Job Title: Linux Cryptography and Security Engineer Location: Bogota, D.C., Capital District, Colombia We are seeking a highly skilled Linux Cryptography and Security Engineer to join our high-octane security team. As a key member of our team, you will be responsible for tackling offensive and defensive challenges in a fast-paced environment. Responsibilities: - Act as a Tier 2/3 SOC analyst, investigating and responding to security incidents with expertise and precision. - Configure and secure systems, including antivirus software, firewalls, and operating system hardening, ensuring the integrity of our network. - Design and implement scripts to automate agent deployment, policy cleanup, and scanning tools, streamlining our processes and enhancing efficiency. - Troubleshoot complex issues related to various tools, such as Antivirus, Qualys, DNS filters, and Endpoint Detection and Response (EDR). - Perform manual and automated web application and API penetration testing, adhering to OWASP Top 10 guidelines and identifying logic bugs. - Deliver Proof of Concepts (PoCs) and collaborate with developers to remediate security flaws, ensuring the robustness of our applications. - Run internal red team simulations and test Security Operations Center (SOC) detection capabilities at least quarterly, continuously improving our defenses. - Enhance detection rules and visibility in EDR and Security Information and Event Management (SIEM) tools, providing actionable insights for our defenders. - Design sophisticated threat scenarios and assist defenders in responding more effectively, fostering a culture of collaboration and innovation. Requirements: - Possess strong experience with Windows and Linux system administration, with a proven track record of managing large-scale server environments. - Have previous work experience in a SOC, threat hunting, or incident response role, with a deep understanding of security best practices. - Be skilled with industry-standard tools like Burp Suite, Nmap, SQLmap, and proficient in scripting languages such as Python, PowerShell, or Bash. - Exhibit solid communication skills in English, both written and verbal, to effectively collaborate with cross-functional teams. - Have experience using vulnerability tracking platforms, such as DefectDojo, to identify and prioritize security threats. - Be an active participant in online communities, such as Hack The Box, TryHackMe, and maintain a public profile or link to relevant write-ups or results. - Maintain a bug bounty program with public write-ups or results, showcasing your commitment to security research and responsible disclosure. - Have experience with red or purple team operations, including C2 frameworks, adversary emulation, and payload creation. - Possess knowledge of cloud security, specifically Amazon Web Services (AWS), Microsoft Azure, or Google Cloud Platform (GCP). - Hold certifications such as OSCP, OSWE, CRTO, or similar, demonstrating your expertise and dedication to continuous learning. Benefits: We offer a competitive salary range of $4500-$6000 USD per month, plus holidays, and unlimited Paid Time Off (PTO). Our company values flexibility and work-life balance, allowing you to recharge and excel in your role. Seniority level: This position is suitable for mid-senior-level candidates with significant experience in Linux cryptography and security engineering. Employment type: This is a full-time opportunity, offering a stable and rewarding career path within our organization. Job function: This role falls under the category of Other, with a focus on IT services and consulting.