Infrastructure Security Engineer

You are an Infrastructure Security Engineer responsible for safeguarding the digital infrastructure of the organization. Your role involves working within various security domains such as cloud security, vulnerability management, endpoint protection, and security operations. In the realm of AWS Cloud Security, you will be tasked with designing, implementing, and upholding security controls within AWS environments. This includes managing IAM policies, security groups, NACLs, VPC configurations, as well as overseeing AWS security services like CloudTrail, GuardDuty, Security Hub, Config, and Inspector. Additionally, you will implement Infrastructure as Code (IaC) security best practices using tools such as CloudFormation, Terraform, or CDK, conduct security assessments, and ensure compliance with industry standards. Regarding Vulnerability Management, your responsibilities will involve leading vulnerability assessment programs, developing and maintaining vulnerability and patch management policies, coordinating with IT and development teams to address security vulnerabilities, and generating reports on vulnerability metrics and risk exposure. You will also conduct penetration testing and security assessments. In terms of Patch Management, you will design and implement automated patch management strategies across various environments, work with system administrators to deploy critical security patches, maintain patch testing procedures, monitor patch compliance, and develop incident response plans for patch-related issues. For Endpoint Security, you will deploy and manage endpoint detection and response solutions, configure security policies, investigate and respond to security incidents, implement mobile device management and security policies, as well as conduct forensic analysis when necessary. To qualify for this role, you should possess a Bachelor's degree in computer science, Information Security, or a related field, along with a minimum of 5+ years of information security experience and 3+ years of experience in AWS cloud security. Technical skills required include expertise in AWS security services, vulnerability scanners, patching tools, EDR/XDR platforms, SIEM/SOAR, and strong knowledge of Windows and Linux security. Preferred certifications include AWS Certified Security - Specialty, CISSP, GCIH, and CEH. Key competencies for this role include analytical skills, effective communication, project management capabilities, ability to work in fast-paced environments, understanding of regulatory compliance requirements, risk assessment frameworks, and security governance. You will report to the Engineering Manager Cyber Security and collaborate closely with IT Operations and Development Teams.,