INFRASTRUCTURE SECURITY ENGINEER WANTED?

We are seeking an experienced InfoSec Engineer to join the client’s team. In this role, you will be responsible for ensuring the security of the company’s systems and networks and identifying and responding to potential cyber threats.

Overview

As a member of the InfoSec Engineering team, you will work on a wide variety of projects. The team is a project-focused technical team, where you will get to work on projects that have an impact across the whole organization.

The tech stack would be with Linux Servers, Cloud technologies (on-prem and off), Docker and Kubernetes, Python, Ansible, Terraform, and all manner of other technologies.

Responsibilities:

  • Assist with establishing a Linux infrastructure security, automate the infrastructure, and use Infrastructure as Code;
  • Design, architecture, and building on Security architectures;
  • Installation of new versions, patches such as WAF, and AV products;
  • Carry out analysis against data gained through security tooling to identify vulnerabilities, trends, and threat patterns.
  • Monitor for attacks, intrusions, and unusual, unauthorized, or illegal activity.
  • Monitor identity and access management, including monitoring for abuse of permissions by authorized system users and company clients.
  • Understand the Information Security policies, how they affect the business, and the rules that we need to adhere to;
  • Finding the most appropriate network segmentation and firewall rules, and building tools to roll these out;
  • Networking implementation and automation;
  • Azure OIDC rollout
  • Endpoint DLP solutions protection;
  • Building a framework for automated testing of policy rules, and developing tests to verify the state of the software;

Experience:

  • Strong knowledge of OWASP;
  • Minimum of 5+ years of relevant Linux Administration experience, with at least 2 years devoted specifically to InfoSec Engineer, Security Engineer, etc.;
  • Deep experience with Linux Server and knowledge of Windows Server and Active Directory would be a plus;
  • Knowledge of securing public cloud technologies (AWS, GCP, or Azure);
  • DevOps Automation using Jenkins, Puppet, Ansible, GitLab, etc.;
  • Experience with securing container technologies including Docker and Kubernetes;
  • Proficiency in Bash, Python, Perl, PowerShell or other scripting languages;
  • Ability to review and analyze vulnerability data to identify security risks to the organization’s network, infrastructure, and applications and determine any reported vulnerabilities that are false positives;
  • Deep experience with EDR, DLP, FW, and AV protection;

The ideal candidate would have strong reasoning and the ability to learn and grow over particular technologies or certifications. This person will work closely with teams across the organization, strong communication skills and the ability to help set and keep priorities and manage time spent is important.

Please send your recent CV stating the position title in the subject line and we will contact you if you have the required skill set!

APPLY FOR THIS JOB OR CONTACT US TO RECOMMEND A PROFESSIONAL