Senior Information Security Specialist

Summary

Join RYZ Labs as a Senior Information Security Specialist and lead the Security and Incident Response function. This remote position, open only to candidates in Argentina or Uruguay, requires availability during EST/PST hours. You will partner with stakeholders, develop security procedures, support incident response, implement security controls, and conduct workforce training. The role demands extensive experience in security operations, incident response, and cloud security, along with strong communication skills. RYZ Labs offers a dynamic startup environment with opportunities for growth and collaboration.

Requirements

• 2+ years of experience with Security Operations (SOC) and Incident Detection/Response programs
• Hands-on experience on administrating security technologies and tools such as Zerotrust Access solution,WAF, IAM solutions
• 2+ years of cyber risk management or compliance program experience
• Exposure managing Enterprise PaaS solutions (AWS, GCP) and cloud security tooling
• Ability to manage multiple vendors, contracts, and 3rd party escalations
• Direct experience leading security incident teams, including monitoring, detection, response, and threat-hunting functions across Enterprise and Product services
• Someone who has led a roadmap for automation and orchestration to help scale and mature security incident response activities
• Ability to communicate, both orally and written, with all levels of management and end-users across varying levels of technical backgrounds
• Customer service-oriented person with a problem-solving attitude
• 5+ years of relevant experience working in Information Security in a cloud-first environment; with a minimum of 2 years of experience directly, working in a dedicated incident response, threat & vulnerability management, or digital forensics role
• 2+ years deploying and operating a security information and event management tool (SIEM) or other security operations (SOC) related technologies
• Bachelor’s degree in Computer Science, Programming, or related field, or equivalent combination of education and experience
• Proficient in Network and Security technologies
• You have experience using log and data analysis platforms such as Splunk, Sumologic, Datadog, Grafana etc
• Familiarity with Crowdstrike and AWS security tooling in cloud environments or similar products and services

Responsibilities

• Partner with internal stakeholders, vendors, and Infosec management to own projects, solutions, and key responsibilities within the larger business initiatives of a hyper-growth company
• Participate in security incident response planning and exercises
• Develop and carry out Security Operations and Incident Management procedures and policies
• Support the front line responder by identifying, triaging, and remediating security events, anomalies, and incidents
• Provide incident response support as a key stakeholder. Collaborate with the security & engineering teams to proactively improve and secure systems from future attacks
• Implement detective and protective security controls across the infrastructure and systems to improve security maturity
• Utilize Sumo Logic logging and monitoring platform to publish security metrics
• Awareness training of the workforce on information security standards, policies, and best practices
• Develop, implement, and maintain information security policies, standards, and procedures

Preferred Qualifications

• Programming skills
• Experience with Kubernetes
• AWS Certifications
• Static and/or Dynamic code analysis tooling
• Experience writing SDLC-related policy
• Relevant Professional certifications such as CISSP, GCIA, GCIH, OSCP, or similar
• Experience with the Mitre Att&ck Framework and associated tactics and techniques or other threat modeling exposures

Benefits

• Remote work
• Opportunities for growth and collaboration