Security Implementation Engineer (Technical Implementation)

Security Implementation Engineer (Technical Implementation)

PALO IT is a global technology consultancy that crafts tech as a force for good. We design, develop and scale digital and sustainable products and services to unlock value across the triple bottom line: people, planet, profit.

We are small enough to care locally, big enough to deliver globally (5 continents, 18 offices, +650 experts from +50 nationalities). We are robust and resilient (100% independent and 0 debt). We are entrepreneurs and passionate experts: We invest in what we believe genuinely and work as a collective intelligence.

• We are positive, courageous, caring, doers and committed to excellence
• We are small enough to care locally, big enough to deliver globally (5 continents, 18 offices, +650 experts from +50 nationalities)
• We are robust and resilient (100% independent and 0 debt)
• We are entrepreneurs and passionate experts: We invest in what we believe genuinely and work as a collective intelligence

Your Role

The Security Implementation Engineer will work on implementing, analyzing and assessing the security strategy of technology platform and at enterprise level.

Your Responsibilities

• Implement security controls in cloud infrastructure (AWS, Azure, GCP), including services like AWS Inspector, GuardDuty, Security Hub, VPC, Security groups, WAF, AWS Config, Trusted Advisor.
• Manage the security aspects of DevOps/DevSecOps including Infrastructure as Code (IaC) deployment.
• Conduct vulnerability scanning (containers and infrastructure), threat modeling, and penetration testing.
• Drive secure software development practices across SDLC.
• Conduct secure design/code reviews, manage SAST/DAST/SCA.
• Implement application security practices including secure code repositories, SAST, DAST, SCA tools, OWASP Top 10, and SANS 25 guidelines.
• Manage identity and access management (IAM), privileged access management (PAM), and encryption mechanisms.
• Operate and manage incident response processes, change management, business continuity planning (BCP).
• Manage endpoint and on-premises security solutions.
• Remaining up to date with the latest security systems, tools, trends, and technology.

Who You Are

• 5+ years of practical hands-on experience in security engineering, cloud security implementation, and DevSecOps.
• Proven experience in designing and deploying technical security solutions and controls in startup or dynamic environments.
• In-depth technical understanding of cloud services (compute, containers, storage, network, monitoring).
• Expertise with cloud security solutions and operational management (AWS, Azure, GCP).
• Proficiency in vulnerability management tools, container registry scanning, and infrastructure scanning technologies.
• Skilled in threat modeling and penetration testing (application and infrastructure).
• Deep understanding of data governance practices, data lifecycle management, and data loss prevention (DLP).
• Familiarity with scaling and capacity management techniques (auto-scaling).
• Certifications recommended: CCSK, CCSP, AWS Security Specialty
• You are passionate about technology and continuous learning comes naturally to you.
• You have excellent interpersonal, oral/written communication and cross-group collaboration skills.
• You are an independent thinker with a strong work ethic but also willing and able to conform to established architectural constraints.