Threat Intelligence and Response Specialist

POSITION PROFILE-THREAT INTELLIGENCE & RESPONSE SPECIALIST

Company: Simply Secure Group

Location: El Salvador/LATAM

Job Type: Full-Time, Contract

ABOUT US:

 Simply Secure Group is a U.S.-based cybersecurity and managed services provider headquartered in Fort Lauderdale, Florida, with a growing global footprint across North America, LATAM, and other international markets.

We specialize in delivering comprehensive cybersecurity and IT security solutions, including Security Operations Center (SOC) services, threat intelligence, incident response, compliance management, network security, and managed IT services. Our team combines deep technical expertise with a proactive, intelligence-driven approach to protect organizations against evolving cyber threats.

As we expand into Spanish-speaking markets, we are building a high-performing, globally distributed team to support our clients with 24/7 security operations and advanced threat defense.

ABOUT THE ROLE:

We are seeking a Threat Intelligence & Response Specialist to join our growing Threat Intelligence & Response Team. This role is ideal for candidates based in El Salvador or LATAM with foundational cybersecurity experience who are looking to deepen their expertise in threat intelligence, incident response, and proactive threat detection within a SOC environment.

You will work alongside experienced cybersecurity professionals to monitor threats, support investigations, and contribute to protecting client environments across multiple regions.

This role focuses on threat detection, analysis, and response, and works in close collaboration with infrastructure, security engineering, and IT operations teams who own system configuration, tool administration, and vulnerability remediation.

KEY RESPONSIBILITIES

Threat Monitoring & Intelligence

• Monitor security alerts and review threat intelligence feeds.
• Identify and analyze Indicators of Compromise (IOCs).
• Develop basic threat profiles and contribute to internal intelligence reporting.

Incident Response

• Actively participate in security investigations.
• Support containment and remediation efforts in coordination with senior analysts and relevant teams.
• Document incidents, actions taken, and outcomes clearly.
• Contribute to post-incident reviews.

Interested in remote work opportunities in IT & Network Engineering? Discover IT & Network Engineering Remote Jobs featuring exclusive positions from top companies that offer flexible work arrangements.

Threat Hunting

• Conduct structured searches across logs and systems to identify suspicious activity.
• Support detection of anomalies and emerging threat patterns.

SIEM & EDR Investigations

• Investigate alerts from SIEM and EDR platforms.
• Assist in alert tuning and support data analysis within security tools under guidance from senior team members.

Threat Intelligence Collaboration

• Gather and analyze threat intelligence from internal and external sources.
• Support the preparation of internal threat summaries and security bulletins.

Cross-Functional Collaboration

• Work closely with SOC Analysts, Network Security, and IT teams.
• Escalate alerts appropriately and support coordinated response efforts.

Vulnerability Management Support

• Collaborate with infrastructure and security teams on vulnerability identification and remediation efforts.
• This role does not own the vulnerability management lifecycle.

Continuous Improvement

• Stay current with global threat trends, tactics, and attack techniques.
• Contribute to SOP development and internal knowledge base documentation.

Operational Performance

• Operate within defined SLAs for alert triage, response, and escalation in a 24/7 SOC environment.

REQUIRED SKILLS & QUALIFICATIONS

• Bachelor’s degree in Cybersecurity, Computer Science, Information Security, or related field (or equivalent practical experience).
• 1–2 years of experience in cybersecurity, preferably within a SOC or incident response environment.
• Certifications such as CompTIA Security+, CySA+, or equivalent are preferred.
• Familiarity with SIEM and EDR tools
• Understanding of IDS/IPS concepts
• Basic understanding of: Threat intelligence concepts, MITRE ATT&CK framework, Incident response lifecycle
• Strong analytical thinking and problem-solving skills
• Attention to detail in high-pressure environments
• Ability to document technical findings clearly and concisely
• Fluency in Spanish (required), Intermediate to advanced English (required) must be able to communicate in a professional, technical environment

WORK ENVIRONMENT & TERMS

• Remote, contract-based role (2-year renewable agreement)
• 40-hour workweek within a 24/7 shift-based SOC environment
• Rotating shifts (including evenings, weekends, and public holidays)
• Candidates must provide their own device (BYOD), compliant with company security standards
• Contractors are responsible for managing their own taxes and statutory obligations
• Reliable high-speed internet is required to perform this role effectively. Candidates must always ensure stable connectivity, with a backup internet solution strongly recommended (e.g., mobile hotspot or secondary ISP).

WHY JOIN SIMPLY SECURE GROUP

• Exposure to global cybersecurity operations
• Hands-on experience with enterprise-grade security tools
• Career growth into advanced IT/Security roles
• Opportunity to work in a fast-growing international cybersecurity organization

HOW TO APPLY: If you are passionate about cybersecurity and ready to grow your career in a Cybersecurity environment, we encourage you to apply. Submit your resume and cover letter to: hr@simplysecuregroup.com. Subject Line: Threat Intelligence & Response Specialist. Only shortlisted candidates will be contacted. Learn more: www.simplysecuregroup.com || Simply Secure Group on LinkedIn