Job Summary: We are seeking an IT Security or Cybersecurity Engineer to reduce risks, manage findings, investigate incidents, and standardize processes. Key Highlights: 1. Comprehensive IT security and cybersecurity management. 2. Focus on risk reduction and compliance with standards. 3. Opportunity to work on audit processes and continuous improvement. At Vector, we are looking for an IT Security Engineer or Cybersecurity Engineer to join our team. The primary objective of this position is to ensure risk reduction and security compliance through findings management, incident investigation, and process standardization. * Work location: Santiago Centro. * Working hours: Monday to Friday, 09:00–18:00 hrs. * Project duration: 6 months (with potential extension) **What will you do in this role?** * **Cryptographic Control:** Manage the key lifecycle (creation, rotation, custody, and backup) and ensure compliance with standards such as TLS and certificates. * **Findings Management:** Analyze vulnerabilities and configuration weaknesses, prioritize them based on actual risk (CVE/CVSS), and track them to closure. * **Process Engineering:** Document AS-IS processes and design TO-BE processes using BPMN, defining RACI matrices, approval workflows, and control metrics (KPIs/SLAs). * **Auditing and Evidence:** Generate technical and executive documentation with reproducible evidence (logs, commands, screenshots) for audit processes under frameworks such as ISO 27001, NIST, or CIS Controls. * **Incident Management:** Support incident investigations and recommend containment actions and continuous improvement measures. **Technical Requirements** * **Education:** Degree in Computer Engineering, Cybersecurity, or a related field. * **Experience:** Minimum 3 years in IT Security or SecOps roles. Experience in banking, retail, or healthcare is highly valued. **Key Knowledge Areas:** * Networks and protocols (TCP/IP, DNS, VPN, Firewalls). * Cloud security (Azure or AWS), specifically IAM, logging, and encryption. * Regulatory frameworks: ISO 27001/27002 and ITIL. * Process modeling using BPMN. **Certifications (Desirable):** Security+, AZ-500, SC-200, or SSCP.