SecOps Engineer Rio de Janeiro, Jobs, 9962

SecOps Engineer - Rio de Janeiro - USA

  • Location Area:

    USA

  • Discipline:

    Technology

  • Job type:

    Permanent

  • Published:

    24-06-2024

  • Expiry date:

    08-07-2024

  • Reference:

    9962

Role: SecOps Engineer

Salary: Competitive package + equity

Location: Rio de Janeiro - Hybrid

Note: This role may require occasional out of hours and weekend work.

 

Summary

Our client, a rapidly growing HealthTech Unicorn, is on a mission to humanise the healthcare experience for doctors, patients, and clinics through their digital product. A leader in 13 countries supporting millions of patients and doctors, our client is now turning their focus to the security team and seeking a crucial hire to support their growth.

We are looking for a seasoned Senior Security Operations Engineer to join our team. In this role, you will lead incident response initiatives and conduct thorough cybersecurity investigations to mitigate risks effectively. You will play a key role in enhancing our security program by refining processes, optimizing tooling and implementing advanced threat detection and mitigation strategies across diverse technology landscapes.

 

Responsibilities:

  • Perform daily alert investigation and incident response in both cloud-native and traditional environments
  • Identify, scope, and manage ongoing incidents for our customers, developing remediation plans to improve security maturity
  • Improve and maintain processes, tooling, documentation and training to mature and enhance cybersecurity incident response
  • Design, implement and maintain monitoring systems
  • Assist our development and operations teams on improving our log monitoring capabilities

Tools and Technologies: Cloud-based environment (AWS), Datadog, AWS WAF, Infrastructure as Code, Terraform, Kubernetes

 

Requirements:

  • Security operations experience, including alert triage, investigation, and incident response
  • Experience designing, building and maintaining monitoring and alerting systems from scratch
  • Proficiency in managing the incident lifecycle with the ability to handle multiple work streams concurrently
  • Understanding of secure software development practices, including knowledge of common vulnerabilities such as OWASP Top 10.
  • Effective communication skills to articulate complex technical issues to diverse audiences (IT professionals, executives, business decision-makers) in a clear, authoritative, and actionable manner
  • Experience in start-up/tech environment in a SaaS company

 

Nice to Have:

  • Familiarity with scripting languages (Python, Bash…) and APIs
  • Awareness of cybersecurity standards and regulations such as NIST, CIS, ISO 27001, and PCI DSS
  • A basic understanding of Forensic processes