Remoote.app

Work from anywhere. Start here.

Free resume builderCompaniesLog in
Apply

Security Engineer

Posted about 2 months agoViewed

View full description

πŸ’Ž Seniority level: Middle, 3+ Years

πŸ“ Location: Mexico

πŸ” Industry: Financial Services

🏒 Company: EarnInπŸ‘₯ 101-250πŸ’° $125,000,000 Series C over 6 years agoMobile PaymentsFinancial ServicesEmployee BenefitsFinTech

πŸ—£οΈ Languages: English

⏳ Experience: 3+ Years

πŸͺ„ Skills: AWSDockerPythonCloud ComputingCybersecurityKubernetesCI/CDRESTful APIsLinuxTerraformJSONAnsibleScripting

Requirements:
  • General AWS experience is a requirement (Not only security services)
  • Docker / Kubernetes is a plus
  • IaC experience is a huge plus
  • Knowledge in any programming language: Python is preferred
  • Threat/Intrusion Detection, Vulnerability Management, & remediation techniques
  • Security orchestration, automation and response experience
  • Experience with enterprise access solutions: Okta, Onelogin, ping identity etc..
  • Experience with endpoint zero trust and DLP solutions
  • Experience in the financial services industry preferred
Responsibilities:
  • Monitor active threats, analyze them and come up with a remediation plan.
  • Monitor, Audit, Detect and Remediate critical Security exposures in Infrastructure
  • Become a recognized security expert in multiple specialty areas
  • Respond to all security incidents and manage end-to-end incident response lifecycle
  • Implement security technical and process improvements
  • Implement automation for security tasks such as audit, metrics collection, and reporting
  • Maintain strong awareness of events in the external community to identify threats and opportunities for enhancement.
  • Work cross functionally with engineering teams to architect secure solutions
  • Evaluate, test, implement and support third party security tools
Apply

Related Jobs

Apply
πŸ”₯ Application Security Engineer
Posted 6 days ago

πŸ“ AMER, EMEA, APAC

🧭 Full-Time

πŸ” Security

🏒 Company: asymmetric.re

  • Familiarity and practical experience with Application Security Testing (AST) tools.
  • Proven experience as a consultant, engineer, or auditor, ideally working on/with web applications.
  • Prior experience working with open source development practices.
  • Willingness and aptitude to work with and write in multiple languages, mainly Go, Rust, Python, and JavaScript.
  • Experience with reverse engineering and/or fuzzing.
  • Experience with code reviews.
  • Design and implement security and defense-in-depth controls to prevent and limit vulnerabilities.
  • Develop security tooling and developer workflows to aid in the early detection of vulnerabilities.
  • Collaborate with core contributors to conduct internal security audits of off-chain infrastructure.
  • Harden CI/CD pipelines and constrain the attack surface of off-chain components.
  • Collaborate with core contributors to reduce supply-chain risk.
  • Triage and respond to potential security incidents across all parts of the stack.
  • Work in a diverse decentralized team environment with web3 professionals.
  • Clearly communicate security risks and solutions.
  • Adhere to the highest standards of integrity, trust, and professionalism.

DockerPythonBlockchainCybersecurityJavascriptGoRustWeb3.jsCI/CDRESTful APIsLinuxDevOps

Posted 6 days ago
Apply
Apply
πŸ”₯ Cloud Security Engineer
Posted 19 days ago

πŸ“ Global

🧭 Full-Time

πŸ” Software Development

🏒 Company: OP LabsπŸ‘₯ 11-50Developer ToolsIT InfrastructureEthereumSoftware

  • Hands-on technical experience with cloud platforms (e.g., GCP), Kubernetes, Infrastructure-as-Code tools (e.g., Terraform, Ansible) and scripting and automation (e.g., Go, Python)
  • Strong cloud security fundamentals, including secure cloud design, IAM, threat detection & incident response and application & API security
  • Excellent collaboration and communication skills, able to collaborate effectively with a diverse set of stakeholders to drive DevSecOps culture and best practices
  • Exhibit high agency and ownership, you’re someone who likes to get stuff done and drive impactful results
  • Design and implement security controls for our GCP-based cloud environment
  • Automate security in CI/CD pipelines and Infrastructure-as-Code (IaC)
  • Collaborate with the Platforms team and wider engineering organization to drive a security-first culture and embed security best practices throughout the SDLC
  • Stay up-to-date with emerging threats and cloud security trends

PythonCloud ComputingCybersecurityGCPKubernetesAPI testingGoCI/CDDevOpsTerraformAnsibleScripting

Posted 19 days ago
Apply
Apply
πŸ”₯ Security Engineer - 1554
Posted about 2 months ago

πŸ“ Costa Rica, Mexico, El Salvador, Honduras

🧭 Full-Time

πŸ” Financial

🏒 Company: In All Media Inc

  • 5+ years of professional experience in cybersecurity, with a focus on mobile application security.
  • Experience with mobile security testing frameworks, such as OWASP Mobile Security Testing Guide (MSTG).
  • 4+ years of hands-on experience with AWS security tools (AWS Inspector, GuardDuty, Security Hub) and cloud security practices.
  • Strong experience in Security Threat Modeling, including expertise in STRIDE, MITRE ATT&CK, or similar methodologies.
  • Proven ability to design and implement AI-driven security solutions for threat detection, risk analysis, and incident response.
  • Deep understanding of security compliance frameworks such as PCI DSS, NIST CSF, CIS, and Zero Trust.
  • Expertise in mobile application security best practices, including secure coding practices, encryption, and secure authentication mechanisms.
  • Strong written and verbal communication skills, with the ability to explain complex security issues to technical and non-technical stakeholders.
  • Experience in collaborating across teams, especially with product development and audit teams, to ensure compliance and security goals are met.
  • Ability to perform manual security reviews and automated script-based checks for mobile applications.
  • Direct experience in a financial environment, specifically working on mobile security applications in the financial or banking sectors.
  • Familiarity with DevSecOps practices and integration of security tools in CI/CD pipelines.
  • Lead comprehensive threat modeling exercises for mobile applications using industry-standard frameworks like STRIDE and MITRE ATT&CK.
  • Identify, prioritize, and mitigate potential threats and vulnerabilities specific to mobile environments in the financial sector, ensuring the development of secure applications from the outset.
  • Conduct regular security risk assessments to evaluate security posture and recommend necessary improvements.
  • Collaborate with cross-functional development teams to ensure the integration of security controls throughout the SDLC for mobile applications.
  • Proactively design, implement, and monitor security best practices, using AWS security tools such as AWS Inspector, GuardDuty, and Security Hub to address identified risks and vulnerabilities.
  • Manage the implementation of security measures for mobile applications, ensuring they are robust and resilient to attacks.
  • Leverage AI-driven security solutions to automate mobile application threat detection, risk analysis, and incident response workflows.
  • Stay abreast of emerging AI technologies and continuously evaluate their application to improve mobile app security and reduce response times to new threats.
  • Ensure compliance with key financial sector regulations such as PCI DSS, NIST CSF, CIS, and Zero Trust architectures.
  • Collaborate with internal teams to implement security controls that meet industry standards and ensure successful audit preparedness.
  • Actively manage and maintain compliance documentation and assist in the preparation for external audits.
  • Oversee continuous monitoring of the mobile applications for security incidents, vulnerabilities, and threats.
  • Use tools like AWS CloudTrail, GuardDuty, and other monitoring solutions to detect, analyze, and respond to threats in real time.
  • Ensure the integration of security into DevSecOps practices and continuously improve the security framework as part of the overall software release process.
  • Work closely with cross-functional teams, including product owners, software developers, and auditors, to drive security initiatives and ensure security is embedded in the development process.
  • Utilize project management tools like JIRA to organize and track security-related tasks, vulnerabilities, and remediation efforts.
  • Mentor junior security engineers and provide technical leadership in the development of security practices.
  • Lead the security efforts for mobile application projects, collaborating with senior leadership to shape security strategy.
  • Identify opportunities for process improvements, innovation, and automation within security workflows and propose solutions that enhance the overall security posture of mobile applications.

AWSCybersecurityComplianceRisk ManagementScripting

Posted about 2 months ago
Apply