Remote Security Engineer

Description:

• The Security Engineer at TRACTIAN will be responsible for safeguarding the company’s digital assets.
• This role involves ensuring that all systems, applications, and data are protected from vulnerabilities and threats.
• The engineer will design and implement security protocols, conduct risk assessments, and respond to incidents to protect the integrity of the organization’s infrastructure.
• Responsibilities include designing and implementing secure, scalable, and highly available cloud-based solutions.
• The engineer will work closely with development teams to integrate security into the software development lifecycle, including code reviews, threat modeling, and vulnerability assessments.
• They will develop and maintain continuous integration and delivery (CI/CD) processes and tools, ensuring that security practices are applied at every stage.
• The role requires managing and maintaining advanced endpoint protection solutions for proactive threat detection, response, and mitigation across all systems and devices.
• The engineer will utilize security tools, including SIEM, SAST, DAST, and IAST, to monitor, detect, and respond to security incidents.
• They will be responsible for improving and creating internal security policies, including vulnerability management and incident response procedures.
• The engineer must respond to and remediate security incidents and vulnerabilities in a timely and effective manner.
• Staying current with emerging technologies and industry trends in DevOps, Security, and Software Engineering is essential.

Requirements:

• A Bachelor's or Master's degree in Computer Science, Information Technology, or a related field is required.
• The candidate must have 4+ years of experience in Security Engineering.
• A background in cloud-based solutions, preferably using AWS, and cloud security is necessary.
• Familiarity with security tools, such as vulnerability scanners, intrusion detection systems, DAST, and SIEM solutions is required.
• Excellent problem-solving skills and the ability to respond effectively to security incidents are essential.
• Knowledge of best practices for securing cloud environments and managing access controls is needed.
• The candidate should have knowledge of cloud services integration, digital certification, and security standards such as OAuth, OpenID Connect, and SSL/TLS.
• Proven experience with web application firewalls (WAF) and cloud security solutions, including platforms like Cloudflare or similar, is required.
• Familiarity with legal compliance frameworks such as LGPD, GDPR, CCPA, ISO 27001, NIST 800-61, SANS, and SOC 2 is necessary.
• An intermediate English level (B2) is required.

Benefits:

• The position offers the opportunity to work in a data-driven company that values security and integrity.
• Employees will have the chance to work remotely, providing flexibility in their work environment.
• The role allows for continuous learning and staying updated with emerging technologies and industry trends.
• The company promotes a collaborative work culture, working closely with development teams to enhance security practices.
• Employees will have the opportunity to contribute to the development and improvement of internal security policies and procedures.