Security Engineer (DevSecOps)

Mindera·Remote(Portugal)
Software Development

WFA Digital Insight

The demand for skilled security engineers has grown exponentially in recent years, with a 25% increase in job postings in 2025 alone. As companies shift to remote work, the need for experts who can protect digital infrastructure has become paramount. Mindera, a leading tech company, is seeking a Security Engineer to join their team, working across European time zones to safeguard their systems. With a strong focus on innovation and security, this role offers a unique chance for professionals to work with cutting-edge technologies and collaborate with a global team. Before applying, candidates should be aware that this role requires a deep understanding of security frameworks, scripting, and automation, as well as excellent communication skills.

Job Description

About the Role

The Security Engineer role at Mindera is a critical position that requires a skilled professional to monitor, manage, and respond to security incidents across the company's infrastructure. As a key member of the security team, you will work closely with development teams to integrate threat modeling into the software development lifecycle, identifying and mitigating potential security risks. The role involves working within European time zones, requiring a significant overlap with team hours, and collaborating with a global team to ensure the company's security posture is continually improved.

About Mindera

Mindera is a leading tech company that works with clients worldwide to innovate and solve complex technical problems. With a strong focus on security, the company has achieved UK Cyber Essentials Plus and ISO 27001 certifications, demonstrating its commitment to protecting sensitive information. As a Security Engineer at Mindera, you will be part of a dynamic team that values self-organization, flexibility, and open communication.

What You Will Do

  • Develop, maintain, and fine-tune detection rules for the XDR platform
  • Investigate security events to determine whether an incident occurred
  • Run and analyze vulnerability scans to identify weaknesses and report results
  • Coordinate remediation efforts with development teams
  • Advise and answer queries from Minders, contributing to security guidelines and awareness
  • Work with development teams to integrate threat modeling into the software development lifecycle
  • Provide assistance during containment and recovery of incidents
  • Prepare reports and apply lessons learned to strengthen defenses
  • Develop scripts and tools to automate repetitive tasks, leveraging Infrastructure as Code (IaC) principles
  • Build and manage integrations across security tools

What We Are Looking For

  • At least 3 years of hands-on experience in two or more relevant areas, such as security monitoring, vulnerability management, or incident response
  • Technical skills in XDR threat detection and response, including experience with platforms like Palo Alto or CrowdStrike
  • Knowledge of vulnerability management tools like Tenable or Qualys
  • Scripting and automation skills, with the ability to write practical scripts using languages like Python or Bash
  • Understanding of change management principles and the ability to test, validate, rollout, and rollback changes safely and securely
  • Familiarity with operating systems, including Linux, macOS, and Windows
  • Knowledge of cloud and on-prem infrastructure, including networking concepts and cloud providers like AWS or GCP
  • Basic understanding of security frameworks like MITRE ATT&CK, NIST, or CIS
  • Excellent communication and interpersonal skills, with the ability to work effectively with teams and support Minders

Nice to Have

  • Experience with Infrastructure as Code (IaC) principles and tools like Terraform or Ansible
  • Knowledge of containerization technologies like Docker or Kubernetes
  • Familiarity with agile development methodologies and version control systems like Git
  • Certification in security or a related field, such as CompTIA Security+ or CISSP

Benefits and Perks

  • Flexible, supportive environment with a self-organization culture
  • Opportunity to work with a global team and collaborate on complex projects
  • Access to cutting-edge technologies and tools
  • Professional development opportunities, including training and certification programs
  • Competitive compensation package, including salary and benefits
  • Remote work stipend and equipment allowance
  • Generous paid time off and holiday policy
  • Health and wellness programs, including mental health support and fitness initiatives

How to Stand Out

  • To stand out in this role, focus on developing a strong understanding of security frameworks and threat modeling, and be prepared to provide examples of your experience with XDR platforms and vulnerability management tools.
  • When applying, make sure to highlight your scripting and automation skills, and be prepared to provide code examples or discuss your experience with languages like Python or Bash.
  • In the interview, be prepared to discuss your experience with incident response and containment, and provide examples of how you have handled complex security incidents in the past.
  • To negotiate salary effectively, research the market average for security engineers in your region and be prepared to discuss your qualifications and experience.
  • Be cautious of companies that do not prioritize security or have a poor track record of protecting sensitive information.
  • Be prepared to ask questions about the company culture, team dynamics, and opportunities for professional development during the interview process.

This is a remote position listed on WFA Digital, the platform for professionals who work from anywhere. Browse more remote jobs across all categories.