SecOps Engineer

About

Candex is a rapidly growing private global B2B fintech company on a mission to reshape the way businesses transact. Our tech-based solution makes purchasing fast and easy for enterprise buyers. Recognized in the ProcureTech 100 for Procurement Innovation, our SaaS Platform and accompanying services completely transform the buying experience for large companies around the globe. Buyers enjoy the simplicity of Candex for their purchases, vendors get paid faster, and procurement teams love the increased control they gain over purchases — Everyone wins!

We serve companies in the Global 2,000 and our existing clients include some of the world’s biggest corporations. We’ve raised over $85M from leading investors including Goldman Sachs, JP Morgan, American Express, Altos, Craft, and NFX. Available in almost 50 countries, Candex is expanding our already robust footprint and is looking for ambitious, fun people to join us on our mission to revolutionize the way businesses engage and pay their suppliers.

Job Overview

The SecOps Engineer plays a critical role in the detection, analysis, and response to cybersecurity threats. This position is responsible for monitoring security systems, managing incidents, improving security tooling, and ensuring that the company’s infrastructure and data remain protected from malicious actors.   

Key Responsibilities

• Threat Monitoring and Response
• Monitor SIEM and EDR platforms for security events and anomalies.
• Perform initial analysis and triage of security alerts to determine severity and impact.
• Respond to incidents according to playbooks and escalate as necessary.
• Security Tooling and Automation
• Maintain and tune detection rules across security tools (SIEM, IDS/IPS, EDR).
• Develop and improve scripts and automation to streamline incident response and reporting.
• Assist with integration of security tooling with other systems (e.g., ticketing, monitoring).
• Incident Management
• Investigate security incidents to identify root cause, containment strategies, and remediation plans.
• Work with cross-functional teams (IT, DevOps, Engineering) to resolve vulnerabilities or misconfigurations.
• Vulnerability Management
  
  
• Support regular scanning and analysis of vulnerabilities across endpoints, servers, and cloud environments.
• Coordinate remediation efforts with infrastructure and application teams.
• Documentation and Reporting
• Maintain clear and concise documentation of incidents, findings, and improvements.
• Generate periodic security metrics and incident reports.

Vendors and tools

• Help research new security tools and techniques to improve company’s overall maturity
• Assist with reviewing new and existing vendors

Go-To Market

• Assist with responding to customer inquiries regarding company security posture / practices.

Required Qualifications

• 2–5 years of experience in security operations or a similar role.
• Ability to plan and execute plan
• Experience with cloud environments (AWS, Azure, GCP) and associated security tools.
• Proficiency with SIEM platforms (e.g., Splunk, Sentinel, QRadar).
• Experience with EDR platforms (e.g., CrowdStrike, SentinelOne).
• Strong knowledge of TCP/IP, network security architecture, and system-level security principles.
• Familiarity with scripting languages (Python, PowerShell, Bash) and automation tools.
  
  

Preferred Qualifications

• Bachelor’s degree / Practical Engineer  in Computer Science, Cybersecurity, Information Systems, or equivalent experience.
• Security certifications (e.g., CCSP, CISSP, GSEC, GCIA, GCIH, CEH, or equivalent).
• Cloud certification from one or more of the major cloud vendors
• Knowledge of MITRE ATT&CK framework.
• Familiarity with SOC 2, ISO 27001,NIST and GDPR

Equal Opportunity Employer

Studies indicate that individuals from marginalized backgrounds, including women, often choose to apply for positions only when they fulfill all listed requirements. However, if you find that this role resonates with you even though you don't match every criterion, we strongly encourage you to get in touch with us. Our commitment to being an equal opportunity employer drives us to cultivate a workplace that celebrates diversity and inclusivity, embracing individuals from various backgrounds. Our hiring process prioritizes skills and abilities, and our wide-reaching outlook is something we take great pride in. Feel free to reach out!