Senior Security Engineer – Edge, Cloud

This is a fully remote position, open to applicants in Mexico.

📋 Description

• Ensure the security of the entire platform, encompassing Linux-based edge devices, cloud infrastructure, APIs, and data pipelines.

• Recognize, evaluate, and mitigate security threats across applications, backend services, and deployed devices.

• Perform threat modeling across edge-to-cloud data flows, including video, sensor data, and metadata pipelines.

• Strengthen edge devices by focusing on OS security, SSH access, credential management, and patching practices, particularly in environments that are physically accessible.

• Safeguard cloud environments (preferably AWS), covering IAM, network security, encryption, secrets management, and logging.

• Assist in secure design and architecture evaluations for new features and deployments.

• Execute and enhance **CI/CD security**, vulnerability scanning, and monitoring procedures.

• Monitor and react to security incidents, such as compromised devices or unauthorized access, and lead post-incident analyses.

• Establish and refine security policies, standards, and controls in alignment with practical engineering requirements.

• Aid compliance initiatives such as ISO 27001, SOC 2, and customer security assessments.

• Collaborate closely with Engineering and Product teams to integrate security into development processes without delaying delivery.

• Contribute to internal security awareness, documentation, and best practices.

⛳️ Requirements

• 6 to 8+ years of experience in security engineering, application security, cloud security, or infrastructure security.

• Practical experience in securing production systems, beyond mere compliance or audit activities.

• In-depth knowledge of Linux security, hardening techniques, access controls, and patching strategies.

• Solid understanding of web application security, including the OWASP Top 10.

• Experience in securing cloud platforms, preferably AWS, with a focus on IAM, networking, encryption, logging, and secrets management.

• Familiarity with CI/CD security, vulnerability scanning, monitoring, and incident response processes.

• Capability to perform threat modeling for edge-to-cloud systems, APIs, data pipelines, and deployed devices.

• Comfortable collaborating with Product and Engineering teams to communicate risks and facilitate solutions.

• Proficiency in scripting or automation, such as Python or Bash.

• Experience with SOC 2, ISO 27001, or similar compliance frameworks.

• Background in IoT, ITS, smart mobility, embedded systems, or data-heavy platforms is a significant advantage.

• Willingness to relocate to the UAE after the probation period, contingent upon UAE immigration approval.

🏝️ Benefits

• Competitive salary and performance-based bonuses.

• Comprehensive health insurance and wellness programs.

• Opportunities for professional development and continuous learning.

• Flexible working hours and remote work options.

• A dynamic and collaborative work environment with a focus on innovation.