We didn't find any results.
Try with another group of words.
If you think this is a problem, please contact us.
Security Operations Analyst
Capital Markets Gateway (CMG) is a fintech firm that streamlines equity capital markets (ECM), connecting investors and underwriters. Launched in 2017, CMG provides integrated ECM data, analytics, and workflow efficiencies, enabling better decision-making for nearly 150 buy-side firms ($40T AUM) and 20 global investment banks (Goldman Sachs, J.P Morgan, Barclays etc)
As a Security Operations Analyst at CMG, you will play a pivotal role in protecting our technology stack, data, and users. You will work closely with Security, IT, and Engineering teams to ensure the security, resilience, and compliance of our cloud-first, distributed environment. This is a remote position with an expectation of high autonomy, initiative, and the ability to drive improvements across security operations and IT security.
This job is exclusive to getonbrd.com.
The Role
Security Operations & Incident Response
- Monitor, triage, and respond to security alerts and incidents across endpoints, cloud, and SaaS environments.
- Conduct root cause analysis, document incidents, and assist with post-incident reviews.
- Develop and maintain incident response playbooks; participate in tabletop exercises.
Endpoint & IT Security
- Administer and enhance endpoint security for macOS and Windows, supporting company-owned devices.
- Develop and manage endpoint hardening baselines, configurations, and compliance reporting.
- Support automation and scripting efforts (e.g., PowerShell, Bash, Python) to improve monitoring and response.
Cloud & SaaS Security
- Support security and compliance controls in Azure AD, Office 365, and key SaaS platforms.
- Implement and monitor access controls, DLP policies, and secure configurations for cloud and SaaS solutions.
- Collaborate with IT and Engineering on secure deployment and integration of new applications.
Risk Management & Security Governance
- Participate in third-party and vendor risk reviews; contribute to risk assessments and audits.
- Support the development and maintenance of security policies, procedures, and runbooks.
- Track vulnerabilities (OWASP, CVSS), prioritize remediation with risk-based approaches, and maintain an up-to-date inventory of assets.
Collaboration & Communication
- Engage proactively with peers and stakeholders across security, engineering, and business teams.
- Deliver clear, actionable communication on risks, incidents, and security posture—tailored to both technical and non-technical audiences.
What We're Looking For
- Bachelor’s degree in Computer Science, Cybersecurity, or related field—or equivalent work experience.
- 3 + years in security operations, IT security, or similar roles (fintech/regulated industry experience preferred).
- Strong proficiency in macOS and Windows 11 operating systems.
- Hands-on experience with MDM/endpoint management tools (e.g., Intune).
- Working knowledge of BYOD security, scripting/automation, and cloud( Azure, O365) administration.
- Familiarity with SaaS security, DLP, CASB, and vulnerability management tools.
- Understanding of security frameworks (NIST CSF, ISO 27001) and regulatory requirements.
- Strong analytical, investigative, and problem-solving skills.
- Excellent written and verbal communication; ability to work independently and collaboratively
Desirable Skills
- Experience with scripting (PowerShell, Bash, Python).
- Experience with SIEM (Microsoft Sentinel)
- Certifications: CompTIA Security+, Microsoft Certified: Security Operations Analyst Associate, or similar.
- Exposure to security governance, risk management, and vendor risk processes.
- Knowledge of security operations in a distributed, remote-first environment.
What We Offer
- 2 year+ contract
- 15 business days of vacation
- Tech courses and conferences
- Top-of-the-line MacBook
- Fully remote working environment
- Flexible working hours
Cloud Security
CodersLab es una empresa dedicada al desarrollo de soluciones dentro del rubro IT y actualmente nos enfocamos en expandir nuestros equipos a nivel global para posicionar nuestros productos en más países de América Latina y es por ello que estamos en búsqueda de un Cloud Security para unirse a nuestro equipo.
Formarás parte de un equipo desafiante y ambicioso, con ganas de innovar en el mercado, donde tus ideas y contribuciones serán altamente valiosas para el negocio.
¡Postúlate ahora para este increíble desafío!
Job opportunity published on getonbrd.com.
Funciones del cargo
- Diseño e Implementación de Arquitecturas Seguras en la Nube
- Automatización y Gobernanza de Seguridad Cloud
- Gestión de Riesgos, Incidentes y Cumplimiento Normativo
- Optimización de Seguridad en Servicios y Aplicaciones Cloud Native
- Asesoría Técnica y Mejora Continua de la Postura de Seguridad
Requerimientos del cargo
- Experiencia en ciberseguridad para plataformas cloud públicas AWS, Azure, GCP
- Diseñar arquitecturas seguras en entornos cloud para productos cloud native
- Conocimiento de WAF aplicados a entornos cloud
- Dominio en control de políticas de seguridad “guardrails”, SCP, control de acceso RBAC y gestión de identidades IAM.
- Conocimiento de marcos de referencia, CIS, NIST 800 53, ISO27001
- Revisión de arquitecturas threath modeling
- Gestion de herramientas tales como networking, Firewall, FWaas, WAF, Sec group
- Conocimiento de seguridad de servicios como secret vault , EC2,ECS, EKS, CloudFront, API, Lambdas, event bridge
- Capacidad de ejecutar procesos de auditorías automatizados en cloud
- Gestión de incidencias y riesgos.
- Implementar herramientas que automaticen controles
- Implementación de modelos para respuesta de incidentes (arquitectura basada en eventos)
- Diseñar procesos de CI/CD de seguridad, conocimiento en github, github + action
- Conocimiento en implementación de DevSecOps uso de herramientas sast, sca, iast
- Guía procesos de ethical hacking
- Conocimientos para aplicaciones en front/back, api, apk
- Entendimiento del marco y vulnerabilidades recurrentes marco tipo OWASP
- Conocimiento de SAMM como marco y modelo de madurez
- Conocimiento de networking
Condiciones
Modalidad de contratación: Contractor Prestación de Servicio
Cloud Security
This job offer is available on Get on Board.
Funciones del cargo
- Diseño e Implementación de Arquitecturas Seguras en la Nube
- Automatización y Gobernanza de Seguridad Cloud
- Gestión de Riesgos, Incidentes y Cumplimiento Normativo
- Optimización de Seguridad en Servicios y Aplicaciones Cloud Native
- Asesoría Técnica y Mejora Continua de la Postura de Seguridad
Requerimientos del cargo
- Experiencia en ciberseguridad para plataformas cloud públicas AWS, Azure, GCP
- Diseñar arquitecturas seguras en entornos cloud para productos cloud native
- Conocimiento de WAF aplicados a entornos cloud
- Dominio en control de políticas de seguridad “guardrails”, SCP, control de acceso RBAC y gestión de identidades IAM.
- Conocimiento de marcos de referencia, CIS, NIST 800 53, ISO27001
- Revisión de arquitecturas threath modeling
- Gestion de herramientas tales como networking, Firewall, FWaas, WAF, Sec group
- Conocimiento de seguridad de servicios como secret vault , EC2,ECS, EKS, CloudFront, API, Lambdas, event bridge
- Capacidad de ejecutar procesos de auditorías automatizados en cloud
- Gestión de incidencias y riesgos.
- Implementar herramientas que automaticen controles
- Implementación de modelos para respuesta de incidentes (arquitectura basada en eventos)
- Diseñar procesos de CI/CD de seguridad, conocimiento en github, github + action
- Conocimiento en implementación de DevSecOps uso de herramientas sast, sca, iast
- Guía procesos de ethical hacking
- Conocimientos para aplicaciones en front/back, api, apk
- Entendimiento del marco y vulnerabilidades recurrentes marco tipo OWASP
- Conocimiento de SAMM como marco y modelo de madurez
- Conocimiento de networking
Condiciones
IT Security Engineer
The Company
Capital Markets Gateway LLC (CMG) is a capital markets-focused fintech transforming global equity capital markets (ECM) through data, technology, and connectivity. As the preferred source for ECM analytics and the first network connecting the buy-side and sell-side for ECM workflows, we are committed to reshaping how capital markets operate. Founded in 2017 by a team of ECM practitioners, CMG has completed three successful fundraising rounds and is backed by a group of the world’s most prestigious financial institutions. The CMG platform is currently relied upon by nearly 150 buy-side firms representing $40 trillion in AUM and 22 global investment banks.
© getonbrd.com.
The Role
We’re seeking an experienced and automation-driven IT Security Engineer to lead endpoint security, patching, and compliance across a globally distributed fleet of macOS, Windows, and mobile devices. In this hands-on role, you’ll architect and maintain secure-by-default baselines using modern MDM tooling (Intune, Kandji), enforce identity-first access via Entra ID, and drive proactive detection and remediation using scripting, telemetry, and Microsoft’s security stack.
Responsibilities
- Administer and secure endpoints (macOS, Windows, mobile) via Intune, Kandji; enable zero-touch enrollment (Autopilot/ADE).
- Serve as an escalation for endpoint issues impacting security, patching, and configuration.
- Implement identity workflows (SSO, SCIM, RBAC, group lifecycle, access reviews) in Microsoft Entra ID.
- Lead automated patch management for OS and third-party apps; define rings, deferrals, SLAs, and rollout/rollback playbooks.
- Author automation in PowerShell (Windows) and Bash/Zsh (macOS) for remediation, compliance, and telemetry.
- Integrate with the Microsoft security stack (Defender for Endpoint, Microsoft 365 Defender, Purview); tune policies, respond to alerts, and improve posture.
- Co-define baselines with Security (CIS/NIST hardening, device compliance) and enforce via MDM.
- Monitor device health in Endpoint Manager; investigate anomalies and drive root cause.
- Support secure networking controls (firewall/proxy) as needed for endpoint updates and access.
- Document policies, scripts, runbooks, and patch procedures; keep them current.
What We're Looking For
- English level - C1 or C2
- 5+ years managing macOS and Windows in an enterprise environment.
- Deep, hands-on experience with at least one MDM: Intune, Jamf, Kandji.
- Strong scripting: PowerShell (Windows) and Bash/Zsh (macOS).
- Expert in patch management (OS + third-party), deployment rings, and compliance reporting.
- Working knowledge of Microsoft 365 security: Defender for Endpoint, Microsoft 365 Defender O365 threat policies (Anti-phish, Anti-spam, Safe Links, Safe Attachments)
- Exchange Online security/compliance settings.
- Familiar with Conditional Access, device compliance, and certificate/secure storage (BitLocker/FileVault).
- Excellent cross-functional collaboration and written/verbal communication; ability to simplify complex problems.
- Comfortable with CLI tooling and automation for policy deployment and monitoring.
Nice to Have
- Experience with compliance automation (CIS Benchmarks, custom compliance policies).
- Exposure to modern auth/device trust (Entra ID, device-based Conditional Access).
- Familiarity with EDR platforms (e.g., Defender).
- Experience supporting a globally distributed user/device base.
- Python for light tooling; Git-based workflows for scripts/profiles.
What We Offer
- 2 year+ contract
- 15 business days of vacation
- Tech courses and conferences
- Top-of-the-line MacBook
- Fully remote working environment
- Flexible working hours
Cloud Security
Find this job on getonbrd.com.
Funciones del cargo
- Diseño e Implementación de Arquitecturas Seguras en la Nube
- Automatización y Gobernanza de Seguridad Cloud
- Gestión de Riesgos, Incidentes y Cumplimiento Normativo
- Optimización de Seguridad en Servicios y Aplicaciones Cloud Native
- Asesoría Técnica y Mejora Continua de la Postura de Seguridad
Requerimientos del cargo
- Experiencia en ciberseguridad para plataformas cloud públicas AWS, Azure, GCP
- Diseñar arquitecturas seguras en entornos cloud para productos cloud native
- Conocimiento de WAF aplicados a entornos cloud
- Dominio en control de políticas de seguridad “guardrails”, SCP, control de acceso RBAC y gestión de identidades IAM.
- Conocimiento de marcos de referencia, CIS, NIST 800 53, ISO27001
- Revisión de arquitecturas threath modeling
- Gestion de herramientas tales como networking, Firewall, FWaas, WAF, Sec group
- Conocimiento de seguridad de servicios como secret vault , EC2,ECS, EKS, CloudFront, API, Lambdas, event bridge
- Capacidad de ejecutar procesos de auditorías automatizados en cloud
- Gestión de incidencias y riesgos.
- Implementar herramientas que automaticen controles
- Implementación de modelos para respuesta de incidentes (arquitectura basada en eventos)
- Diseñar procesos de CI/CD de seguridad, conocimiento en github, github + action
- Conocimiento en implementación de DevSecOps uso de herramientas sast, sca, iast
- Guía procesos de ethical hacking
- Conocimientos para aplicaciones en front/back, api, apk
- Entendimiento del marco y vulnerabilidades recurrentes marco tipo OWASP
- Conocimiento de SAMM como marco y modelo de madurez
- Conocimiento de networking