Senior Cybersecurity Engineer
CSC Generation
full-time
Posted on:
Location Type: Remote
Location: Costa Rica
Visit company websiteExplore more
Job Level
About the role
- Manage Identity & Access Security – Administer and secure Windows Active Directory, Azure Entra ID, and SSO configurations; enforce security policies for 1Password; conduct periodic access reviews and implement least-privilege principles
- Secure Cloud Infrastructure – Protect and monitor infrastructure hosted in AWS and GCP; configure and maintain AWS WAF rules and CloudFront distributions; review Terraform configurations for security best practices
- Lead Endpoint Protection & Threat Detection – Manage Microsoft Defender XDR for endpoint security; monitor alerts, investigate incidents, and lead incident response efforts; develop detection rules and automated response playbooks
- Execute Vulnerability Management & Penetration Testing – Run monthly vulnerability scans using OpenVAS; perform manual penetration testing of internal and external systems; prioritize remediation and present risk assessments to stakeholders
- Protect Collaboration Tools – Secure Microsoft 365 environment (Exchange Online, SharePoint, OneDrive, Teams); implement Data Loss Prevention (DLP) policies and email security controls
- Drive DevSecOps Practices – Integrate security into CI/CD pipelines using GitHub; review Infrastructure as Code for misconfigurations; collaborate with engineering teams on secure development practices
Requirements
- 5+ years of experience in cybersecurity, information security, or related roles
- Demonstrated experience in at least 3 of the following areas:
- - Identity and Access Management (Active Directory, Azure AD/Entra ID, SSO)
- - Cloud security (AWS or GCP)
- - Endpoint Detection and Response (EDR) / XDR solutions
- - Vulnerability management and penetration testing
- - SIEM operations and incident response
- Solid understanding of networking fundamentals (TCP/IP, DNS, firewalls, VPNs)
- Experience with Infrastructure as Code (Terraform preferred) and Git/GitHub workflows
- Knowledge of common attack vectors, MITRE ATT&CK framework, and threat modeling
- Scripting/automation skills (Python, PowerShell, or Bash)
- Strong analytical, problem-solving, and communication skills
- Self-motivated with the ability to prioritize multiple tasks in a fast-paced environment
- Security certifications such as CISSP, CISM, AWS Security Specialty, GCP Security Engineer, SC-200, OSCP, or CEH
- Experience with Microsoft Defender XDR suite (Defender for Endpoint, Identity, Cloud Apps)
- Hands-on experience with AWS WAF and CloudFront security configurations
- Background in compliance frameworks (SOC 2, ISO 27001, PCI-DSS, GDPR)
Benefits
- Competitive benefits: Paid time off policies, 401(k)/RRSP match, medical/dental/vision and a variety of supplemental policies, and employee discounts at our portfolio companies
- Executive Access: Work directly with brand CEOs and senior leadership, solving real business problems and earning mentorship from top operators.
- AI-First Skill Building: Get hands-on with the most advanced AI tools in the market. From automation to prompt engineering, you’ll build a modern tech stack that sets you apart in any industry.
- Accelerated Career Path: High performers are quickly entrusted with greater responsibility, new challenges, and leadership opportunities across our portfolio of brands.
- Joining Backcountry isn’t just about having a seat at the table—it’s about helping redesign the table entirely. You’ll be challenged, stretched, and supported as you grow faster than you thought possible.
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
Identity and Access ManagementActive DirectoryAzure Entra IDSingle Sign-On (SSO)Cloud securityAWSGCPEndpoint Detection and Response (EDR)Vulnerability managementPenetration testing
Soft Skills
analytical skillsproblem-solving skillscommunication skillsself-motivatedprioritization skills
Certifications
CISSPCISMAWS Security SpecialtyGCP Security EngineerSC-200OSCPCEH