At Bosal Mexico, we are committed to driving innovation in mobility and global energy through the development and manufacturing of technological solutions with agility across its four market segments: powertrain, chassis, energy, and microgrid. Our group plays an important role in shaping a cleaner future. From automotive to energy solutions, our products are recognized and valued by our customers around the world. It is a fact we are proud of. Our constant and successful journey to make agility our strength is something we are also proud of. Our global presence allows us to complement our customers, providing unparalleled satisfaction through the superior quality of our products.

SECURITY MONITORING & AUTOMATION

SPECIALIST

Main Purpose of the Job:

To ensure proactive detection, analysis, and response to security threats using automated and centralized monitoring, SIEM platforms, and automated playbooks.

Scope of the Job:

Focuses on monitoring infrastructure and cloud environments for security events.

Responsible for managing SIEM platforms, developing detection use cases, and automating incident response through SOAR tools.

Key Areas of Responsibilities and Accountability

· Manage and develop SIEM use cases for threat detection

· Perform vulnerability tracking and coordinate remediation follow-up

· Handle incident triage and escalation workflows

· Integrate and tune logging agents across systems

· Integrate logging agents and optimize data normalization

· Develop SOAR playbooks for automated responses

· Ensure compliance with log retention and audit requirements

Skills:

Expertise in SIEM platforms (Sentinel, Splunk, Elastic… ).

· Proficient in KQL, Regex, Python scripting, log parsing and normalization

· Experience with vulnerability scanners (Nessus, Qualys)

· Experience with pen testing

· Knowledge of MITRE ATT&CK and incident response processes

· SOAR tools, Python scripting, REST APIs

· Understanding of logging standards (Syslog, Windows Event Logs)

· Tools: Eramba, Microsoft Sentinel, Splunk, Cortex XSOAR, Nessus, Qualys, Wireshark, Sysmon, …

· Fluent in English (verbal and written).

Experience:

· 3-5 years in security monitoring and incident response

· Experience with SIEM and SOAR platforms

· Hands-on experience in log analysis and threat detection

· Collaboration with SOC analysts, infrastructure engineers, and security architects

· Hands-on with vulnerability scanners (Nessus, Qualys).

Benefits

Vacaciones conforme a la ley.

Prima Vacacional 75%

Aguinaldo 18 días

Fondo de Ahorro 7%

Vales de despensa 5%

Seguro de Vida.

Seguro de Gastos Médicos Mayores (individual).

Tipo de jornada:

- Lunes a Viernes.

* Favor de Postularte con CV Ingles y Español*

Lugar de trabajo: Parque Industrial O'Donnell, el Marqués, Queretaro.