Middle Information Security Specialist ID22147

This is a remote position and we are hiring candidates from the whole country.

AgileEngine is one of the Inc. 5000 fastest-growing companies in the US and a top-3 ranked dev shop according to Clutch. We create award-winning custom software solutions that help companies across 15+ industries change the lives of millions.

If you like a challenging environment where you’re working with the best and are encouraged to learn and experiment every day, there’s no better place - guaranteed! :)

What you will do

• Maintain AgileEngine’s Information Security Framework and underlying policies, procedures and guidelines;
• Design and implement controls to ensure that security requirements are met;
• Develop and integrate security solutions and technologies;
• Implement security best practices, hardening guidelines and protection profiles;
• Perform ongoing security monitoring of information systems, including assessing information security risk through risk analysis;
• Conduct gap analysis and vulnerability assessments on a regular basis and consult in mitigating vulnerabilities;
• Manage and configure various security tools (SIEM, SOAR, HIDS/NIDS, WAF, etc.);
• Response to security incidents and vulnerability management processes;
• Evaluate and recommend new information security technologies and counter-measures against threats to information and systems;
• Conduct periodic internal information security audits;
• Help create effective staff training programs to increase security awareness across AgileEngine.
  
  

Must haves

• 2+ years of experience in information security;
• Upper-intermediate in spoken and written English;
• Strong understanding of information security principles, practices, and methodologies;
• Knowledge of at least one security standard: ISO/IEC 27001, NIST CSF, PCI DSS, or SOC 2;
• Practical experience in developing and writing security policies and procedures;
• Hands-on experience with the incident response process, including detection, investigation, and mitigation;
• Excellent written communication skills, with the ability to produce clear, concise, and well-structured reports;
• Strong analytical skills, with the ability to assess complex systems, identify security issues, and devise effective solutions.
  
  

Nice to haves

• Familiarity with cloud architectures and secure network design principles;
• Understanding of troubleshooting techniques relevant to security and systems management;
• Experience with operating system hardening and secure configuration practices;
• Hands-on experience with vulnerability assessment tools;
• Practical experience using SIEM and other security monitoring tools.
  
  

The benefits of joining us

• Professional growth
  
  

Accelerate your professional journey with mentorship, TechTalks, and personalized growth roadmaps

• Competitive compensation
  
  

We match your ever-growing skills, talent, and contributions with competitive USD-based compensation and budgets for education, fitness, and team activities

• A selection of exciting projects
  
  

Join projects with modern solutions development and top-tier clients that include Fortune 500 enterprises and leading product brands

• Flextime
  
  

Tailor your schedule for an optimal work-life balance, by having the options of working from home and going to the office – whatever makes you the happiest and most productive.