Senior Security Engineer
Mexico
We value inclusivity and diversity at Envato. Research shows candidates from neurodiverse and underrepresented backgrounds often only apply for roles if they meet all the criteria. We like to make our hiring decisions based on experience and passion, so if you’re keen to apply and need reasonable adjustments please let us know. We also encourage you to let us know the pronouns you use at any point during the recruitment process.
About Envato
Our focus is on helping people to complete their creative projects, with our author community earning every time that happens. Envato proudly impacts the lives of creatives all over the world, from web developers and graphic designers to marketers, videographers, photographers, and more. We’ve built a community where anyone can get their creative projects done, and where creators bring their ideas to life and in the process, earn a living doing what they love. It doesn’t get much better than that!
We are a global and rapidly scaling business. Blending purpose and profit, we're a passionate B Corp, committed to making a positive impact on the communities we engage in. You can read more about our purpose, mission, and values on our website.
We’ve embraced flexibility for a long time - where we can, let’s make work, work for you! We have an amazing office in the Colonia Americana neighborhood in Guadalajara, Jalisco, Mexico.
About Us
At Envato, we empower designers and creatives to do their best work and to bring their creative ideas to life! Millions of people around the world visit Envato to buy and sell professionally made creative assets and templates, use customisable mockups and design templates, and learn creative skills.
We’re B Corp certified and strongly believe in succeeding sustainably as one global team. Community spirit is at the heart of everything we do which means we give considered thought to our whole community in our decisions, our actions, and desired outcomes. This includes our team, our authors, customers, shareholders and society.
Role Purpose
The Security Operations team plays a crucial role within the IT Operations & Technology Experience department, which is part of the Technology division supporting Envato employees across Australia, New Zealand, Mexico, and the United States.
The purpose of the IT Operations & Technology Experience is to provide sustainable and secure high quality technology experiences that enable staff to succeed. Productive and secure day one and always.
Role Overview
Reporting to the Senior IT Operations & Technology Experience Manager, the Senior Security Engineer will take the lead in securing the organisation's IT infrastructure, applications, and data. Collaborating with Security Analysts, Managed Security Service Provider (MSSP), and the IT Systems Operations and Product Security teams. -
Key Duties and Responsibilities
Security Monitoring & Incident Response - Optimise and fine-tune SIEM rules, policies, and thresholds in collaboration with the MSSP. - Lead incident response efforts, including containment, mitigation, and resolution. - Conduct post-incident analysis, forensic investigations. - Security automation (SOAR) implementation. - Monitor and investigate security alerts from EDR, DLP, and email security tools.
SaaS & Identity Security - Oversee security configurations for SaaS applications (Google Workspace, Slack, Okta, etc.). - Manage authentication policies and access controls within SaaS tools and IAM. - Conduct security audits and ensure SaaS tools align with compliance requirements.
Endpoint, Network, and Email Security - Manage and secure endpoint protection (EDR), antivirus, firewalls, and VPN security. - Enforce network security best practices and assist in vulnerability management efforts. - Oversee email security configuration, phishing prevention, and spam filtering.
Compliance & Risk Management - Perform security audits and risk assessments for systems, vendors, and applications. - Collaborate with leadership to develop and implement risk mitigation strategies, ensure PCI and SOX compliance, and maintain GDPR regulatory compliance through proactive security control monitoring.
Vendor Collaboration & Continuous Improvement - Participate in security vendor meetings (MSSP, Crowdstrike, and others) to enhance security posture. - Stay up-to-date on industry trends, security threats, and best practices.
Be aware and accountable to your responsibilities in relation to workplace health and safety obligations.
Key Skills and Experience
- 5+ years of experience in IT security or cybersecurity engineering. - Proficiency with SIEM tools (Sumo Logic) and SOC operations. - Hands-on experience with EDR, DLP, firewalls, VPNs, IAM, and security automation. - Ideally experience in fast growing digital companies, requiring agile planning to manage fast growing operations. - Familiarity with a variety of information security standards and frameworks, (e.g PCI/DSS, NIST Cybersecurity Framework, ISO27001). - Familiarity with current and evolving international privacy obligations (e.g. Australian Privacy Principles, European Privacy principles: DPD, GDPR, EU-US-Shield..etc) - Experience securing SaaS tools and applications. - Scripting and automation skills (Ruby, Python) preferred. - Relevant industry certifications (CISSP, CISM, CEH, GCIH, or equivalent) preferred.
#LI-RemoteWhat we offer?
● 30 days - Christmas Bonus● 12 vacation days (from the first year)● 100% holidays bonus● Private Health Insurance (SGMM)● 5% Grocery Coupons (With legal cap)● 5% Savings Funds (Fondo de Ahorro)● Internet/electricity allowance (monthly paid)• Profit-share, Mexican entity● Round trip tickets around Mexico to a place you haven’t been twice a year.● Unlimited ebooks● Paid for educational courses that relate to your work● Top line equipment
What next?Submit your resume and answers to the below questions. Good luck!
About Us - We’re BCorp certified & believe in succeeding sustainably as one global team.- We’re committed to ensuring all our team feel welcome, included, and respected- We support the flexibility to work from anywhere, great benefits above the law, generous parental leave, wellness programs, social connection and learning opportunities to help you grow.
By submitting your application you are agreeing to our Privacy Policy. If you would like to understand how we handle personal information before submitting your application, please read through our Privacy Policy.
We appreciate the time you’ve taken to apply to Envato and we're committed to responding to every applicant.
About Envato
Our focus is on helping people to complete their creative projects, with our author community earning every time that happens. Envato proudly impacts the lives of creatives all over the world, from web developers and graphic designers to marketers, videographers, photographers, and more. We’ve built a community where anyone can get their creative projects done, and where creators bring their ideas to life and in the process, earn a living doing what they love. It doesn’t get much better than that!
We are a global and rapidly scaling business. Blending purpose and profit, we're a passionate B Corp, committed to making a positive impact on the communities we engage in. You can read more about our purpose, mission, and values on our website.
We’ve embraced flexibility for a long time - where we can, let’s make work, work for you! We have an amazing office in the Colonia Americana neighborhood in Guadalajara, Jalisco, Mexico.
About Us
At Envato, we empower designers and creatives to do their best work and to bring their creative ideas to life! Millions of people around the world visit Envato to buy and sell professionally made creative assets and templates, use customisable mockups and design templates, and learn creative skills.
We’re B Corp certified and strongly believe in succeeding sustainably as one global team. Community spirit is at the heart of everything we do which means we give considered thought to our whole community in our decisions, our actions, and desired outcomes. This includes our team, our authors, customers, shareholders and society.
Role Purpose
The Security Operations team plays a crucial role within the IT Operations & Technology Experience department, which is part of the Technology division supporting Envato employees across Australia, New Zealand, Mexico, and the United States.
The purpose of the IT Operations & Technology Experience is to provide sustainable and secure high quality technology experiences that enable staff to succeed. Productive and secure day one and always.
Role Overview
Reporting to the Senior IT Operations & Technology Experience Manager, the Senior Security Engineer will take the lead in securing the organisation's IT infrastructure, applications, and data. Collaborating with Security Analysts, Managed Security Service Provider (MSSP), and the IT Systems Operations and Product Security teams. -
Key Duties and Responsibilities
Security Monitoring & Incident Response - Optimise and fine-tune SIEM rules, policies, and thresholds in collaboration with the MSSP. - Lead incident response efforts, including containment, mitigation, and resolution. - Conduct post-incident analysis, forensic investigations. - Security automation (SOAR) implementation. - Monitor and investigate security alerts from EDR, DLP, and email security tools.
SaaS & Identity Security - Oversee security configurations for SaaS applications (Google Workspace, Slack, Okta, etc.). - Manage authentication policies and access controls within SaaS tools and IAM. - Conduct security audits and ensure SaaS tools align with compliance requirements.
Endpoint, Network, and Email Security - Manage and secure endpoint protection (EDR), antivirus, firewalls, and VPN security. - Enforce network security best practices and assist in vulnerability management efforts. - Oversee email security configuration, phishing prevention, and spam filtering.
Compliance & Risk Management - Perform security audits and risk assessments for systems, vendors, and applications. - Collaborate with leadership to develop and implement risk mitigation strategies, ensure PCI and SOX compliance, and maintain GDPR regulatory compliance through proactive security control monitoring.
Vendor Collaboration & Continuous Improvement - Participate in security vendor meetings (MSSP, Crowdstrike, and others) to enhance security posture. - Stay up-to-date on industry trends, security threats, and best practices.
Be aware and accountable to your responsibilities in relation to workplace health and safety obligations.
Key Skills and Experience
- 5+ years of experience in IT security or cybersecurity engineering. - Proficiency with SIEM tools (Sumo Logic) and SOC operations. - Hands-on experience with EDR, DLP, firewalls, VPNs, IAM, and security automation. - Ideally experience in fast growing digital companies, requiring agile planning to manage fast growing operations. - Familiarity with a variety of information security standards and frameworks, (e.g PCI/DSS, NIST Cybersecurity Framework, ISO27001). - Familiarity with current and evolving international privacy obligations (e.g. Australian Privacy Principles, European Privacy principles: DPD, GDPR, EU-US-Shield..etc) - Experience securing SaaS tools and applications. - Scripting and automation skills (Ruby, Python) preferred. - Relevant industry certifications (CISSP, CISM, CEH, GCIH, or equivalent) preferred.
#LI-RemoteWhat we offer?
● 30 days - Christmas Bonus● 12 vacation days (from the first year)● 100% holidays bonus● Private Health Insurance (SGMM)● 5% Grocery Coupons (With legal cap)● 5% Savings Funds (Fondo de Ahorro)● Internet/electricity allowance (monthly paid)• Profit-share, Mexican entity● Round trip tickets around Mexico to a place you haven’t been twice a year.● Unlimited ebooks● Paid for educational courses that relate to your work● Top line equipment
What next?Submit your resume and answers to the below questions. Good luck!
About Us - We’re BCorp certified & believe in succeeding sustainably as one global team.- We’re committed to ensuring all our team feel welcome, included, and respected- We support the flexibility to work from anywhere, great benefits above the law, generous parental leave, wellness programs, social connection and learning opportunities to help you grow.
By submitting your application you are agreeing to our Privacy Policy. If you would like to understand how we handle personal information before submitting your application, please read through our Privacy Policy.
We appreciate the time you’ve taken to apply to Envato and we're committed to responding to every applicant.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
0
0
0
Category:
Security Engineering Jobs
Tags: Agile Antivirus Audits Automation CEH CISM CISSP Compliance CrowdStrike EDR Firewalls GCIH GDPR IAM Incident response ISO 27001 IT infrastructure Monitoring Network security NIST Okta Privacy Product security Python Risk assessment Risk management Ruby SaaS Scripting SIEM SOAR SOC SOX VPN Vulnerability management
Perks/benefits: Career development Health care Parental leave Salary bonus Unlimited paid time off Wellness
Regions:
Remote/Anywhere
North America
Country:
Mexico
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Information Systems Security Officer jobsSenior Security Analyst jobsInformation System Security Officer jobsSenior Cloud Security Engineer jobsSenior Cybersecurity Engineer jobsSystems Engineer jobsInformation Security Manager jobsSystems Administrator jobsSenior Network Security Engineer jobsIT Security Engineer jobsCyber Security Specialist jobsSenior Information Security Analyst jobsSecurity Specialist jobsSecurity Consultant jobsChief Information Security Officer jobsIT Security Analyst jobsInformation System Security Officer (ISSO) jobsInformation Systems Security Engineer jobsSenior Cyber Security Engineer jobsCyber Threat Intelligence Analyst jobsThreat Intelligence Analyst jobsSenior Product Security Engineer jobsSenior Information Security Engineer jobsSecurity Operations Analyst jobsCyber Security Architect jobs
GDPR jobsEncryption jobsTop Secret jobsSaaS jobsSplunk jobsBash jobsEDR jobsMalware jobsSQL jobsSDLC jobsRMF jobsThreat detection jobsIDS jobsFinance jobsForensics jobsIPS jobsDocker jobsIntrusion detection jobsTerraform jobsCompTIA jobsITIL jobsActive Directory jobsDoDD 8570 jobsSOC 2 jobsCRISC jobs