Deel

Information Security Engineer

Deel

full-time

Posted on:

Location Type: Remote

Location: Anywhere in Asia

Visit company website

Explore more

AI Apply
Apply

Tech Stack

AWSAzureCloudCyber SecurityGoogle Cloud Platform

About the role

  • Act as the Subject Matter Expert (SME) for Endpoint Detection and Response (EDR) tools/process including optimizing configurations/policies, developing custom threat detection rules, and proactively improving Deel’s overall security posture for remote endpoints (Mac and Windows) and cloud assets (Eg, VMs).
  • Configure, manage, and tune the full suite of security policies within SWG, CASB and ZTNA. Assist our remote colleague with seamless experience through troubleshooting end user issues as needed.
  • Continuously improve SaaS security posture with SSPM tools and processes around it. Collaborate with diverse application owners, understand security control and resolve configuration drifts for our wide range of SaaS applications from baseline.
  • Develop a rigorous review, approval, policy enforcement and auditing for browser extensions, third party OAuth applications for SaaS applications such as Google Workspace, GitHub, Jira etc to meet security and privacy standards.
  • Design, implement, and audit security policies related to enterprise browsers (Eg, Island, Chrome Enterprise etc) including controlling access to sensitive web apps, and data loss prevention (DLP) configuration, ZTNA, secure web browsing experience but not limited to.
  • Implement and manage DLP policies across Endpoint, Network, SaaS Applications and Cloud assets, directly supporting the "Crawl-Walk-Run" program phases. Ensure DLP policies meet diverse data sovereignty, privacy (GDPR, CCPA, etc.), and national regulatory requirements.
  • Run vulnerability management programs for endpoints and servers and ensure they are patched according to the policy in collaboration with stakeholders.

Requirements

  • 5+ years of experience in cybersecurity
  • Hands-on experience with security tools like EDR, SWG, CASB, ZTNA, SSPM and DLP
  • Experience managing technical vulnerability of OS and applications for endpoints using tools like CrowdStrike Spotlight, InsightVM, Tenable, Qualys.
  • Familiarity with cybersecurity frameworks and best practices, such as MITRE, NIST, CIS, ISO27001, SOC and others.
  • Experience in collaborating with internal stakeholders to rollout enterprise security solutions.
  • Understanding and having the ability to utilize Cloud platforms such as AWS, GCP, Azure to host security tooling. Having experience in utilizing SIEM to query security telemetry is a plus.
  • Experience managing secure email gateway is a plus.
  • Excellent English in both verbal and written.
Benefits
  • Stock grant opportunities dependent on your role, employment status and location
  • Additional perks and benefits based on your employment status and country
  • The flexibility of remote work, including optional WeWork access

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
Endpoint Detection and Response (EDR)Security policiesData Loss Prevention (DLP)Vulnerability managementCybersecurity frameworksCloud securityThreat detection rulesConfiguration managementAuditingTechnical vulnerability management
Soft skills
CollaborationTroubleshootingCommunicationPolicy enforcementStakeholder engagementProblem-solvingAttention to detailAnalytical thinkingAdaptabilityOrganizational skills
Certifications
ISO27001NISTCISSOC