Information Security Engineer / Ingénieur En Sécurité De L'information | North America (EST) /amérique Du Nord (EST) - Remote Eligible

Information Security Engineer

Deel is the all-in-one payroll and HR platform for global teams. Our vision is to unlock global opportunity for every person, team, and business. Built for the way the world works today, Deel combines HRIS, payroll, compliance, benefits, performance, and equipment management into one seamless platform. With AI-powered tools and a fully owned payroll infrastructure, Deel supports every worker type in 150+ countries—helping businesses scale smarter, faster, and more compliantly.

Among the largest globally distributed companies in the world, our team of 7,000 spans more than 100 countries, speaks 74 languages, and brings a connected and dynamic culture that drives continuous learning and innovation for our customers.

Your experience at Deel will be a career accelerator. At the forefront of the global work revolution, you'll tackle complex challenges that impact millions of people's working lives. With our momentum—backed by a $17.3 billion valuation and $1 B in Annual Recurring Revenue (ARR) in just over five years—you'll drive meaningful impact while building expertise that makes you a sought-after leader in the transformation of global work.

We are seeking an Information Security Engineer to serve as a technical leader in designing, implementing, and optimizing our core security platforms. This role is crucial for advancing our defense-in-depth capabilities, ensuring adherence to global regulatory frameworks, and protecting sensitive data within our remote-first, global environment. The ideal candidate will own the entire lifecycle of multiple security solutions, translating best practices and compliance requirements into actionable technical controls.

Responsibilities:

• Act as the Subject Matter Expert (SME) for Endpoint Detection and Response (EDR) tools/process including optimizing configurations/policies, developing custom threat detection rules, and proactively improving Deel's overall security posture for remote endpoints (Mac and Windows) and cloud assets (Eg, VMs).
• Configure, manage, and tune the full suite of security policies within SWG, CASB and ZTNA. Assist our remote colleague with seamless experience through troubleshooting end user issues as needed.
• Continuously improve SaaS security posture with SSPM tools and processes around it. Collaborate with diverse application owners, understand security control and resolve configuration drifts for our wide range of SaaS applications from baseline.
• Develop a rigorous review, approval, policy enforcement and auditing for browser extensions, third party OAuth applications for SaaS applications such as Google Workspace, GitHub, Jira etc to meet security and privacy standards.
• Design, implement, and audit security policies related to enterprise browsers (Eg, Island, Chrome Enterprise etc) including controlling access to sensitive web apps, and data loss prevention (DLP) configuration, ZTNA, secure web browsing experience but not limited to.
• Manage DLP policies across Endpoint, Network, SaaS Applications and Cloud assets, directly supporting the "Crawl-Walk-Run" program phases. Ensure DLP policies meet diverse data sovereignty, privacy (GDPR, CCPA, etc.), and national regulatory requirements.
• Run vulnerability management programs for endpoints and servers and ensure they are patched according to the policy in collaboration with stakeholders.

Job Requirements:

• 5+ years of experience in cybersecurity
• Handson experience with security tools like EDR, SWG, CASB, ZTNA and DLP
• Familiarity with cybersecurity frameworks and best practices, such as MITRE, NIST, CIS, ISO27001, SOC and others.
• Experience in collaborating with internal stakeholders to rollout enterprise security solutions.
• Understanding and having the ability to utilize Cloud platforms such as AWS, GCP, Azure to host security tooling. Having experience in utilizing SIEM to query security telemetry is a plus.
• Experience managing secure email gateway is a plus.
• Excellent English in both verbal and written.
• CISSP is a plus