• Monitoreo y triage inicial de alertas de seguridad. • Análisis básico de eventos y evaluación de registros bajo supervisión. • Apoyo en la identificación, registro y seguimiento de vulnerabilidades. • Ejecución de controles operativos de seguridad definidos por el área. • Documentación de incidentes, hallazgos y actividades de seguridad. • Escalamiento oportuno de eventos relevantes al equipo senior. • Participación en iniciativas de fortalecimiento de la postura de seguridad.

Role Description This role is a hands-on Windows Endpoint Security Specialist supporting a Cisco ISE team, focused on endpoint compliance, posture validation, and automated remediation. - Develop, test, and maintain advanced PowerShell scripts to automate endpoint compliance validation, data collection, and reporting aligned with security and DISA STIG requirements. - Design and implement automated remediation scripts to restore non-compliant endpoints to required baselines, including STIG configurations and endpoint security agent health. - Deploy and manage remediation solutions through Cisco Secure Client to support automated compliance enforcement. - Collaborate with Cisco ISE engineers to implement, optimize, and troubleshoot posture assessment workflows and NAC policy enforcement. - Investigate and resolve endpoint-side issues impacting network access compliance and client provisioning. - Correlate vulnerability scan results with endpoint configuration gaps to drive remediation efforts. - Validate and monitor patch management systems (WSUS, SCCM, Intune) to ensure endpoint update compliance. - Support endpoint certificate management and PKI-related requirements as needed. - This position is designed to be flexible, with responsibilities evolving to meet business needs and enable individual growth. Qualifications - Must be able to obtain Secret security clearance. - Advanced PowerShell scripting for automated compliance checks (registry, services, file permissions). - PowerShell scripting for automated remediation of non-compliant endpoint configurations and STIG settings. - Ability to create scripts for data gathering and compliance status reporting. - Deep knowledge of Windows endpoint internals and endpoint security tooling. - Strong EPP/EDR experience, including validating agent install status, service health, versioning, and signature/definition updates. - Experience configuring and auditing host-based firewalls (Windows Defender Firewall). - Understanding of data-at-rest encryption and verification methods (e.g., BitLocker). - Familiarity with application whitelisting/application control concepts and enforcement. - Ability to interpret vulnerability scan results and correlate them with endpoint configuration and STIG findings. - Practical experience auditing and implementing DISA STIG requirements for Windows endpoints. - Proficiency with Cisco ISE posture assessment and policy configuration for endpoint compliance. - Ability to integrate endpoints with ISE for posture/NAC and troubleshoot posture/client provisioning issues. - Understanding of patch management processes and validating patching agent health (WSUS, SCCM, Intune). - Working knowledge of PKI/certificate management on endpoints, including trusted root certificates. Preferred Qualifications - B.A or B.S. in a degree such as Computer Science, Information Systems or Information Technology or 7 years related experience. - Experience working in a DoD healthcare IT environment. Benefits - 401(k) with 100% company match on the first 6% deferred, with immediate vesting. - Comprehensive medical, dental, and vision coverage—employee portion paid 100% by Core4ce. - Unlimited access to training and certifications, with no pre-set cap on eligible professional development. - Tuition assistance for job-related degrees and courses. - Paid parental leave, PTO that grows with tenure, and generous holiday schedules. - Got a big idea? At Core4ce, The Forge gives every employee the chance to propose bold innovations and help bring them to life with internal backing. - Join us to build a career that matters—supported by a company that invests in you.

We are knowmad mood! Somos una compañía líder en transformación digital, en constante evolución y a la vanguardia de la tecnología. Nacimos para provocar un cambio real a través de la innovación y el desarrollo sostenible, con la misión de aportar valor a los clientes e impulsar nuestro talento. Formado por más de 3.000 personas creativas, digitales e innovadoras conectadas a un propósito y capaces de generar conexiones con personas de todo el mundo. Un equipo responsable, flexible y con alta capacidad de adaptación a las necesidades de nuestros clientes y del mercado, a la vez que proporciona valor, visión, creatividad, expertise, profesionalidad y pasión por la tecnología en cada proyecto. Los valores que marcan nuestro rumbo y nos guían hacia la excelencia son la colaboración, la innovación, el compromiso, la diversión y la confianza. ¿Qué es lo que valoramos? Experiencia profesional de más de 3 años en: Tecnologias: - Active Directory (AD), Azure Active Directory / Microsoft Entra ID. LDAP (OpenLDAP, RedHat Directory Services u otros). Servicios de Federación: ADFS SAML / OAuth2 / OpenID Connect - Plataformas IAM (Identity & Access Management): SailPoint IdentityIQ / IdentityNow, CyberArk (gestión de cuentas privilegiadas), Ping Identity, Okta, Forgerock, IBM Security Verify (antiguo ISIM / IGI) - Bases de Datos y Consultas Técnicas: SQL Server, Oracle, MySQL, PostgreSQL. Uso de SQL avanzado: - Monitorización, Logging y Trazabilidad: Splunk, ELK Stack (Elastic, Logstash, Kibana), Grafana / Prometheus, Azure Monitor / Log Analytics, Sentry, Datadog (menos común pero posible) ¿Cuáles serían tus funciones? · Liderazgo, coordinación, gestión y liderazgo de equipos pequeños. • Gestión de incidencias N2: resolución de incidencias técnicas no procedimentadas, con capacidad de análisis autónomo. • Análisis técnico: consultas SQL, revisión de logs, identificación de causas raíz. • Colaboración con N1: escalado eficiente y retroalimentación continua. • Gestión del conocimiento: documentación de soluciones y procedimientos emergentes. Además, valoraremos muy positivamente si tienes experiencia y/o conocimientos en: Automatización, Scripting y Herramientas de Línea de Comandos · PowerShell (fundamental en Identity), Bash, Python (para validaciones y automatizaciones en algunos clientes) · CLI de Azure o Microsoft Graph para consultas a directorios Herramientas de Gestión de Incidencias y DevOps · Jira, ServiceNow, GLPI, Remedy · Confluence (documentación) · Git / GitLab / GitHub (control de versiones de scripts o configuraciones) · Metodologías Agile / Kanban Y con nosotros podrás disfrutar de: ✅Contrato Indefinido ✅ 100% REMOTO ✅Formación interna y acceso a certificaciones ♻Consulta nuestro calendario aquí: https://www.knowmadmood.com/es/talento/formacion ✅Plan de retribución flexible (seguro médico, transporte, tickets guardería, tickets restaurante) ✅Embajador de nuestra marca, a través de nuestro plan amigo ¡Recomienda a tus amigos y llévate un extra! ✅¡Eventos, meetups, techdays, charlas...y mucho más! ✅ 26 días de descanso (22 días vacaciones, 2 días de libre disposición y 24 y 31 diciembre festivos por defecto) ✅ Horario: 8.30 a 18h ( flexible) L-J y V 8 a 15h e Intensiva de Verano Julio y Agosto de 8 a 15h Para estar al corriente de nuestras novedades síguenos aquí -> knowmad mood En knowmad mood nos comprometemos con la igualdad de oportunidades y el respeto a la diversidad. Aplicamos nuestro Plan de Igualdad y el principio de no discriminación en todos nuestros procesos de selección.

Role Description We're looking for an AI Security Engineer to help secure a modern platform that combines cloud infrastructure, large language models, and autonomous agents. You'll play a key role in designing and operating security controls across Azure environments, AI/LLM systems, and regulated data workflows. This is a hands-on role for someone who understands both traditional cloud security and emerging AI security risks, and can translate that into practical, scalable protections. - Implement security architecture across Azure (networking, identity, compute, storage) - Support developers in securing AI/LLM systems, including model access, prompt handling, data leakage prevention, and abuse mitigation - Maintain detection and response capabilities (SIEM, EDR, SOAR) - Lead threat modeling and risk assessments for new features, especially AI agents and APIs - Implement and enforce security controls for regulated environments - Manage identity and access controls (Azure AD / Entra ID, RBAC, least privilege) - Investigate and respond to security incidents - Partner with engineering to embed security into CI/CD pipelines and SDLC - Conduct security reviews of infrastructure-as-code, APIs, and application architecture - Drive compliance efforts (HIPAA, SOC 2, HITRUST, NIST and related frameworks) - Evaluate and integrate security tools across cloud, endpoint, and application layers - Work with technical teams on implementing patches and vulnerabilities management Qualifications - Minimum of 4 years’ experience in security engineering and cloud security - Strong hands-on experience with Microsoft Azure security services (Defender for Cloud, Sentinel, etc.) - Experience securing AI/ML systems or strong familiarity with AI/LLM security risks (prompt injection, data exfiltration, model abuse) - Deep understanding of identity and access management (IAM), networking, and secure architecture - Experience with SIEM/SOAR tools, EDR technologies and Vulnerability management Requirements - Experience working in HIPAA-regulated environments - Experience with infrastructure as code (Terraform, ARM, or similar) - Experience securing LLM-based products or agent frameworks - Familiarity with securing AI systems or adversarial testing - Knowledge of data security (DLP, encryption, tokenization) - Experience with container and Kubernetes security - Certifications such as CISSP, CCSP, Azure Security Engineer Associate, or similar - Experience in high-growth startups or fast-paced environments What We're Looking For - Practical, builder mindset — you can design and implement, not just advise - Ability to balance security with product velocity - Strong communication skills and ability to work cross-functionally - Curiosity about emerging AI threats and willingness to stay ahead of them Benefits - Paid vacation, sick time, and personal days - 11 company paid holidays - Quarterly UberEats voucher - Monthly Fringe benefits - Flexible work schedules - Education and professional development stipend - Health, dental, and vision benefits, with employer HSA contribution - Long-term, short-term, and life insurances - 401(k) with company match & profit sharing Salary Information The typical base salary range for this position is $130,000 - $160,000. Company Description CIVIE provides equal employment opportunity for all applicants and employees. All qualified applicants will be considered regardless of an individual’s race, color, sex, gender identity or expression, religion, age, national origin, citizenship, physical or mental disability, medical condition, family care status, marital status, domestic partner status, sexual orientation, military or veteran status, or any other basis protected by federal, state or local laws. If you cannot submit your application due to a disability, please email hr@civie.com; we will reasonably accommodate individuals with disabilities to the extent required by applicable law.