Infrastructure Security Engineer

About the job

The world’s most critical--and at-risk--business applications have been neglected for far too long. Onapsis eliminates this blind spot by providing cybersecurity solutions dedicated to business-critical applications. Whether running on-premises, in the cloud, or in a hybrid environment, Onapsis helps nearly 30% of the Forbes Global 100 understand the threats and risks across their SAP and Oracle landscapes.

Key activities and responsibilities:

• Perimeter Security Management: Administer, maintain, and optimize firewalls, VPNs, and Web Application Firewalls (WAFs), ensuring secure network access and traffic flow while proactively performing clean-ups and configuration reviews.

• Endpoint and Server Protection: Support the hardening of endpoints and servers, perform vulnerability assessments, and implement security configurations to reduce risk exposure.

• Incident Response Support: Assist in detecting, investigating, and containing security incidents. Analyze logs, collect evidence, and contribute to timely mitigation efforts under guidance from senior security staff.

• Automation & Infrastructure as Code: Develop scripts and Infrastructure-as-Code solutions to automate security tasks, improve efficiency, and enforce consistent security standards.

• Certificate Management: Assist in the management, monitoring, and renewal of digital certificates (TLS/SSL), ensuring proper implementation, validity, and compliance across infrastructure and applications.

• Documentation & Reporting: Maintain accurate security documentation, produce reports on security posture, incidents, and configuration changes, ensuring transparency and traceability.

• Collaboration & Knowledge Sharing: Work closely with cross-functional teams across the organization to promote security awareness and assist with security initiatives.

Required skills and aptitudes:

• 2+ years of experience securing endpoints, servers, directory services and infrastructure, with a comprehensive understanding of security protocols, cryptography, and networking principles.

• Knowledge of firewall and VPN technologies, including administration, rule management, access control, and secure remote connectivity concepts.

• Solid understanding of network and security protocols, including TCP/IP, SSL/TLS, IPSec, DNS, and routing concepts.

• Skilled in programming and scripting languages such as Python, PowerShell, and Bash, with the ability to create custom automation tools and security scripts.

• Familiarity with Infrastructure as Code (IaC) concepts to support automated, scalable, and reliable infrastructure management.

• Understanding of digital certificates, PKI concepts, and TLS/SSL, including certificate lifecycle management, trust chains, and common misconfiguration risks.

• English proficiency to effectively communicate in a global, cross-functional team.

• Strong analytical thinking, attention to detail, and eagerness to learn in a dynamic security environment.

Desired skills and aptitudes:

• Practical experience working in an agile environment, with the ability to adapt to dynamic priorities and deliver results in fast-paced settings.

• Knowledge of information security standards such as ISO 27001, NIST 800-53, and CIS Critical Security Controls, with a strong understanding of related principles for risk identification and security analysis.

• Experience with cloud security, including securing and managing public cloud platforms such as AWS, GCP, or Azure, with a focus on implementing strong, cloud-specific security controls

• Experience with identifying and resolving network-related issues.

• Relevant certifications in security, networking, and cloud environments.

What we offer:

• A role in shaping the future of protecting the most critical applications that run the world's business and a career that grows as the company grows.

• A unique culture of high achievement and teamwork.

• Supportive and humble colleagues are the space's top problem solvers and innovators.

• Financial security through competitive compensation and incentives.

Employment: Onapsis hires full-time employees in Argentina. We do not engage with SRLs or B2B contractors.

About Onapsis:

Onapsis protects the business applications that run the global economy. The Onapsis Platform delivers vulnerability management, change assurance, and continuous compliance for business applications from leading vendors such as SAP, Oracle, and others. The Onapsis Platform is powered by the Onapsis Research Labs, the team responsible for the discovery and mitigation of more than 1,000 zero-day vulnerabilities in business applications.

Onapsis is headquartered in Boston, MA, with offices in Heidelberg, Germany and Buenos Aires, Argentina, and proudly serves hundreds of the world’s leading brands, including close to 30% of the Forbes Global 100, six of the top 10 automotive companies, five of the top 10 chemical companies, four of the top 10 technology companies, and three of the top 10 oil and gas companies.

For more information, connect with Onapsis on LinkedIn or visit https://www.onapsis.com.

Onapsis only invites candidates to apply directly through reputable job boards or the Onapsis careers page on our website. Job offers are extended only after a face-to-face video interview with an Onapsis HR representative. Please disregard any outreach from Onapsis via forums, social networks, or other platforms, as these are fraudulent.

#LI-AC1

#Remote