Senior Security Operations Engineer
Location: MéxicoFull-TimeSenior
Salary not disclosed
Apply NowOpens the employer's application page
Job Details
- Languages
- Required full professional fluency in English and Spanish.
- Experience
- 5+ years of technical experience in security operations
- Required Skills
- AWSPythonBashTerraformAnsibleCloudFormation
Requirements
- 5+ years of technical experience in security operations, with strong hands-on experience in vulnerability management.
- You’ve worked in a SOC, CSIRT, or similar operational security environment where you wore multiple hats and operated with a high degree of autonomy.
- You possess a strong sense of urgency and ownership. You don’t wait to be told what to do, you see gaps and fill them. You are willing to participate in a scheduled on-call rotation.
- Hands-on experience with enterprise vulnerability scanning platforms (Qualys, Tenable, Rapid7, or equivalent).
- Strong understanding of risk-based vulnerability prioritization beyond CVSS factoring in exploit availability, threat intelligence, asset exposure, and business context.
- Experience investigating security alerts using EDRs and SIEM platforms.
- Familiarity with endpoint security policies, secure email gateways, and DLP concepts.
- Ability to produce clear, data-driven reporting for technical and executive audiences.
- Experience working with Infrastructure as Code (IaC) tools such as Terraform, CloudFormation, or Ansible, including the ability to review and secure infrastructure configurations.
- Experience working within cloud environments, preferably AWS, with an understanding of cloud-native vulnerability considerations including containers and serverless.
- Experience with Python, Bash, or similar scripting languages to automate workflows, reporting, and integration with ticketing systems.
- Experience supporting regulatory compliance audits and working within frameworks relevant to the Mexican financial regulatory landscape (CNBV, Ley Fintech).
- Ability to interface with auditors, prepare evidence, and ensure security controls meet local compliance requirements.
- Full professional fluency in English and Spanish. You must be able to translate technical findings into actionable guidance for engineering teams, auditors, and non-technical business partners.
Responsibilities
- Own and operate the end-to-end vulnerability management lifecycle: discovery, scanning, prioritization, remediation tracking, and verification.
- Prioritize vulnerabilities using a risk-based approach that accounts for exploitability, threat intelligence, asset criticality, and business impact.
- Produce recurring vulnerability posture reports and trend analysis for stakeholders.
- Serve as a technical investigator for complex security alerts and support the investigation, containment, and remediation of security incidents.
- Participate in the on-call rotation to ensure coverage for critical alerts.
- Consume threat intelligence feeds and proactively hunt for Indicators of Compromise (IOCs) in our environment.
- Develop and integrate detection use cases for business applications, ensuring we are logging the right data, not just more data.
- Support regulatory compliance audits, including preparation of evidence and documentation aligned with Mexican financial regulatory requirements.
- Mentor and support junior team members, contributing to knowledge sharing and the overall growth of the security team.
View Full Description & ApplyYou'll be redirected to the employer's site
