Demo

Senior Infrastructure & Security Engineer

Kurv
Cleveland, OH Full Time
POSTED ON 4/4/2026
AVAILABLE BEFORE 5/3/2026

Kurv is executing a fundamental digital transformation, moving from legacy monolithic systems to a resilient, cloud-native enterprise leveraging AWS and Databricks.


We are seeking a Senior Infrastructure & Security Engineer to join our team as a full-time, permanent stakeholder. This role is for a long-term owner who will bridge the gap between our robust on-premise networking foundation and our future cloud state. Your primary responsibilities include the expert operational management of our newly established SQL Server High-Availability (HA) Cluster, the maintenance of our Cisco and Palo Alto networking core, and the ongoing build-out of our AWS Landing Zone.


Key Responsibilities

1. Networking & Hybrid Connectivity (Physical & Cloud)

  • Core Network Management: Maintain and optimize the existing physical network stack, including Cisco, PaloAlto, and Brocade networking equipment
  • Perimeter Security: Manage Palo Alto firewalls, ensuring all inter-VLAN and inter-company traffic is scanned and secured.
  • Connectivity Resilience: Oversee internet circuits and connectivity for the organization.
  • Hybrid Integration: Implement and govern AWS Transit Gateway and Direct Connect (or IPsec VPN tunnels) to ensure seamless, secure communication across our hybrid environment.

2. SQL HA Cluster Operations (Mission Critical)

  • Operational Ownership: Serve as the primary owner for the newly created SQL Server HA environment, managing Windows Failover Clustering and Always On/Basic Availability Groups.
  • Performance Optimization:
  • Maintain a working understanding of performance characteristics within a high-utilization SQL Server environment, including memory configuration, tempDB structure, and index health, to support troubleshooting and prevent resource saturation.
  • Licensing & RPO: Manage SQL Server licenses with Software Assurance (SA) and conduct regular failover drills to guarantee zero data loss (Zero RPO) for our payments business.

3. Cloud Architecture

  • Infrastructure as Code (IaC): Maintain and expand our "Zero-Touch" production environment using Terraform to manage all AWS and Databricks resources.
  • Landing Zone Governance: Govern the AWS Organization through Control Tower and Service Control Policies (SCPs) to ensure multi-account security.
  • FinOps: Monitor real-time cloud spend; enforce mandatory tagging for departmental showback and manage auto-shutdown scripts for non-prod environments.

4. Security, Identity & PCI Compliance

  • PCI-DSS 4.0 Compliance: Lead the technical maintenance of strict network segmentation and isolation for PCI-scoped systems.
  • Identity-Based Perimeter: Maintain AWS IAM Identity Center and Databricks Unity Catalog to enforce granular, identity-based access.
  • Threat Management: Drive remediation of security findings (e.g., XSS, NTLMv2) and monitor real-time events via Splunk and AWS Security Hub.

5. Backup & Recovery Architecture (Enterprise Resilience)

  • Air-Gapped Data Protection: Maintain and manage enterprise backup operations using Veeam, ensuring secure, immutable backups within an air-gapped architecture to protect against ransomware and catastrophic data loss.
  • Recovery Assurance: Validate backup integrity through routine restore testing and verification procedures to support business continuity, disaster recovery objectives, and regulatory compliance requirements.
  • Operational Governance: Monitor backup job health, retention policies, and storage lifecycle management to ensure consistent protection across on-premise and hybrid workloads.


Required Qualifications

  • 7 years of enterprise experience in infrastructure, networking, and security.
  • Networking Mastery: Advanced hands-on experience with Cisco switching/routing and Palo Alto firewall administration.
  • SQL Clustering Expertise: Proven experience managing multi-node production SQL Server clusters (HA/DR).
  • AWS & IaC: Hands-on experience with AWS core services and Terraform for multi-account environments.
  • Practical PCI Experience: Proven track record of supporting and passing audits in PCI-compliant environments.
  • Hybrid Systems Knowledge: Strong background in VMware vSphere and Windows Server (AD/GPO).


Valuable Certifications


The following certifications are highly desired for this permanent role:

  • Networking & Security:
  • CCNP (Routing and Switching) or PCNSE (Palo Alto Networks Certified Network Security Engineer)
  • PCI Professional (PCIP) or Internal Security Assessor (ISA)
  • CISSP or CISM
  • Cloud & DevOps:
  • AWS Certified Solutions Architect – Associate (SAA-C03)
  • HashiCorp Certified: Terraform Associate
  • AWS Certified Security – Specialty
  • FinOps Certified Practitioner (FCP)


What We’re Looking For

  • A Full-Time Stakeholder: Someone who wants to take long-term pride in Kurv’s stability.
  • The "Bridge" Engineer: Someone comfortable configuring a physical Cisco switch one hour and writing Terraform for an AWS Transit Gateway the next.
  • Knowledge Capture: A willingness to collaborate with subject matter experts to translate deep institutional and technical knowledge into automated, scalable cloud patterns.

Salary.com Estimation for Senior Infrastructure & Security Engineer in Cleveland, OH
$144,990 to $173,346
If your compensation planning software is too rigid to deploy winning incentive strategies, it’s time to find an adaptable solution. Compensation Planning
Enhance your organization's compensation strategy with salary data sets that HR and team managers can use to pay your staff right. Surveys & Data Sets

What is the career path for a Senior Infrastructure & Security Engineer?

Sign up to receive alerts about other jobs on the Senior Infrastructure & Security Engineer career path by checking the boxes next to the positions that interest you.
Income Estimation: 
$179,455 - $227,077
Income Estimation: 
$214,167 - $272,269
Income Estimation: 
$139,945 - $168,577
Income Estimation: 
$164,835 - $201,088
Income Estimation: 
$135,994 - $168,063
Income Estimation: 
$161,209 - $233,553
Employees: Get a Salary Increase
View Core, Job Family, and Industry Job Skills and Competency Data for more than 15,000 Job Titles Skills Library

Job openings at Kurv

Senior Data Engineer
Apply
  • Kurv Cleveland, OH
  • Senior Data Engineer Kurv is a modern payments fintech company delivering simple, reliable merchant services to businesses across a wide range of industrie... more
  • 11 Days Ago
Telemarketer (WILTM178)
Apply
  • Kurv Wilmington, NC
  • Kurv has been providing reliable, competitively priced business solutions for our clients. We require experienced telesales people to contact business owne... more
  • 14 Days Ago
Senior Merchant Underwriter
Apply
  • Kurv Cleveland, OH
  • About the job The primary focus of the Senior Merchant Underwriter is to review, analyze and make confident credit risk decisions and recommendations for m... more
  • 16 Days Ago
Telemarketer - Cleveland
Apply
  • Kurv Cleveland, OH
  • Telemarketer Electronic Merchant Systems (EMS) is one of the largest, privately held, credit card processor in the United Sates. We are looking for excepti... more
  • 1 Day Ago
View More Jobs at Kurv

Not the job you're looking for? Here are some other Senior Infrastructure & Security Engineer jobs in the Cleveland, OH area that may be a better fit.

Senior Software Engineer (Infrastructure)
Apply
  • Affirm Cleveland, OH
  • Affirm is reinventing credit to make it more honest and friendly, giving consumers the flexibility to buy now and pay later without any hidden fees or comp... more
  • 14 Days Ago
Senior Software Engineer, Backend (Streaming Infrastructure)
Apply
  • Affirm Cleveland, OH
  • Affirm is reinventing credit to make it more honest and friendly, giving consumers the flexibility to buy now and pay later without any hidden fees or comp... more
  • 6 Days Ago
View More Jobs

AI Assistant is available now!

Feel free to start your new journey!