Senior IT Cybersecurity Engineer
Seagull Software, LLC, is a global leader in real-time, item-level visibility and label management solutions, dedicated to powering the world’s most complex supply chains with innovative tools for traceability, authentication, and automated inventory management. Our BarTender™️ platform enables businesses across all industries to design, manage, print, and automate the production of labels, barcodes, and RFID tags, ensuring seamless tracking and compliance for over 100 billion unique identifiers each year. Leveraging the Mojix™️ high-security, scalable SaaS traceability platform, Seagull delivers end-to-end intelligence, harmonizing data to drive operational efficiency, enhance customer experiences, and reduce risk. Learn more at www.seagullsoftware.com.
We’re a growing, profitable, mid-size business with a 40-year history of leading in our field. Headquartered in Redmond, Washington, with offices across the United States, Europe, and Asia, Seagull empowers businesses worldwide to keep their products moving, traceable, and safe. You’ll work with global, talented, and diverse teams, passionate about what they do and its impact on everyone, everywhere. Join us and help shape the way the world works.
LOCATION
This direct contractor position is hybrid in La Paz, Bolivia office or remote in other cities from Bolivia or LATAM.
JOB SUMMARY
We are looking for a Senior IT Cybersecurity Engineer to own and drive Seagull’s cybersecurity program across our corporate and product-facing environments. This role leads security operations, vulnerability management, incident response, and security governance, while partnering closely with Engineering, IT, and business stakeholders to reduce risk and strengthen our security posture.
In addition to maintaining ISO 27001, ISO 27701, and SOC 2 programs, this role is accountable for defining security priorities, selecting and operating key security tooling, and ensuring controls are implemented effectively and measurably as the company scales.
ESSENTIAL JOB FUNCTIONS
Own the company’s cybersecurity program, including security strategy, priorities, and measurable improvements to security posture.
Lead security operations across cloud/SaaS and corporate environments, including alert triage, investigation, and response coordination.
Own incident response processes (runbooks, tabletop exercises, post-incident reviews) and drive corrective actions to completion.
Define and run the vulnerability management program (scanning, prioritization, remediation SLAs, verification) in partnership with Engineering and IT.
Partner with Engineering and DevOps to embed security into delivery (secure SDLC, threat modeling, security reviews, CI/CD guardrails).
Own security tooling selection, configuration, and ongoing operations (e.g., SIEM/logging, EDR, vulnerability scanners, cloud security posture management).
Maintain and evolve compliance and privacy programs (ISO 27001, ISO 27701, SOC 2), including audit readiness, evidence quality, and control effectiveness.
Lead risk management activities including vendor/security reviews, customer security questionnaires, and security exceptions with documented approvals.
Drive identity and access management best practices (least privilege, MFA, access reviews) and support security standards for endpoints and networks.
Contribute to disaster recovery and business continuity planning and testing, ensuring security requirements are addressed.
Create and maintain security policies, standards, and technical documentation; deliver security awareness guidance to stakeholders as needed.
REQUIRED EXPERIENCE, SKILLS & EDUCATION
5+ years of experience in cybersecurity, security engineering, security operations, or GRC for cloud/SaaS environments
Demonstrated ownership of a cybersecurity program, including incident response, vulnerability management, and security tooling
Hands-on experience supporting ISO 27001, ISO 27701, and SOC 2 programs
Experience operating and maintaining compliance controls in production environments
Exposure to privacy controls and data protection frameworks (ISO 27701 or similar)
Experience working with engineering or DevOps teams in cloud/SaaS environments
Working knowledge of scripting (Python/Bash) and APIs is a plus
Ability to support the adoption of additional compliance frameworks (e.g., HIPAA, PCI, etc.)
Strong understanding of vulnerability management and remediation workflows
Experience developing policies, procedures, standards, and audit evidence
Strong written communication and stakeholder management skills
English professional proficiency for audit, policy, and cross-functional communication
EDUCATION
Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience).
Industry certifications (e.g., Security+, CISSP/SSCP, ISO 27001, and/or cloud security certifications), are preferred.
TERMS OF CONTRACT
This is a direct independent Contractor role. The Contractor is not an employee of Seagull and solely responsible for all taxes, withholdings, and other statutory, regulatory or contractual obligations.
Contractor must be set up to operate as a self-employed entity (sole proprietorship or LLC) and provide insurance documentation, alongside completion of a W-8BEN and sign an Independent Contractor Agreement before the start of the contract.
Contractor shall provide detailed time-keeping records related to performing their services.
- This is a one-year contract with the opportunity for renewal.
- This contract role is not benefits eligible.
#LI-Remote
#LI-Hybrid
#LI-LATAM
#LI-Bolivia