Description

Role

We are seeking a highly skilled and experienced Infrastructure Security Engineer to join our dynamic team. The Infrastructure Security Engineer will be responsible for designing, implementing, and maintaining robust security measures to protect our organization's infrastructure from cyber threats. This role requires deep technical expertise in network security, system hardening, access control, and incident response. The ideal candidate will have a strong understanding of emerging threats and industry best practices to ensure the confidentiality, integrity, and availability of our critical systems and data.

Major Duties and Responsibilities

Design and implement security solutions for our organization's infrastructure, including networks, servers, and cloud environments.

Conduct regular security assessments and vulnerability scans to identify and address potential weaknesses in our systems.

Develop and maintain security policies, standards, and procedures to ensure compliance with regulatory requirements and industry best practices.

Monitor security logs and alerts to detect and respond to security incidents in a timely manner.

Collaborate with cross-functional teams to integrate security controls into the development and deployment of new technologies and applications.

Perform security reviews of third-party vendors and partners to ensure they meet our security requirements.

Provide guidance and support to IT teams on security-related matters, including system configuration, patch management, and access controls.

Stay up-to-date on the latest security threats, trends, and technologies to continuously improve our security posture.

Participate in incident response activities, including forensic analysis, root cause determination, and remediation.

Assist in the development and execution of security awareness training programs for employees to promote a culture of security awareness.

Responsible for the timely resolution of problems on Information Systems hardware and software. This includes maintaining the system operations in accordance with all regulatory requirements.

Implements software security directives from the organizations Information Security Department.

Delivers technical solutions related to the enterprise infrastructure including Active Directory, Office 365, DNS and associated services.

Qualifications

Knowledge and Skills

Experience

Five to ten years of similar or related experience, including time spent in preparatory positions.

Education/Certifications/Licenses

Bachelor's degree in Computer Science, Information Security, or a related field; or equivalent work experience.

Interpersonal Skills

A significant level of trust, credibility and diplomacy is required. In-depth dialogue, conversations and explanations with customers, direct and indirect reports and outside vendors can be of a sensitive and/or highly confidential nature. Communications may involve motivating, influencing, educating and/or advising others on matters of significance. Typically includes subject matter experts as well as first level to middle managers.

Other Skills

Experience with DevSecOps practices and tools for integrating security into the software development lifecycle. Familiarity with containerization technologies such as Docker and Kubernetes, and securing containerized environments. Knowledge of scripting and automation tools such as Python, PowerShell, or Ansible for security orchestration and automation. Experience conducting penetration testing and ethical hacking activities to identify and exploit security vulnerabilities. Advanced certifications such as Offensive Security Certified Professional (OSCP) or Certified Information Systems Security Professional (CISSP) concentrations in architecture or engineering.

ADA Requirements

Physical Requirements

Is able to bend, sit, and stand in order to perform primarily sedentary work with limited physical exertion and occasional lifting of up to 10 lbs. Must be capable of climbing / descending stairs in an emergency situation. Must be able to operate routine office equipment including computer terminals and keyboards, telephones, copiers, facsimiles, and calculators. Must be able to routinely perform work on computer for an average of 6-8 hours per day, when necessary. Must be able to work extended hours or travel off site whenever required or requested by management. Must be capable of regular, reliable and timely attendance.

Working Conditions

Must be able to routinely perform work indoors in climate-controlled shared work area with minimal noise.

Mental and/or Emotional Requirements

Must be able to perform job functions independently or with limited supervision and work effectively either on own or as part of a team. Must be able to read and carry out various written instructions and follow oral instructions. Must be able to complete basic mathematical calculations, spell accurately, and understand computer basics. Must be able to speak clearly and deliver information in a logical and understandable sequence. Must be capable of dealing calmly and professionally with numerous different personalities from diverse cultures at various levels within and outside of the organization and demonstrate highest levels of customer service and discretion when dealing with the public. Must be able to perform responsibilities with composure under the stress of deadlines / requirements for extreme accuracy and quality and/or fast pace. Must be able to effectively handle multiple, simultaneous, and changing priorities. Must be capable of exercising highest level of discretion on both internal and external confidential matters.