About Our Client and the Role

Our client is a fast-growing software development company delivering innovative solutions worldwide, with a strong focus on the U.S. market. Headquartered in sunny San Diego, California, they’ve built a team of 300+ professionals across multiple countries. Their success comes from a deep commitment to results and long-term partnerships built on trust.

They are partnering with a leading U.S. marketing agency—working with brands like American Express, T-Mobile, Coach, and Meta—to build a new infrastructure team in Costa Rica. They’re looking for an experienced SecOps/Security Engineer to join this team, collaborating closely with both the agency’s engineers and our client’s teams, and playing a key role in our client’s growth.

The Security Engineer will be pivotal in protecting the agency and its end-clients against evolving threats. You will design, implement, and optimize security tools, systems, and automation—baking security into solutions from the outset. Working with DevOps, TechOps, Technology, and Platform teams, you’ll enhance the scalability and efficiency of Autonomic Security Operations while ensuring compliance with HITRUST and other industry standards.

Key responsibilities include managing and optimizing the security platform stack—with tools such as Google SecOps, Google Threat Intelligence, BindPlane, and Datadog. You’ll monitor, configure, and evolve SIEM, XDR, threat intelligence, and observability platforms to strengthen defenses. Reporting to the agency’s Information Security Director, you’ll ensure seamless integration of new applications and acquisitions while advancing security practices across the organization.

This role requires deep technical expertise and a hands-on approach to safeguard infrastructure and maintain robust autonomous security operations.

Be Accountable and Responsible forSecurity Engineering

• Design and implement secure systems, tools, and automation solutions.
• Develop and refine detection logic, enhancing visibility and data integration.
• Apply security reliability engineering principles and integrate threat intelligence with vulnerability management.

Governance and Compliance

• Support and enforce policies aligned with the client’s security framework and compliance standards.
• Assess, mitigate, and document information security risks in operations.
• Manage compliance for new applications and acquisitions, ensuring seamless integration into the client’s technology infrastructure.

Security Platform Management

• Administer and optimize core security platforms, including Google SecOps, Google Threat Intelligence, BindPlane, and Datadog.
• Ensure platform availability, performance, and integrity through regular maintenance and upgrades.
• Collect, process, and integrate telemetry and security data for improved monitoring to support a Managed Services SOC.

Threat Detection and Incident Response

• Partner with the SOC to develop and fine-tune detection rules and alerts.
• Work with the SOC to monitor and investigate security incidents, escalating as needed.
• Collaborate with Incident Response teams during breaches and in post-incident analysis.

Automation and Systems Integration

• Automate workflows and incident responses using scripting (e.g., Python, PowerShell) and platform-native tools.
• Integrate security platforms with technology systems (e.g., identity management, ticketing, cloud) and manage security configurations using IaC principles.

Security Best Practices

• Enforce security best practices across systems and cloud environments.
• Assist with vulnerability assessments, penetration testing, and audits; drive remediation.
• Contribute to policy, procedure, and standard development.

Reporting and Documentation

• Generate reports on security posture, platform performance, and incidents.
• Maintain documentation of platform configurations, operational procedures, and incident playbooks.
• Provide training on security tools and best practices to technology teams.

Qualifications

• 3–5+ years in Security Engineering, Security Operations, or a related hands-on role applying engineering principles to security.
• Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience).
• Practical experience integrating new applications and acquisitions into existing IT infrastructures.
• Familiarity with compliance frameworks (e.g., HITRUST, SOC 2, ISO 27001, GDPR) preferred.
• Solid understanding of security architecture, system design, and cloud security principles (GCP, Azure, AWS).
• Proficiency with SIEM, SOAR, EDR/XDR, NDR, firewalls, IDS/IPS, and cloud security platforms.
• Hands-on experience with Google SecOps (Chronicle Security Operations), Google Cloud security services, Google Threat Intelligence, BindPlane (observIQ/OpenTelemetry), and Datadog (security monitoring, cloud security, SIEM).
• Experience developing detection rules/logic (e.g., YARA-L), case management, and automation playbooks.
• Scripting skills in Python, PowerShell, and Bash.
• Skilled with SOAR platforms, automation frameworks, and telemetry data collection/processing for security.
• Knowledge of modern cloud architectures (microservices, containers, serverless).
• Strong understanding of networking, Linux/Windows, and common attack vectors.
• Experience with incident response, forensics, and leveraging threat intelligence for proactive defense.
• Practical data analysis and troubleshooting skills for security challenges.
• Strong written and verbal communication; ability to explain complex topics to technical and non-technical audiences.
• Effective collaboration with security analysts, developers, and cross-functional teams.
• Ability to work independently, manage multiple priorities, and thrive in a fast-paced environment.
• Relevant security certifications (e.g., ISC2, SANS, GIAC, or Google Cloud-specific certifications).

Preferred

• Certifications such as CISSP, CSSLP, CompTIA Security+, Google Cloud Professional Cloud Security Engineer.
• Experience in marketing/advertising/technology agency environments.
• Exposure to additional security tools (EDRs, vulnerability scanners, CASBs).
• Familiarity with DevOps/DevSecOps practices.

Why You’ll Love Working with Our Client

• Curiosity-driven culture: new ideas and personal growth are encouraged.
• Pragmatic decision-making: common sense guides focus and speed—no unnecessary noise.
• Ownership and trust: no micromanagement; clear outcomes and accountability.
• A voice at the table: thoughtful challenge is welcome—courage matters. Who dares—wins.

Ready to make an impact? Apply to join our client’s team.