Security Engineer

Vintti is a dynamic staffing agency bridging the gap between Latin American talent and US-based businesses. We specialize in connecting skilled professionals from Latin America with small and medium-sized businesses, startups, and firms across the United States. Our mission is to provide top-tier staffing solutions that enable US companies to access a diverse pool of talented individuals while offering exciting career opportunities to Latin American professionals. By leveraging our extensive network and deep understanding of both markets, Vintti facilitates mutually beneficial partnerships that drive growth and innovation for our clients and candidates alike.

A Security Engineer is responsible for safeguarding an organization's digital assets by designing, implementing, and maintaining robust security measures. This role involves identifying potential vulnerabilities, conducting security audits, and developing strategies to mitigate risks. Security Engineers work collaboratively with IT teams to ensure the infrastructure is secure, while staying current with emerging threats and compliance standards. Their expertise helps protect sensitive data, ensuring the company's technological environment remains resilient against cyber attacks and breaches.

- Bachelor's degree in Computer Science, Information Technology, or related field.
- Minimum of 3-5 years of experience in a security engineering role.
- Strong understanding of computer network architecture and security management.
- Proficiency in various security tools and technologies, such as firewalls, IDS/IPS, SIEM, and antivirus.
- Experience with vulnerability assessment and penetration testing tools.
- Firm grasp of security frameworks and standards such as NIST, ISO/IEC 27001, and CIS Controls.
- Familiarity with regulations and compliance requirements like GDPR, HIPAA, and PCI-DSS.
- Knowledge of encryption technologies and data protection methods.
- Ability to analyze security threats and respond effectively.
- Strong analytical and problem-solving skills.
- Excellent communication and documentation skills.
- Experience in incident response and forensic analysis.
- Ability to conduct security training and awareness programs.
- Proficiency in scripting or programming languages for automation.
- CISSP, CISM, CEH, or other relevant security certifications preferred.
- Knowledge of cloud security practices and technologies (e.g., AWS, Azure).
- Strong understanding of operating systems (Windows, Unix/Linux) internals and hardening techniques.
- Experience working with SOC environments and security monitoring.
- Familiarity with secure development practices and secure software development lifecycle (SSDLC).
- Ability to work collaboratively with cross-functional teams.

- Monitor security alerts and respond promptly.
- Conduct regular security assessments and audits.
- Develop and implement security policies, protocols, and procedures.
- Perform vulnerability assessment and penetration testing.
- Analyze security incidents and identify root causes and mitigation strategies.
- Manage security tools such as firewalls, IDS/IPS, antivirus, and SIEM.
- Collaborate with IT teams to design secure architecture.
- Document security breaches and assess damage.
- Conduct training sessions on security best practices.
- Investigate and resolve security-related issues.
- Stay updated with latest security trends and threats.
- Ensure regulatory compliance and prepare for audits.
- Assist in disaster recovery planning and execution.
- Coordinate with external parties when necessary.
- Provide technical support on cybersecurity matters.
- Develop and manage incident response plan.
- Review system configurations and access controls.
- Perform risk assessments on new projects or technologies.
- Ensure data encryption standards are maintained.
- Test and evaluate new security tools and technologies.

The ideal candidate for the Security Engineer role will possess a Bachelor's degree in Computer Science, Information Technology, or a related field, complemented by 3-5 years of hands-on experience in security engineering. They will have an in-depth understanding of computer network architecture, security frameworks such as NIST and ISO/IEC 27001, and be proficient in a wide range of security tools and technologies, including firewalls, IDS/IPS, SIEM, and encryption methods. This candidate will excel in vulnerability assessment, penetration testing, and incident response, showcasing strong analytical and problem-solving skills. They will hold relevant security certifications such as CISSP, CISM, or CEH, and be familiar with cloud security practices and compliance requirements like GDPR and PCI-DSS. The ideal professional will demonstrate excellent communication and documentation abilities, a proactive and vigilant mindset, and possess the versatility to handle multiple tasks under pressure. Known for their critical thinking, ethical approach, and collaborative spirit, this candidate will communicate complex security concepts effectively and lead security training initiatives. They will be independent, self-motivated, and methodical, with a strong sense of responsibility, attention to detail, and capability to think like an attacker to anticipate threats. Resilient in high-stress situations, they will take initiative in resolving security issues and creatively develop robust security strategies while guiding and mentoring others in best practices.

- Monitor security alerts and threats from various sources and respond promptly.
- Conduct regular security assessments and audits to ensure system integrity.
- Develop and implement security policies, protocols, and procedures.
- Perform vulnerability assessment and penetration testing on network and application infrastructure.
- Analyze security incidents and breach attempts to identify root causes and mitigation strategies.
- Maintain and manage security tools such as firewalls, intrusion detection/prevention systems, antivirus, and security information and event management (SIEM) systems.
- Collaborate with IT teams to design security architecture and integrate security into all phases of software development.
- Document security breaches and the extent of damage caused.
- Conduct regular training sessions and awareness programs for employees on security best practices.
- Investigate and resolve security-related issues in a timely manner.
- Stay updated with the latest security trends, threats, and technology solutions.
- Ensure regulatory compliance and prepare for security audits.
- Assist in disaster recovery planning and execution.
- Coordinate with external parties, such as law enforcement or security vendors, if necessary.
- Provide technical support and guidance to the organization on cybersecurity matters.
- Develop and manage the organization's incident response plan.
- Regularly review system configurations and access controls.
- Perform risk assessments on new projects or technologies.
- Ensure that data encryption standards are maintained for sensitive information.
- Test and evaluate new security tools and technologies.

- Proactive and vigilant mindset
- Strong analytical and critical thinking abilities
- Excellent troubleshooting and problem-solving skills
- High level of attention to detail
- Effective communication skills, both verbal and written
- Strong collaborative skills and team-oriented approach
- Ability to work under pressure and manage multiple tasks simultaneously
- Adaptability and willingness to continuously learn and stay current with emerging threats and technologies
- Ethical and integrity-driven mindset
- Strong sense of responsibility and accountability
- Ability to think like an attacker to stay ahead of potential threats
- Initiative to take ownership of security issues and drive them to resolution
- Creative in developing security strategies and solutions
- Patient and methodical in conducting assessments, audits, and investigations
- Resilient in handling and prioritizing high-stress situations and emergency responses
- Ability to communicate complex security concepts in an understandable manner
- Strong leadership skills for training and guiding others on security best practices
- Independent and self-motivated, capable of working without constant supervision
- Detail-oriented in documenting security incidents and creating thorough reports
- Strong judgment and decision-making capabilities in high-pressure scenarios

- Competitive salary range: $90,000 - $120,000 annually, based on experience and qualifications
- Comprehensive health insurance (medical, dental, vision)
- Retirement savings plan with company match (401(k))
- Generous paid time off (PTO) policy including vacation, sick leave, and holidays
- Flexible work hours and remote work options available
- Professional development opportunities including training programs, certifications, and conferences
- Employee wellness programs including gym memberships and wellness incentives
- Paid parental leave for both primary and secondary caregivers
- Life and disability insurance coverage
- Employee assistance program (EAP) providing counseling and support services
- Opportunity to work with cutting-edge security technologies and tools
- Collaborative and inclusive work environment
- Stock option or equity participation programs (if applicable)
- Company-sponsored social events and team-building activities
- Tuition reimbursement for further education and advanced degrees
- Transportation and commuting benefits (e.g., parking allowance or public transport subsidies)
- Childcare support or referral services
- Access to industry research, publications, and resources including professional memberships
- Recognition and reward programs