Platform Security Engineer

At Vintti, we're redefining the economics of staffing for US businesses. Our agency connects SMBs, startups, and firms with top Latin American talent, offering a dual benefit of high-quality work and cost savings. By tapping into this rich talent pool, our clients can optimize their budgets, increase productivity, and gain a competitive advantage in their respective markets.

A Platform Security Engineer plays a critical role in safeguarding an organization's digital infrastructure by ensuring the security and integrity of its platforms. This role involves designing, implementing, and managing robust security measures to protect systems, applications, and data from potential threats and vulnerabilities. The engineer collaborates with cross-functional teams to develop and enforce security policies, conduct risk assessments, and perform regular security audits. Continuous learning and staying updated on the latest cybersecurity trends and technologies are essential for effectively mitigating risks and maintaining a secure platform environment.

- Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field.
- Minimum of 5 years of experience in cybersecurity or a similar role.
- Strong understanding of security principles, methodologies, and best practices.
- Experience with security operations, monitoring, and incident response.
- Proficiency with security tools such as SIEM, firewalls, IDS/IPS, and endpoint protection.
- Hands-on experience with vulnerability assessment and remediation.
- Familiarity with cloud security and infrastructure (AWS, Azure, Google Cloud).
- Scripting skills in languages like Python, Bash, or PowerShell for automation.
- Knowledge of compliance standards and regulations (e.g., GDPR, HIPAA, PCI-DSS).
- Experience with penetration testing tools and methodologies.
- Strong analytical and problem-solving skills.
- Excellent communication skills, both verbal and written.
- Ability to work collaboratively across cross-functional teams.
- High level of attention to detail and organizational skills.
- Experience developing and implementing security policies and procedures.
- Certifications such as CISSP, CISM, CEH, or similar.
- Familiarity with encryption methodologies and tools.
- Ability to stay current with emerging security threats and trends.
- Experience managing and coordinating security-related projects.
- Strong documentation skills.

- Monitor and respond to security alerts and incidents.
- Conduct vulnerability assessments and coordinate remediation efforts.
- Develop and maintain security automation scripts and tools.
- Perform regular security audits and compliance checks.
- Collaborate with development and operations teams to implement security best practices.
- Analyze security trends and recommend improvements to existing processes and tools.
- Review and approve security-related changes to the platform.
- Implement and manage security controls such as firewalls, intrusion detection systems, and encryption protocols.
- Assist with penetration testing and oversee third-party security testing.
- Document and report on security incidents, breaches, and follow-up actions.
- Participate in security training and awareness programs for employees.
- Research and stay current with emerging security threats and technologies.
- Create and maintain documentation for security policies, procedures, and protocols.
- Ensure secure configuration and maintenance of cloud infrastructure.
- Develop incident response plans and conduct simulation exercises.
- Coordinate with legal and compliance teams to ensure adherence to regulatory requirements.
- Provide security expertise during architecture and design reviews.
- Perform root cause analysis of security incidents and develop strategies for prevention.
- Evaluate and select security products to enhance platform security.
- Manage security-related projects and timelines from inception to completion.

The ideal candidate for the Platform Security Engineer role will possess a bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field, complemented by at least 5 years of hands-on experience in cybersecurity. This seasoned professional will have a profound understanding of security principles, methodologies, and best practices, demonstrated through their adeptness with security operations, monitoring, and incident response. Proficient in using a variety of security tools such as SIEM, firewalls, IDS/IPS, and endpoint protection, they will also have hands-on experience with vulnerability assessments and remediation, as well as cloud security infrastructure for platforms like AWS, Azure, or Google Cloud. Mastery of scripting languages like Python, Bash, or PowerShell will be essential for automation tasks, and their knowledge of compliance standards and regulations, including GDPR, HIPAA, and PCI-DSS, will bolster their effectiveness in regulatory adherence. Additionally, the ideal candidate will have a proven track record with penetration testing tools and methodologies, coupled with strong analytical, problem-solving, and documentation skills. Valued attributes such as excellent communication abilities, both verbal and written, and a strong proactive mindset underscore their capability to work collaboratively across teams and manage multiple priorities effectively. With certifications like CISSP, CISM, or CEH, and a passion for staying current with emerging security threats, this individual will thrive in a rapidly changing environment. Their high level of integrity, ethical standards, and ability to handle high-pressure situations calmly and effectively will make them not only a strong leader but also an invaluable contributor to the security initiatives of the organization. This is a highly motivated professional who is driven by a sense of responsibility, ownership, and a continuous learning mindset in the face of evolving security landscapes.

- Monitor and respond to security alerts and incidents.
- Conduct vulnerability assessments and coordinate remediation efforts.
- Develop and maintain security automation scripts and tools.
- Perform regular security audits and compliance checks.
- Collaborate with development and operations teams to implement security best practices.
- Analyze security trends and recommend improvements to existing processes and tools.
- Review and approve security-related changes to the platform.
- Implement and manage security controls such as firewalls, intrusion detection systems, and encryption protocols.
- Assist with penetration testing and oversee third-party security testing.
- Document and report on security incidents, breaches, and follow-up actions.
- Participate in security training and awareness programs for employees.
- Research and stay current with emerging security threats and technologies.
- Create and maintain documentation for security policies, procedures, and protocols.
- Ensure secure configuration and maintenance of cloud infrastructure.
- Develop incident response plans and conduct simulation exercises.
- Coordinate with legal and compliance teams to ensure adherence to regulatory requirements.
- Provide security expertise during architecture and design reviews.
- Perform root cause analysis of security incidents and develop strategies for prevention.
- Evaluate and select security products to enhance platform security.
- Manage security-related projects and timelines from inception to completion.

- Strong proactive mindset and attention to detail
- Excellent problem-solving abilities
- Effective communicator with both technical and non-technical stakeholders
- High level of integrity and ethical standards
- Thrives in a collaborative team environment
- Strong analytical and critical thinking skills
- Ability to manage multiple priorities and projects simultaneously
- Innovative and forward-thinking approach to security
- Strong leadership and decision-making capabilities
- Passionate about cybersecurity and continuous learning
- Adaptability to rapidly changing environments and security landscapes
- Detail-oriented with strong documentation skills
- Ability to think strategically while maintaining a hands-on approach
- Strong organizational skills and ability to work independently
- Motivated by a sense of responsibility and ownership of security initiatives
- Ability to handle high-pressure situations calmly and effectively

- Competitive salary range based on experience and qualifications
- Comprehensive health, dental, and vision insurance
- Flexible work hours and remote work opportunities
- Generous paid time off and holiday schedule
- Retirement savings plan with company match
- Professional development opportunities and support for certifications
- Access to the latest technology and security tools
- Employee wellness programs including mental health support
- Tuition reimbursement for relevant courses and certifications
- Collaborative and inclusive work culture
- Opportunities for career advancement and internal mobility
- Recognition and rewards programs for outstanding performance
- Life and accident insurance coverage
- Short-term and long-term disability insurance
- Parental leave and family support benefits
- Childcare assistance programs
- Company-sponsored events and team-building activities
- Transportation and commuting benefits
- Employee assistance programs for personal and professional support