Security Engineer

This is a fully remote position, open to applicants in Uruguay.

📋 Description

• Oversee, monitor, and implement security policies for our global remote workforce endpoints.

• Manage user access controls, configure single sign-on (SSO) settings, and oversee user lifecycles in enterprise software and cloud environments.

• Collaborate with IT networks and engineering infrastructure teams to establish secure boundary defenses, segmentation strategies, and monitoring practices.

• Act as the primary technical liaison for external penetration testing vendors.

• Take ownership of the complete lifecycle of security assessments: define engagement rules, set testing scopes, facilitate environment access, and convert final assessment results into actionable remediation workflows for internal teams.

• Conduct comprehensive security due diligence, risk modeling, and operational compliance reviews for all potential vendors and software systems.

• Actively research and evaluate the security risks associated with deployed and incoming AI/LLM technologies.

• Set up configuration guardrails to prevent corporate data poisoning, data leakage, and insecure plugin executions.

• Collaborate with IT teams to identify, prioritize, track, and resolve vulnerabilities across endpoints and system architecture.

• Serve as a support responder for the SIRT team regarding infrastructure and endpoint alerts, isolating threats and conducting root-cause analyses.

• Design, implement, and uphold security standards and procedures to facilitate the deployment and isolation of network-connected devices.

⛳️ Requirements

• Minimum of 5 years of professional experience in security engineering, infrastructure security, or system administration in a predominantly remote or distributed corporate environment.

• Strong foundational expertise in securing operating systems (macOS, Windows, Linux) and administrative experience with cloud identity providers (e.g., Okta, Entra ID, Google Workspace).

• Proven experience in reviewing vulnerability data or penetration test reports and working with cross-functional IT/engineering teams to address identified issues.

• Solid understanding of core networking protocols, firewall architectures, VPN infrastructure, and Zero Trust access frameworks.

• A methodical troubleshooter capable of analyzing network, configuration, or access logs to identify systematic anomalies or operational failures.

• Excellent written and verbal communication skills in English, with the ability to articulate security requirements to non-technical personnel.

• Basic familiarity with automation scripts (e.g., Python, Bash, PowerShell) for collecting logs, interacting with system APIs, or automating configuration posture audits.

🏝️ Benefits

• Option to work remotely from anywhere within UTC-5 to UTC+3 time zones.

• Office locations are available in Buenos Aires, Cordoba, Montevideo, and Barcelona.