Middle Information Security Specialist ID22147 AgileEngine is one of the Inc. 5000 fastest-growing companies in the US and a top-3 ranked dev shop according to Clutch. We create award-winning custom software solutions that help companies across 15+ industries change the lives of millions. If you like a challenging environment where you're working with the best and are encouraged to learn and experiment every day, there's no better place - guaranteed! :) What you will do Maintain AgileEngine's Information Security Framework and underlying policies, procedures, and guidelines; Design and implement controls to ensure that security requirements are met; Develop and integrate security solutions and technologies; Implement security best practices, hardening guidelines, and protection profiles; Perform ongoing security monitoring of information systems, including assessing information security risk through risk analysis; Conduct gap analysis and vulnerability assessments on a regular basis and consult in mitigating vulnerabilities; Manage and configure various security tools (SIEM, SOAR, HIDS/NIDS, WAF, etc.); Respond to security incidents and manage vulnerability processes; Evaluate and recommend new information security technologies and counter-measures against threats to information and systems; Conduct periodic internal information security audits; Help create effective staff training programs to increase security awareness across AgileEngine. Must haves 2+ years of experience in information security; Upper-intermediate in spoken and written English; Strong understanding of information security principles, practices, and methodologies; Knowledge of at least one security standard: ISO/IEC 27001, NIST CSF, PCI DSS, or SOC 2; Practical experience in developing and writing security policies and procedures; Hands-on experience with the incident response process, including detection, investigation, and mitigation; Excellent written communication skills, with the ability to produce clear, concise, and well-structured reports; Strong analytical skills, with the ability to assess complex systems, identify security issues, and devise effective solutions. Nice to haves Familiarity with cloud architectures and secure network design principles; Understanding of troubleshooting techniques relevant to security and systems management; Experience with operating system hardening and secure configuration practices; Hands-on experience with vulnerability assessment tools; Practical experience using SIEM and other security monitoring tools. This is a remote position but we are hiring only in Bogotá or Medellín. The benefits of joining us Professional growth: Accelerate your professional journey with mentorship, TechTalks, and personalized growth roadmaps. Competitive compensation: We match your ever-growing skills, talent, and contributions with competitive USD-based compensation and budgets for education, fitness, and team activities. A selection of exciting projects: Join projects with modern solutions development and top-tier clients that include Fortune 500 enterprises and leading product brands. Flextime: Tailor your schedule for an optimal work-life balance, by having the options of working from home and going to the office – whatever makes you the happiest and most productive. #J-18808-Ljbffr