We are seeking a highly skilled and motivated Infrastructure Security Engineer to join our growing team. The ideal candidate will be responsible for designing, implementing, and maintaining robust security solutions for our critical infrastructure, ensuring the confidentiality, integrity, and availability of our systems and data. This role requires a deep understanding of network, cloud, and system security principles, as well as hands-on experience with various security technologies and best practices. You will play a crucial role in protecting our digital assets from evolving threats and contributing to a strong security posture.
- Design, implement, and manage security controls and solutions across our on-premise and cloud (AWS, Azure, GCP) infrastructure.
- Conduct regular security assessments, vulnerability scans, and penetration tests to identify and remediate security weaknesses.
- Develop, implement, and enforce security policies, standards, and procedures in alignment with industry best practices (e.g., NIST, ISO 27001).
- Monitor security systems (SIEM, IDS/IPS, EDR) for anomalies and potential threats, and respond to security incidents promptly and effectively.
- Manage and maintain security tools, including firewalls, WAFs, VPNs, identity and access management (IAM) systems, and data loss prevention (DLP) solutions.
- Automate security tasks and processes using scripting languages (Python, Bash, PowerShell) to improve efficiency and reduce manual effort.
- Provide expert guidance and recommendations on infrastructure security best practices, emerging threats, and new security technologies.
- Participate in incident response activities, including investigation, containment, eradication, recovery, and post-incident analysis.
- Ensure compliance with regulatory requirements and internal security policies.
- Perform security reviews of new technologies and architectural changes to identify potential security risks.
- Educate and train internal teams on security awareness and best practices.