Purple Team Architect

We are a cutting-edge e-commerce company developing products for our own technological platform. Our creative, smart, and dedicated teams pool their knowledge and experience to find the best solutions to meet project needs, while maintaining sustainable and long-lasting results. How? By making sure that our teams thrive and develop professionally. Strong advocates of hiring top talent and letting them do what they do best, we strive to create a workplace that allows for an open, collaborative, and respectful culture.

What you will be doing As a Senior Purple Team Architect, you will be responsible for building and maintaining the complete strategy of Purple Teaming activities. Also, you will collaborate with all Information Security departments building together a strong Information Security Culture, so it is important to have thorough understanding unknowledge. The ideal candidate must have excellent engagement and communication skills and must have a strong customer focus and team-oriented approach that balances security needs and user experience providing best-in-class security for the organization. Additional responsibilities:

• Build and maintain highly available security systems and solutions used to secure company platforms.
• Build, define and maintain the Blue Team strategy and its delivery.
• Build, define and maintain the Red Team strategy.
• Create strategies to protect the company against threats.
• Perform defensive security testing on web applications, company infrastructure, and users.
• Work closely with all Security Information teams to guarantee and build secure applications and services.
• Evaluate security on architecture and IT designs.
• Threat modeling.
• Manage and supervise Teaming activities aligned with the strategy defined
• Create metrics and find ways to show results in a non-IT user way with friendly and understandable language.
• Regularly assess infrastructure, prioritize findings, and track remediation efforts.
• Contribute to the development of best practices within our Information Security team.
• Continually improve and optimize operational efficiency through process improvement and automation.
• Craft automated security auditing and monitoring tools and enhancements to cover various risk themes including ones related to Insider Threat.
• Safeguard information system assets by identifying and solving potential and actual security problems.
• Monitor and protect sensitive services, data, and systems from intrusions or disruption.
• Safeguard information system assets by identifying and solving potential and actual security problems
• Be the key contact for security providers.
• Constantly research improvements to the information security structure.
• Work in a remote-friendly security team supporting others worldwide.

Knowledge and skills you need to have Five years of a university degree or four-year college diploma required, preferably in the field of Computer Science, Telecommunications, or other related academic fields. Four years of experience working in Purple and/or Blue Teams. Extensive knowledge about Red Teams activities (offensive security). Prominent experience in Vulnerability Management. Familiarity in Threat Modeling and Insider Threats. Experience/Knowledge managing and configuring enterprise-wide security solutions for web, web applications, and internet services. Hands-on expertise in scripting and/or programming languages in one of the following: Python, Bash, Go. Strong knowledge of systems administration, including security, networking, monitoring/alerting, etc. IT Security related roles background, or knowledge in perimeter security, DDoS Protection, WAF configuration, and other security tools. Good understanding of encryption and hashing algorithms for data protection at rest and in transit. Strong written and verbal communication skills in English and Spanish.

Bonus points for the following Additional requirements, not essential but "nice to have".

• Any other Information Security Certifications related with Red Team (such as CEH), Blue Team (such as Microsoft Windows Server or Linux), Purple Team (such as CISSP), Vulnerability Management, Threat Modeling, etc.
• Knowledge/experience in DevSecOps.
• Knowledge/Experience in code analysis and secure code.

Why choose us? We will give you the opportunity to be the best version of yourself, develop professionally and create strong working relationships working remotely or on site. While offering a competitive salary, we also invest in our people's professional development and want to see you grow and love what you do. We are dedicated to listening to our team's needs and are constantly creating an environment in which you can feel at home.... If this sounds like the place for you, contact us now!