What are the responsibilities and job description for the INFORMATION SECURITY ENGINEER position at Diligent Tec Inc?
Job Title: INFORMATION SECURITY ENGINEER Experience: 10 Years Loc: San Jose, CA (hybrid) Duration: long term We are seeking a highly skilled Information Security Contractor to support Mergers & Acquisitions (M&A) initiatives. This role requires deep, hands-on experience securing corporate IT environments across Windows, Linux, and macOS platforms, with strong expertise in identity, endpoint security, cloud security, and enterprise security controls. The contractor will play a critical role in security due diligence, risk assessment, and secure integration or separation of environments during M&A activities. Key Responsibilities Perform information security due diligence for M&A transactions Assess and document security risks across acquired or merging environments Review, secure, and integrate corporate network and identity infrastructures Execute hands-on security tasks related to: Active Directory (domains, forests, trusts, GPOs, migrations) DNS architecture, security, and remediation Linux and macOS system security hardening Evaluate and deploy Endpoint Detection & Response (EDR) solutions Assess backup and disaster recovery (DR) capabilities and gaps Review and secure public-facing and internal websites, including TLS, WAFs, and configuration Conduct and manage vulnerability management programs (scanning, prioritization, remediation tracking) Implement and align security controls with CIS Controls Design and enforce Data Loss Prevention (DLP) strategies Secure Microsoft 365 / Office 365 environments (identity, email, data, and collaboration security) Assess and improve cloud security posture (AWS, Azure, GCP, or hybrid environments) Collaborate with IT, infrastructure, cloud, legal, and compliance teams Produce clear risk assessments, remediation plans, and executive-ready documentation Support security incident response related to M&A activities Required Skills & Experience 10 years of experience in Information Security, Infrastructure and Network Security Strong hands-on experience securing enterprise environments across: Windows, Linux, and macOS Active Directory and enterprise identity platforms DNS and network services Securing external facing web applications Proven experience with: EDR/XDR tools Vulnerability scanning and remediation workflows Backup and disaster recovery strategies Solid understanding of: Identity and Access Management (IAM) Zero Trust and least-privilege principles Enterprise security architectures Experience supporting M&A projects, including due diligence, integration, and carve-outs Ability to assess risk quickly in complex, time-sensitive environments Preferred Qualifications Experience with Azure AD / Entra ID, Intune, and hybrid identity Strong knowledge of Office 365 security (Defender, Purview, Conditional Access, DLP) Experience with cloud security controls and CSP-native security tools Familiarity with security frameworks (CIS, NIST, ISO 27001) Security certifications such as CISSP, CISM, CCSP, or Microsoft security certifications Consulting or contractor experience in fast-paced M&A environments Soft Skills Strong analytical and problem-solving skills Ability to work independently with minimal supervision Excellent communication skills with technical and non-technical stakeholders Comfortable operating under aggressive M&A timelines Strong documentation and reporting skills
Salary : $148,760 - $179,980