Information Security Engineer

Summary

Join SMASH, a tech talent agency connecting professionals in Costa Rica and Colombia with US companies, and become an Information Security Engineer. This remote position offers a chance to contribute to a company with a strong culture and Great Place to Work® certification. You will investigate security alerts, develop standard operating procedures, maintain threat awareness, and collaborate with various teams. The role requires hands-on SOC experience, strong foundational knowledge of IT security, and excellent communication skills. SMASH provides benefits such as work-from-anywhere flexibility, private medical insurance, an English academy, business skills coaching, tech university discounts, and various events and perks.

Requirements

• Hands-on SOC experience investigating and responding to security events across two or more of the following: SIEM, EDR, email security, NGFW, cloud platforms, threat intelligence
• Strong foundational knowledge of core enterprise information technologies and security principles
• Experience developing and documenting processes for others to follow
• Strong communication and interpersonal skills
• Ability to complete open-ended tasks with limited direction/supervision
• Strong analytical skills, attention to detail, and a sense of curiosity
• Possess 2-3 years of experience in Information Systems or IT security-related functions

Responsibilities

• Investigate security alerts and threat hunting leads across a variety of technologies (SIEM, EDR, email security, etc) as part of the SOC and with the Threat Management team
• Develop, document, and refine standard operating procedures for investigation and response
• Maintain situational awareness of changes to threat landscape, industry trends, and internal operating environment
• Interact frequently with other members of the Information Security teams, internal IT Operations and Engineering teams, and vendor technical resources
• Conduct proactive monitoring, investigations, and mitigation of security events
• Spend time understanding the environment you're responsible for and engage with various teams to gain further knowledge of the environment(s)
• Recognize potential, successful, and unsuccessful intrusion attempts and compromises through review and analysis of relevant event data
• Participate in escalation and response to significant security events

Preferred Qualifications

IT degree and/ or training

Benefits

• Work from everywhere
• Private Medical Insurance
• English Academy for Employees and Relative
• Business Skills Coach – Certifications
• Discounts with Tech Universities
• Events and additional Perks