Remote Security Engineer position for a Fortune 50 IT environment focused on secrets management and remediation. Collaborate with application teams to drive remediation efforts and improve security posture. Work with GitHub and other tools to identify and remediate secrets.
Key Highlights
Technical Skills Required
Benefits & Perks
Job Description
Job Title:
Security Engineer – Secrets Management
Location: Remote (Latin America-based [LATAM] preferred)
Project: Secrets Management & Security Posture Optimization (Enterprise Client)
Position Summary
We are hiring a Security Engineer to support a high-impact enterprise initiative focused on secrets management and remediation, with an initial emphasis on exposed secrets found in GitHub Enterprise repositories. This project is part of a broader security posture optimization effort within a Fortune 50 IT environment, and you’ll be part of a globally distributed team executing on critical remediation and burndown strategies.
In this role, you will work closely with application teams to support and drive remediation efforts across source code repositories, helping resolve risks tied to plaintext credentials such as API keys, personal access tokens (PATs), and SSH keys. You’ll also contribute to reusable remediation workflows, coordination playbooks, and continuous improvement of burndown velocity.
This opportunity is ideal for professionals based in Latin America (LATAM) with hands-on experience in secure source code practices and a strong interest in DevSecOps and secrets management within GitHub environments.
Key Responsibilities
- Execute remediation workflows for secrets identified in GitHub repositories, including tokens, credentials, and other sensitive strings
- Collaborate with application teams to coordinate and validate remediation actions
- Participate in structured burndown campaigns by tracking remediation progress, escalating blockers, and validating resolution outcomes
- Contribute to standardized processes and documentation to enhance remediation speed and consistency
- Work across distributed teams to support project-wide goals tied to secrets hygiene, secure development practices, and posture improvement
Required Qualifications
- 3–5 years of experience in cybersecurity, DevSecOps, or application security roles
- Hands-on experience working with GitHub or equivalent version control platforms, especially with a focus on code hygiene or secret detection
- Familiarity with common secret types including API keys, SSH keys, access tokens, and credentials embedded in code
- Strong collaboration and communication skills for working with both engineering teams and stakeholders
- Fluency in English (spoken and written) and comfort working in a distributed team model
Preferred Qualifications
- Experience with secret detection tools such as GitGuardian or GitHub Advanced Security
Exposure to ServiceNow or other remediation workflow platforms
- Awareness of posture monitoring platforms such as Prisma Cloud, which will be part of the long-term enterprise security strategy
- Prior experience supporting security remediation efforts in consulting or enterprise environments
- Understanding of secure development practices and basic principles of secrets governance