SecOps Engineer Hibrido

EFFECTIVESOFT COSTA RICA SOCIEDAD ANONIMA

  • Heredia
  • Permanente
  • Tiempo completo
  • Hace 16 días
Key Responsibilities
Security Engineering
Design and implement secure systems, tools, and automation solutions.
Develop and refine detection logic, enhancing visibility and data integration.
Apply security reliability engineering principles and integrate threat intelligence with vulnerability management.
Governance and Compliance
Support and enforce policies aligned with the clients security framework and compliance standards.
Assess, mitigate, and document information security risks in operations.
Manage compliance for new applications and acquisitions, ensuring seamless integration into the clients technology infrastructure.
Security Platform Management
Administer and optimize core security platforms, including Google SecOps, Google Threat Intelligence, BindPlane, and DataDog.
Ensure platform availability, performance, and integrity through regular maintenance and upgrades.
Collect, process, and integrate telemetry and security data for improved monitoring to support Managed Services SOC.
Threat Detection and Incident Response
Work with SOC to develop and finetune detection rules and alerts to identify potential threats.
Monitor and investigate security incidents, escalating as needed.
Collaborate with Incident Response teams during security breaches and postincident analysis.
Automation and Systems Integration
Automate workflows and incident responses using scripting e.g., Python, PowerShell and platformnative tools.
Integrate security platforms with technology systems e.g., identity management, ticketing systems, cloud environments.
Manage security configurations using Infrastructure as Code IaC principles.
Security Best Practices
Enforce security best practices across systems and cloud environments.
Assist with vulnerability assessments, penetration testing, and audits, collaborating to remediate issues.
Contribute to policy, procedure, and standard development.
Reporting and Documentation
Generate reports on security posture, platform performance, and incidents.
Maintain detailed documentation of platform configurations, operational procedures, and incident playbooks.
Provide training on security tools and best practices to technology teams.
Required Skills and Experience
35 years in Security Engineering, Security Operations, or a related handson role with a strong focus on applying engineering principles to security.
Bachelors degree in Computer Science, Information Security, or a related field or equivalent practical experience.
Practical experience integrating new applications and acquisitions into existing IT infrastructures.
Familiarity with compliance frameworks e.g., HITRUST, SOC 2, ISO 27001, GDPR.
Solid understanding of security architecture, system design, and cloud security principles GCP, Azure, AWS.
Proficient in security tools and technologies, including SIEM, SOAR, EDRXDR, NDR, firewalls, IDSIPS, and cloud security platforms.
Handson experience with enterprise security platforms such as Google SecOps Chronicle Security Operations, Google Cloud Platform Security Services, Google Threat Intelligence, BindPlane, and DataDog.
Experience developing and implementing detection rules and logic using platforms like YARAL, case management systems, and automation playbooks.
Proficiency in scripting and automation languages such as Python, PowerShell, and Bash.
Skilled in SOAR platforms, automation frameworks, and telemetry data collectionprocessing for security applications.
Strong knowledge of modern cloud computing architectures microservices, containers, serverless.
Understanding of networking protocols, operating systems Linux, Windows, and common attack vectors.
Expertise in incident response processes, forensic investigations, and leveraging threat intelligence feeds for proactive defense.
Practical experience with data analysis, manipulation, and troubleshooting to address security challenges.
Strong written and verbal communication skills, with the ability to explain complex security concepts to both technical and nontechnical audiences.
Effective collaboration skills with security analysts, developers, and crossfunctional technology teams.
Ability to work independently, manage multiple priorities, and excel in a fastpaced environment.
Preferred Qualifications
Relevant industry certifications e.g., CISSP, CSSLP, CompTIA Security, Google Cloud Professional Cloud Security Engineer.
Experience in a marketing, advertising, or technology agency environment.
Experience with other security tools, such as EDRs, vulnerability scanners, or CASBs.
Familiarity with DevOpsDevSecOps practices.

Computrabajo

Empleos similares

  • Pharmaceutical Technology Engineer I

    AbbVie

    • Heredia
    **OBJETIVO DE LA POSICION**: Participar en la implementación de Proyectos MPS (Marketed Product Support) y contribuir en la ejecución de proyectos NPI (New Product Introduction) e…
    • Hace 2 días

  • Mid to Senior Software Engineer - Full Stack at FreightPOP

    Emma de Torre

    • San José
    • 40.000-85.000 USD al año
    I'm helping FreightPOP find a top candidate to join their team full-time for the role of Mid to Senior Software Engineer - Full Stack. You'll build software with OOP and AI, coll…
    • Hace 17 días

  • Pasante Quality Engineer

    EY

    • San José
    **¿Y si no nos centráramos en quién eres ahora, sino en quién podrías llegar a ser? ** Aquí, en EY, tendrás la oportunidad de construir una experiência verdaderamente excepcional…
    • Hace 5 horas