Sr. Security Engineer

Location: Remoto from Mexico (Monterrey or Mexico City areas)

Role: Sr. Cybersecurity Engineer

Blue Yonder Job Profile: Sr. Security Engineer

Blue Yonder is a global leader in digital supply chain transformation, empowering the world’s most recognized brands with AI-driven platforms and end-to-end visibility. As we continue strengthening our global security posture, we are investing heavily in modern identity-first defense strategies - and this role will play a key part in that mission.

We are looking for highly motivated Sr. Security Engineer with an emphasis on detection and response capabilities, as well as expertise in securing and managing cloud computing resources. This role will help manage and maintain the security infrastructure that protects our technology systems, data, and people, with a particular focus on proactive threat detection, rapid incident response, and robust cloud security.

You’ll play a key role in identifying risks, implementing robust defenses, and enabling secure software, infrastructure, and systems development across the organization. The ideal candidate brings strong technical expertise on an enterprise scale, a passion for problem-solving, and a deep understanding of modern security practices across the cloud, networks, and application security environments to help mature Blue Yonder’s cybersecurity strategy.

• Manage the design and implementation of secure systems, networks, cloud infrastructure and/or security operations.
• Collaborate with cross functional teams across the organization to integrate security best practices into systems architecture and CI/CD pipelines.
• Develop and maintain security tools and automation for threat detection, prevention, and response, taking a continuous threat exposure management mindset.
• Stay current with emerging threats and cloud security technologies, influencing security strategy and architecture with industry’s best practices and innovations.
• Support the detection, investigation, and resolution of security incidents.
• Enhance and tune SIEM tools, log monitoring, and alerting systems.
• Support continuous compliance efforts (e.g., PCI-DSS, ISO 27001, SOC 2) by implementing monitoring and reporting capabilities to adhere to global regulations.
• Document security policies, processes, standards, and architecture diagrams.

• Azure AD / Entra ID, AWS IAM, GCP IAM, Oracle IAM
• Federation & SSO: SAML, OAuth, OIDC, SCIM

• SIEM/EDR/XDR (CrowdStrike, Splunk, Elastic etc.)
• Identity threat analytics and access risk tooling

• PowerShell, Python, REST / SCIM / Graph / SOAP APIs

• Minimum 4 to 5 years of professional security engineering or DevOps experience
• Proficiency with at least one cloud platform (AWS, Azure, or GCP) and securing cloud-native environments.
• Strong Understanding of industry best practice security protocols, encryption, firewalls, remote access, and secure coding practices.
• Experience with scripting or automation (e.g., PowerShell, Python, Azure CLI, Terraform).

• Hands-on experience with any of the following:
  • Cloud Security Posture Management (CSPM), Cloud Workload Protection Platforms (CWPP), and/or Cloud Native Application Protection Platforms (CNAPP).
  • Observability Tooling (SIEM) such as CrowdStrike NG-SIEM, Splunk, and/or Azure Sentinel
  • Endpoint Protection (CrowdStrike, Palo Alto GlobalProtect, etc.) supporting a global workforce across multiple platforms
• Experience in fast-paced or highly regulated environments on a global scale (finance, healthcare, SaaS, etc.).
• Experience leading organization wide initiatives and driving security outcomes that empower business goals.

If you want to know the heart of a company, take a look at their values. Ours unite us. They are what drive our success – and the success of our customers. Does your heart beat like ours? Find out here: Core Values

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.