דרושים Information Security Analyst ב-Fortinet ב-Mexico, Mexico City

As an Information Security Analyst, your responsibilities will include:

• Monitor security alerts and incidents from cloud-based security platforms (AWS, Azure, GCP).
• Investigate and respond to security threats, including triage, containment, and remediation.
• Perform security log analysis, threat hunting, and anomaly detection.
• Assist in developing and tuning security monitoring rules, alerts, and automation.
• Contribute to post-incident investigations and root cause analyses.
• Support compliance efforts and security best practices.
• Document security incidents, response activities, and lessons learned.
• Actively monitor and analyze security events, alerts, and logs using SIEM, SOAR, EDR, DLP and related tools, investigating security incidents to mitigate potential risks.
• Develop and refine SOC processes, playbooks, alerts, reports, and dashboards to enhance threat detection and incident response capabilities.

We are looking for:

• Experience in Information Technology, Information Security, or a SOC/NOC role. Prior experience in network or information systems administration is advantageous.
• Experience in a cloud security role.
• Strong understanding of cloud security principles (IAM, network security, logging).
• Familiarity with AWS GuardDuty, Security Hub, Azure Sentinel, Google Chronicle, or similar tools.
• Solid understanding of the threat landscape, attacker motivations (phishing, malware, APTs, DoS attacks), and defensive strategies.
• Knowledgeable in key security technologies: SIEM, SOAR, EDR, ID/IPS, access control, vulnerability management, and External Attack Surface Management.
• Strong understanding of network protocols, DNS, and networking equipment (routers, VPNs, proxies, firewalls).
• Knowledge of threat intelligence, attack techniques (MITRE ATT&CK framework), and incident response procedures.
• Scripting and automation skills (Python, PowerShell, or similar) are a plus.

Soft Skills:

• Exceptional written, verbal, and interpersonal communication skills, with strong attention to detail.
• Ability to engage effectively and collaborate across teams, demonstrating a customer-focused, approachable demeanor to support security awareness.
• Proficiency in English ; additional regional languages are a plus.

Educational & Certification Requirements:

• Education: Bachelor’s degree in computer science, Information Security, or a related field.
• Certifications: Preferred certifications include one or more of the following: CISSP, CCSP, CISA, CISM, CRISC, CCNA, GIAC GCFE, GCFA, GCIH, AWS Security Specialty, GSEC, GCFR, or equivalent.

You would act as Cloud Security Engineer for the Corporate Information Security Team. This is a highly technical role, with responsibilities for designing, implementing, maintaining and monitoring security and compliance of cloud services and responding to cyber security incidents.

As a Cloud Security Engineer, your responsibilities will include:

• Security oversight of cloud services, including M365 services, Salesforce, and other SaaS services.
• Develop strategies, evaluate solutions, design and implement tools, processes and controls to ensure that security and privacy are implemented in cloud services we consume.
• Be a strong cloud security and privacy advocate.
• Monitor the security and compliance of cloud services and actively participate in responding to and investigating cyber security incidents.
• Engage system owners and provide expert guidance on the design, architecture and implementation of solutions that utilize cloud (SaaS) services.
• Drive the secure use of cloud services.
• Be part of a global distributed team to share knowledge, workload and assignments. Strong sense of teamwork is required. Coach peers in cloud security technologies and best practices.
• Support internal and external audit and compliance activities (e.g. SOX, ISO 27001, SOC 2, etc.).
• Work with other information security teammates, IT staff and vendors to conduct risk and vulnerability assessments, penetration testing, and threat hunting exercises to anticipate and remediate security weaknesses.

We are looking for:

• Ten or more years of combined experience in network and systems administration, cloud engineering, application operations and security roles.
• Solid knowledge and proven experience architecting and security with Azure.
• Experience with Active Directory, Microsoft Entra, and SSO technologies including SAML.
• Experience and functional knowledge of Firewalls, Switches/Routers and Network/System Intrusion Detection or Prevention Systems (IDS/IPS), WAF, anti-malware/virus, vulnerability assessment tools and other security tools found deployed in cloud environments.
• Experience with Fortinet products, an advantage. DevOps/SecOps experience a plus.
• Experience with working in a Computer Security Incident Response Team (CSIRT) or Security Operations Center (SOC) preferred.
• Programming/scripting skills (e.g. Python, Java, Go, Rust, shell scripts, PowerShell, etc.)
• Hands-on Linux experience and Windows experience system administration experience.
• Familiarity with legal and regulatory requirements, data security standards and frameworks such as ISO 27001/27002, NIST, PCI, HIPAA, SOX.
• Demonstrate strong communications, analytical, problem solving, and decision-making skills that can contribute towards the resolution of any issue that arises.
• A BS degree in Computer Science, Cyber Security, other tech-related degree, or equivalent experience.
• CISSP, CSSP or similar industry certifications along with Microsoft Azure Security Engineer certifications.

We encourage candidates from all backgrounds and identities to apply. We offer a supportive work environment and a competitive Total Rewards package to support you with your overall health and financial well-being.