10 feb
Nearshore Cyber
Monterrey
**Location: Monterrey or Matamoros, Mexico**:** Applications from persons not living in Mexico will NOT be accepted.
**
The role also requires an understanding of business goals/strategy and operational requirements in a fast-paced environment.
Throughout the roles key responsibilities, the Information Security Engineer must always consider opportunities to integrate security practices within earlier phases of IT and business processes to identify potential risks as soon as possible, reduce remediation costs, and avoid unnecessary re-work.
At times, the individual acts as a liaison with business stakeholders to understand the strategy and execution outlook.
The Information Security Engineer provides technical leadership to delivery and solution design team members.
**Essential Job Duties**
- Support the ability to shift left and incorporate security early and throughout project and development lifecycles.
- Consistently learn and share advanced skills and practices that promote team excellence.
Drive security efficiencies, enabling security team members to work on more advanced tasks.
- Build relationships with key stakeholders to incorporate security principles into engineering design and deployments.
- Serve as a point of contact for security-based escalations and remain tightly involved through resolution.
- Simplify automation that applies security inter-workings with CI/CD pipelines.
- Constantly research capabilities of current and new disruptive solutions on the market and make recommendations to security leadership.
- Research, validate and deploy solutions meeting security and business needs.
- Influence the planning and execution of incident response and postmortem exercises,
with a focus on creating measurable benchmarks to show progress (or deficiencies requiring additional attention).
- Support implementation, monitoring and operations of information security assets, programs, and projects.
- Actively participate and lead security team meetings that facilitate secure design.
- Engage in information security projects that evaluate existing security infrastructure and
- propose changes as defined by security leadership and architects.
Additionally, deliver projects on time, within budget and in accordance with service level agreements.
- Assist with incident response and system stability issues as they occur.
- This may include involvement outside of regular work hours, and responsiveness is expected.
- Implement solutions observing compliance with applicable laws, regulations, and frameworks, such as NIST, ISO 27001, GDPR, etc.
- Respond to and handle service and escalation tickets within service level agreements.
- Develop security test plans from architectural design.
Identify deficiencies and make enhancements to ensure production is not impacted.
- Participate regularly in change project and change management meetings.
**Skills and Experience**
- 5+ years experience in information security, including compliance and risk management with a system and/or network security engineering background.
- Highly technical and analytical expertise, with a proven deep background in technology design, implementation, and delivery.
- Experience in cloud computing technologies, including software-, infrastructure-, and platformas-a-service, as well as public, private, and hybrid environments.
- Extensive knowledge of traditional security controls and technologies,
such as security information and event management systems, intrusion detection and prevention systems, public key infrastructure, identity and access management systems, endpoint detection and response, data loss prevention, and firewalls.
- Skilled in meeting vulnerability and penetration testing requirements.
- Excellence in communicating business risk from cybersecurity issues.
- Proven trustworthiness and history of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating well, including the ability to translate technical content into terms understandable by the business.
- Experience working in a multicultural environment with colleagues in different countries.
- Analytical and problem-solving mindset.
- Ability to quickly execute on strategic decisions to drive organizational results.
- Highly organized and efficient self-starter requiring mínimal supervision.
- Strategic and tactical thinking, along with decision-making skills and business acumen.
- Education Requirements
- Higher education with a degree in information security, computer science, or related field preferred.
**Certification Requirements**
- CISSP, CISM or similar certification required.
Muestra tus habilidades a la empresa, rellenar el formulario y deja un toque personal en la carta, ayudará el reclutador en la elección del candidato.