Senior Cybersecurity Engineer

Security at TRACTIAN
In a data-driven company like TRACTIAN, Security is essential for protecting sensitive information and maintaining the integrity of our systems. This team implements rigorous security protocols, continuously monitors threats, and ensures compliance with industry standards to safeguard our data infrastructure. By securing data flows and preventing unauthorized access, the Data Security team plays a crucial role in protecting both our internal operations and the data we manage for clients.
What will you do
As a Cybersecurity Engineer, you will be responsible for safeguarding the company’s digital assets, ensuring that all systems, applications, and data are protected from vulnerabilities and threats. Your role will be to spearhead the development and implementation of advanced security systems, protocols, and measures to protect our organization's digital infrastructure. This position requires deep technical knowledge and hands-on skills to evaluate, design, and implement state-of-the-art cybersecurity solutions.

Responsibilities

• Oversee and implement secure, scalable, and highly available cybersecurity solutions across diverse platforms, with a primary focus on cloud-based environments.
• Architect, deploy, and maintain security infrastructure components, including Intrusion Detection/Prevention Systems (IDS/IPS), Security Information and Event Management (SIEM) platforms, Endpoint Detection and Response (EDR) solutions, and Web Application Firewalls (WAFs).
• Collaborate with development and engineering teams to integrate security into the software development lifecycle through activities such as code reviews, threat modeling, and vulnerability assessments.
• Develop and maintain CI/CD pipelines with a strong emphasis on security checks, tests, and analysis of code and dependencies.
• Manage advanced security tools (e.g., SAST, DAST, IAST) and endpoint protection solutions to proactively detect, monitor, and respond to threats and security incidents.
• Conduct risk assessments, threat analyses, and forensic investigations, addressing vulnerabilities and responding to security incidents in a timely and effective manner.
• Contribute to the development, maintenance, and execution of incident response plans, ensuring readiness for potential security events.
• Stay current with emerging technologies and industry trends, offering expert guidance on best practices to enhance the organization’s security posture.

Requirements

• 5+ years of advanced technical experience in cybersecurity or security engineering roles.
• Comprehensive understanding of cloud security services, including AWS (e.g., IAM, Security Groups, GuardDuty) and GCP (e.g., Cloud Armor, Security Command Center).
• Experience with Cloudflare for DNS, CDN, and WAF services.
• In-depth knowledge of security systems, intrusion detection, encryption technologies, network protocols, and best practices for securing cloud environments.
• Proficiency with security tools such as vulnerability scanners, SIEM, DAST, and intrusion detection systems (e.g., Wazuh, Zeek, Suricata), as well as endpoint protection solutions (e.g., Sentinel One).
• Expertise in vulnerability assessments and incident response processes.
• Familiarity with security standards (e.g., OAuth, OpenID Connect, SSL/TLS) and compliance frameworks (e.g., ISO 27001, NIST 800-61, SANS, SOC 2).
• Proficiency in scripting languages such as Python, PowerShell, or Bash for security automation and tool integration.
• Relevant certifications such as CISSP, OSCP, or CISM are highly preferred.
• Strong problem-solving skills with the ability to respond effectively to security incidents and vulnerabilities.

Compensation
Competitive SalaryPremium Medical, Dental, and Vision CoveragePaid Time Off (PTO): 15 Days401(k) Retirement PlanLanguage Learning Opportunities - Take advantage of optional, fully funded Portuguese or Spanish courses to enhance your skills and global reach.Birthday Time Off - Celebrate your birthday with a paid day off during your birthday week.Gympass Membership - Access a wide range of gyms and training programs.Sports Incentive - Receive a monthly bonus when you regularly participate in physical activities.Long-Term Benefit - After four years of service, earn a fully funded trip anywhere in the world.