Infrastructure Security Engineer at Observe

San Mateo, Alajuela, Costa Rica

Apply Now

Not SpecifiedCompensation

Mid-level (3 to 4 years), Senior (5 to 8 years)Experience Level

Full TimeJob Type

UnknownVisa

Technology, CybersecurityIndustries

Requirements

Bachelor’s degree or equivalent practical experience
3+ years in security engineering or networking or a blended role across IAM, detections/monitoring, incident response, vulnerability/configuration management, and GRC
Strong understanding of identity models, least privilege, and access review processes across cloud and SaaS environments
Experience writing clear runbooks/playbooks and partnering with IT/Infrastructure to operationalize changes
Familiarity with cloud security fundamentals, CI/CD concepts, and infrastructure-as-code principles
Ability to translate risk into prioritized, incremental improvements with measurable outcomes
Preferred Qualifications
Demonstrated reduction of alert noise and duplicate findings through rule tuning, routing, and suppression
Proven implementation of just-in-time administrative access, break-glass pathways, and periodic access reviews
Experience orchestrating incident response and delivering durable, engineering-owned remediations
Hands-on alignment of operations with SOC 2/ISO 27001 and automation of evidence collection

Responsibilities

GRC Enablement: Map operating controls to automated evidence (access reviews, backup verification, change control, patch SLOs). Support third-party assessments, penetration-test scoping, and regression validation; contribute to SOC 2/ISO 27001 readiness
Identity & Access Management: Design and maintain least-privilege models, just-in-time/step-up patterns, break-glass controls, and periodic access reviews. Publish clear access standards and reporting that improve visibility for engineering leadership and auditors
Detections & Monitoring: Define, implement, and tune a ruleset for high-value scenarios (e.g., authentication anomalies, risky configuration changes, suspected key/role misuse, public exposure). Reduce false positives with context and suppression; maintain coverage and efficacy dashboards
Incident Response: Author and own playbooks for top scenarios (credential theft, exposed secrets, suspicious data access, privilege escalation). Run tabletops with IT and Infrastructure; lead post-incident reviews and drive corrective actions with clear owners and timelines
Vulnerability & Configuration Management: Improve signal quality, deduplication, ownership routing, and SLAs for findings across services and environments. Partner with Infrastructure on remediation plans, patching objectives, baseline configurations, account/landing-zone structure, and segmentation
Documentation & Education: Maintain standards, runbooks, and quick-start guides that improve onboarding and day-to-day productivity. Lead reviews that balance near-term risk reduction with long-term architectural goals

Skills

Key technologies and capabilities for this role

Identity & Access ManagementGRCSOC 2ISO 27001DetectionsMonitoringLeast-Privilege ModelsJust-in-Time AccessVulnerability ManagementConfiguration ManagementAutomationPenetration TestingAccess ReviewsChange ControlPatch Management

Questions & Answers

Common questions about this position

Is this position remote or onsite?

The position is onsite.

What is the salary range for this Infrastructure Security Engineer role?

This information is not specified in the job description.

What are the minimum qualifications for this role?

Candidates need a Bachelor’s degree or equivalent practical experience and 3+ years in security engineering or net.

What does the work environment look like at Observe?

Observe is a high-growth environment building next-generation systems, where you'll collaborate closely with IT and Infrastructure teams to enable engineering teams to move faster securely.

What experience makes a strong candidate for this Security Engineer position?

Strong candidates have 3+ years in security engineering, experience with GRC enablement, identity & access management, detections & monitoring, incident response, and vulnerability management, plus the ability to collaborate across teams and champion scalable practices.

Observe

Software platform for application data monitoring

About Observe

Observe Inc. offers the Observability Cloud, a platform that helps businesses manage and analyze the large amounts of data generated by complex applications. This tool is designed for software developers and engineering managers, providing a comprehensive way to monitor application performance by ingesting data from various sources and formats. Unlike traditional monitoring tools, the Observability Cloud offers a holistic view, addressing the challenges of continuous releases and frequent updates. The company operates on a subscription model, allowing users to try the platform for free, and emphasizes high-quality customer support as a key differentiator.

San Mateo, CaliforniaHeadquarters

2017Year Founded

$281.6MTotal Funding

SERIES_BCompany Stage

Data & Analytics, Enterprise SoftwareIndustries

201-500Employees

Benefits

Remote Work Options

Flexible Work Hours

Risks

AI integration may introduce technical challenges affecting platform stability.

Reliance on Snowflake poses risks if pricing or service terms change.

New data sharing capabilities could raise data privacy and security concerns.

Differentiation

Observe consolidates logs, metrics, and traces into a unified data lake.

Data Graph technology enables faster issue diagnosis in distributed applications.

Observability Cloud ingests data from any source, offering a holistic application view.

Upsides

Integration with Snowflake enhances data analytics and market reach.

AI-powered observability tools offer advanced insights, aligning with AI integration trends.

$145M Series B funding boosts product development and expansion efforts.

Land your dream remote job 3x faster with AI

Try Jobo Free