All roles

Open role

[Remote] Lead Security Engineer

Remote · Spain Full-time

Note: The job is a remote job and is open to candidates in USA. Duetto is the hospitality industry's leading revenue management platform, and they are seeking a Lead Security Engineer to oversee the security posture of their cloud infrastructure and operations. The role involves leading vulnerability management, incident response, and ensuring compliance with various security standards.

Responsibilities

  • You'll own Duetto's overall security posture across cloud, product, infrastructure, IT, compliance, and customer assurance — leading cloud security across AWS (IAM, logging, network security, encryption, Kubernetes and container security, backup posture, and configuration risk) and partnering with Engineering and DevOps to embed security into the SDLC, CI/CD pipelines, and production operations
  • You'll lead vulnerability management end-to-end — owning Snyk Pro and Lacework (or equivalents) for code, dependency, and cloud security operations, including alert triage, posture management, prioritisation, remediation tracking, and reporting across infrastructure, application, cloud, containers, and endpoints
  • You'll serve as the primary security incident leader for major incidents, investigations, escalations, root cause analysis, and executive reporting — and lead IR tabletop exercises, DR tabletop exercises, backup testing coordination, and BCP security reviews
  • You'll own SOC 2 Type 2 readiness, ISO 27001 readiness, ISO 42001 AI governance alignment, and NIST CSF maturity tracking — maintaining the security risk register, risk treatment plans, security roadmap, and security debt backlog
  • You'll partner with Legal and Privacy on DPA, DTIA, DPF, GDPR, SCCs, and subprocessor management, and own customer-facing security assurance including strategic RFPs, security questionnaires, enterprise security reviews, Trust page content, and sales support calls
  • You'll provide security guidance to IT on MDM, endpoint security, AV/EDR coverage, access reviews, and SaaS security controls — and report security posture, risks, incidents, remediation status, and audit readiness to executive leadership

Skills

  • 8+ years of experience in security, cloud security, DevSecOps, security engineering, infrastructure security, or security operations
  • Strong hands-on knowledge of AWS — you can review cloud architecture and identify risk, not just read about it
  • Experience securing DevOps environments, CI/CD pipelines, Kubernetes and container environments, cloud IAM, logging, secrets management, and infrastructure-as-code
  • Experience with SOC 2 Type 2 audits and a working familiarity with ISO 27001, NIST CSF, and GDPR security requirements
  • Experience with vulnerability management, penetration testing programmes, and incident response
  • The ability to translate technical risks into business-level priorities and communicate clearly with Engineering, Legal, Sales, auditors, customers, and executives
  • Hands-on experience with Snyk, Lacework, Vanta, MDM platforms, endpoint protection, and cloud posture tools
  • Prior ownership of SOC 2 Type 2 audit readiness end-to-end
  • ISO 27001 implementation or certification support experience
  • Experience supporting enterprise SaaS security reviews and customer trust programmes
  • Familiarity with ISO 42001 or AI governance frameworks

Benefits

  • Location: Remote (US/Canada)

Company Overview

  • Duetto specializes in cloud applications, SAAS, revenue management systems, and hotel leadership software. It was founded in 2012, and is headquartered in San Francisco, California, USA, with a workforce of 51-200 employees. Its website is https://www.duettocloud.com.
  • Company H1B Sponsorship

  • Duetto has a track record of offering H1B sponsorships, with 7 in 2025, 3 in 2024, 3 in 2023, 5 in 2022, 3 in 2021, 1 in 2020. Please note that this does not guarantee sponsorship for this specific role.
  • More open positions

    [Remote] Senior Product Manager, DeFi

    Work from home Full-time role

    [Remote] Senior Infrastructure Software Engineer, Identity & Auth Engineering

    Work from home Full-time role

    [Remote] Salesforce Developer Administrator

    Work from home Full-time role

    [Remote] VP, Finance

    Work from home Full-time role

    [Remote] Senior Backend Engineer - Recommender Systems

    Work from home Full-time role

    Remote Data Entry Specialist - Join careerzynith's Innovative Team

    Work from home Full-time role

    Experienced Chat Operator – Automotive Customer Engagement Specialist at careerzynith Wichita, KS

    Work from home Full-time role

    Book Production Editor, Random House (Open to Remote) 1

    Work from home Full-time role

    Central Fill Pharmacist (Evening Shift)

    Work from home Full-time role

    Remote Data Entry Specialist – Home‑Based Position with careerzynith – No Experience Required – Flexible Hours & Career Growth

    Work from home Full-time role

    [Remote] HR Business Partner, HRBP - Remote

    Work from home Full-time role

    Experienced Remote Chat Moderator – Safeguard Online Communities and Earn $25-$35/hr from Home

    Work from home Full-time role

    Business Intelligence Consultant | Upto $90/hr Hourly

    Work from home Full-time role

    Backoffice Specialist (m/f/d) - Accounting & Controlling

    Work from home Full-time role

    Natural Gas GIS Technologist I

    Work from home Full-time role

    [Remote] Legal Support Specialist - Evening

    Work from home Full-time role

    Independent Insurance Claims Adjuster in Dayton, Tennessee

    Work from home Full-time role

    Senior Account Executive

    Work from home Full-time role

    Pharmacovigilance Specialist – Remote

    Work from home Full-time role

    Senior Manager, Unclaimed Property & Escheatment (Remote)

    Work from home Full-time role

    Director, Clinical Operations, Oncology

    Work from home Full-time role