Role overview

Senior Security Engineer (Hybrid or Remote)

Requirements and responsibilities

Readable role content extracted into sections for faster review.

your mission

  • Own SIEM alerting end-to-end: ship logs from endpoints, IdP, VPN, SaaS, and cloud; write and tune detection rules; cut false positives.
  • Act as first responder for security incidents — investigate, contain, drive to closure with clear runbooks — and feed recurring issues back into preventive controls.

your mission

  • Administer the IdP (SSO via SAML/OIDC, MFA, conditional access) and run access recertification end-to-end across IdP, SaaS, AWS, and internal tools — scope, evidence, follow-through on revocations.
  • Hunt down over-permissive and stale access, enforce least privilege and PAM, catch SoD gaps, and make JML and third-party access work in practice.
  • Improve SaaS security posture (Google/Microsoft, Slack, GitHub, others) and apply DLP controls to limit data leakage.

your mission

  • Keep the endpoint stack healthy and well-tuned — MDM, XDR/AV, device-compliance checks for VPN/ZTNA — and define posture requirements (disk encryption, EDR present, OS version) with automated remediation.
  • Defend against phishing and spoofing — secure email gateway rules, DMARC/SPF/DKIM — and run phishing simulations and security awareness, acting on the results.

your mission

  • Build internal tooling and automate repetitive operations — reduce manual work, don't just operate it.
  • Own the roadmap for your areas: identify gaps, lead initiatives independently, and raise the bar rather than just maintain it.

your profile

  • 5+ years in security operations, corporate/IT security, or endpoint engineering.
  • Strong with a SIEM (Splunk, Elastic, Panther, Sumo Logic) — detection engineering and incident response — plus an identity provider (Okta, Entra ID, Google Workspace), access recertification, and least-privilege / PAM.
  • Working knowledge of endpoint security (MDM, XDR/EDR/AV) and email / phishing defense.
  • Practical experience securing how a company uses AI internally: shadow AI discovery, DLP for AI tools, controls for AI assistants and agents, and a working risk framework for adopting new ones. You've done this for real, not from a vendor pitch deck.
  • Strong scripting and automation skills — you build tooling against APIs, not just configure consoles.
  • Track record of driving improvements end-to-end and leading initiatives with little oversight.
  • Сlear written and spoken English for engineers and leadership.

why join vivid?

  • We have a hybrid model in our Limassol office, or fully remote outside office locations.
  • We support relocation to Cyprus (visa, package) when needed.
  • Learning & development budget to support your professional growth.
  • Fully paid vacation and sick leave.
  • Sports compensation.
  • Real growth prospects, significant responsibility, and the ability to make an immediate impact from day one.
Similar roles

Keep a backup shortlist.

Browse stack
FocusSecurity EngineeringRole area
Seniority signalSeniorCandidate level
StackAWSPrimary skills
Location40 accepted countriesEligibility

Stack

Use these tags to compare similar remote roles.

Location eligibility

Candidates should apply only when their profile country is listed here.

Hiring flow

WithMira shows the role, then sends candidates to the company application.

1Check role fit, stack, and location eligibility in WithMira.
2Open the company application page from the tracked apply link.
3Save the role or subscribe for similar opportunities before leaving.
Apply on company siteCompany siteOpen link