecture.
• Automate repetitive security processes and reporting tasks.
• Decrease false positives and consistently enhance signal quality.
• Utilize scripting and automation to optimize security operations.
• Responsibly leverage AI tools to enhance investigation workflows, reporting, and documentation.
• Identify areas where AI can boost efficiency without elevating risk levels.
• Develop lightweight automation solutions to minimize manual compliance burdens.
• Assume ownership and maintenance of specific compliance controls (ISO 27001).
• Ensure that controls are technically implemented and functioning effectively.
• Maintain evidence and support both internal and external audits.
• Track and address control deficiencies.
• Assist in risk assessments and control evaluations.
• Contribute to the enhancement of security policies and standards.
• Support access reviews and vendor security evaluations.
• Clearly communicate technical risks to non-technical stakeholders.
• 5–7 years of practical experience in information security.
• Hands-on experience with operating and tuning security tools like ISPM, SIEM, DLP, CASB, EDR, and related platforms.
• Strong grasp and real-world application of Zero Trust principles, including identity-based access controls, least privilege, device posture enforcement, and continuous verification.
• Experience in incident response and security investigations.
• Solid understanding of cloud logging, telemetry pipelines, and log source integration.
• Technical mindset with automation experience (Python, Bash, or similar scripting languages) aimed at streamlining security operations and reducing manual workload.
• Experience with ISO 27001 or similar compliance frameworks, including control ownership and audit preparedness.
• Comfortable taking responsibility for security controls, identifying gaps, and independently driving measurable improvements.
• Full professional fluency in English, capable of communicating effectively with both technical and non-technical stakeholders.
• N/A
Datavant
Action1
ClanX
Amentum
Get handpicked remote jobs straight to your inbox weekly.