Senior Security Infrastructure Engineer

This is a fully remote position, open to applicants in Argentina.

📋 Description

• Oversee and manage vulnerability management across infrastructure, platforms, and applications, which includes conducting internal scans, analyzing dependencies, and addressing external findings, while validating true positives and facilitating remediation with engineering teams.

• Develop, operate, and enhance SIEM/XDR capabilities, which involve log ingestion, creation of detection rules, alert tuning, and establishing investigation workflows.

• Examine and respond to security incidents throughout cloud infrastructure and applications, conducting root cause analysis and implementing long-term solutions.

• Create and execute detection strategies for identifying suspicious activities, including data exfiltration patterns, utilizing application and database telemetry.

• Lead and participate in threat modeling exercises and security design reviews to identify potential risks early and reinforce architecture.

• Leverage extensive expertise in AWS and Kubernetes to architect, secure, and enhance resilient and secure cloud infrastructure at scale.

• Propel infrastructure and CI/CD hardening initiatives, focusing on minimizing software and container supply chain risks.

• Spearhead the implementation and enhancement of systems and controls for detecting dependency and container supply chain risks.

• Collaborate closely with engineering teams to fix vulnerabilities and enhance secure development and deployment practices.

• Support and implement security controls that align with PCI DSS, SOC 2, and other compliance requirements.

• Design and execute automation (including AI where applicable) to boost efficiency in security operations, detection, and response.

• Assess and validate external security findings, distinguishing true positives and coordinating remediation efforts.

⛳️ Requirements

• Minimum of 6 years of experience in security, software, or infrastructure engineering, with practical experience in securing cloud-based production systems and addressing real-world security challenges.

• Experience in contributing to threat modeling and security design reviews for contemporary systems.

• Strong practical experience in vulnerability management, encompassing scanning, triage, validation, remediation coordination, and verification.

• Familiarity with SIEM platforms (e.g., Wazuh, Splunk, ELK) for detection engineering, monitoring, and incident response.

• Practical experience in triaging findings from vulnerability scanners and bug bounty programs.

• Robust knowledge of AWS, Linux, and Kubernetes infrastructure, including security architecture, hardening, and operational best practices.

• Experience in enhancing infrastructure security, including CI/CD hardening and mitigating software supply chain risks.

• Experience with container and dependency security tools (e.g., Snyk, Trivy, Grype, etc.).

• Capability to investigate issues directly using logs, cloud tooling, and system-level data.

• Understanding of common security vulnerabilities and mitigation strategies (OWASP, SANS, etc.).

• Working knowledge of compliance frameworks such as PCI DSS and SOC 2.

🏝️ Benefits

• Comprehensive health, dental, and vision insurance.

• Competitive salary and performance-based bonuses.

• Opportunities for professional development and continuous learning.

• Flexible working hours and remote work options.

• Generous vacation and paid time off policies.