Reveleer
Sr. Information Security Engineer
Vaga remota de Information Security com fit claro de localização do candidato.
Publicada14 de jun. de 2026
Países elegíveis1 país aceito
Sinal de senioridadeSenior
Modelo de trabalhoRemoto
Locais aceitos para candidatos
Estados Unidos
Resumo da vaga
Sr. Information Security Engineer
Requisitos e responsabilidades
Conteúdo da vaga extraído em seções para revisão mais rápida.
1. Cloud and Infrastructure Security
- Design and maintain secure architectures across AWS, Azure, and GCP environments.
- Implement guardrails and controls using services such as AWS Security Hub, GuardDuty, Config, and IAM.
- Conduct regular vulnerability scans, configuration reviews, and remediation tracking for infrastructure and workloads.
- Develop and enforce network segmentation, encryption, and key management policies.
2. Application & SaaS Security
- Collaborate with DevOps and Engineering to integrate security into CI/CD pipelines (Snyk, StackHawk, etc.).
- Perform threat modeling, code reviews, and secure design reviews for microservices and APIs.
- Support penetration testing and application security validation efforts.
- Help ensure PHI/PII is protected across all SaaS platforms.
3. Endpoint & Identity Security
- Manage and enhance EDR/XDR solutions (e.g., Cortex, Defender for Endpoint).
- Implement and monitor identity security controls through Microsoft Entra ID (Azure AD), Conditional Access, and PIM.
- Support Intune and MDM compliance policies for Windows, macOS, and mobile devices.
4. Security Operations & Incident Response
- Monitor alerts, investigate incidents, and coordinate responses with the SOC.
- Develop and improve incident response runbooks, playbooks, and forensic analysis procedures.
- Support SIEM integrations and continuous improvement of detection use cases.
5. Governance, Risk & Compliance
- Support audits and evidence collection for HIPAA, HITRUST, SOC 2, and customer security assessments.
- Maintain asset inventories, risk registers, and remediation tracking.
- Collaborate with Compliance to ensure alignment between security controls and policies.
- Contribute to security awareness and training initiatives.
Qualifications
- Bachelor’s degree in Computer Science, Information Security, or equivalent experience.
- 5+ years of experience in security engineering or related technical security roles.
- Strong knowledge of cloud-native security (AWS, Azure) and modern SaaS architectures.
- Hands-on experience with SIEM, EDR/XDR, IAM, vulnerability management, and security automation.
- Familiarity with HIPAA, HITRUST, and SOC 2 requirements.
- Experience securing containerized and serverless workloads (e.g., EKS, Lambda).
Preferred:
- Certifications such as CISSP, CISM, CCSP, AWS Security Specialty, or GIAC (GSEC, GCIA, GCIH).
- Experience with Terraform, Ansible, or CloudFormation for infrastructure-as-code security.
- Experience in DevSecOps pipelines and tools (e.g., Jenkins, Bitbucket).
- Strong scripting skills (Python, PowerShell, or Bash).
Key Competencies
- Analytical and detail-oriented with strong problem-solving skills.
- Ability to balance business needs with risk mitigation.
- Excellent communication skills, able to translate complex technical topics for non-technical stakeholders.
- Collaborative team player with a proactive approach to continuous improvement.
Vagas similares
Mantenha uma lista reserva.
Stack
Use estas tags para comparar vagas remotas similares.
Elegibilidade de localização
Candidatos devem aplicar apenas quando o país do perfil estiver listado aqui.
Seu perfilPaís não definidoEntre para comparar seu país com esta vaga.
Fluxo de contratação
O WithMira mostra a vaga e depois envia candidatos para a aplicação da empresa.
1Confira fit da vaga, stack e elegibilidade de localização no WithMira.
2Abra a página de aplicação da empresa pelo link rastreado.
3Salve a vaga ou assine oportunidades similares antes de sair.