Infrastructure Security Lead engineer

Infrastructure Security Lead Engineer

The Infrastructure Security Lead Engineer will play a key role in the management and oversight of vulnerability management tools and technologies for a large global fortune 50 enterprise.

The specialist will be a member of the Infrastructure Security team that provides vulnerability management on behalf of the Company's Cyber Center.

The specialist will drive the implementation of vulnerability management and security configuration strategies for servers, network, cloud, and workstations with a focus on cloud and network devices.

Contract Duration : 6+ month Contract; Contract to Hire in Plano, TX

Hybrid, onsite 3 days / week

Required Skills & Experience

• Advanced Knowledge of Vulnerability Management tools (Tenable, Qualys, Rapid 7,
• Advanced knowledge of security tools (EDR, SIEM, DLP) and multiple operating systems (., Windows, Linux).
• Proficient in at least one scripting language (Python, bash, PowerShell) or one programming language (Java, C#, C++).
• Experience in multiple security domains (., Network security, Application Security, Infrastructure Security, Cloud Security, Security operations).
• Experience in aligning threat and vulnerability management efforts to frameworks and control objectives - MITRE ATT&CK, NIST CSF, ISO27001, CIS, OWASP.
• Familiarity with defensive and monitoring technologies such as Intrusion prevention / detection systems (IPS / IDS), Web application firewalls (WAF), security information and event management systems (SIEMs), and endpoint detection / response (EDR) tools, as well as user and entity behavior analytics (UEBA).
• Experience in developing automation and security tooling.
• Strong foundational knowledge in information technology, to include hardware, networking, architecture, protocols, files systems and operating systems.
• Understanding of frameworks such as : NIST, CSF, NIST 800-sp53, NIST 800-128, ISO 27000-27001.
• Linux, UNIX, IOS and Windows operating system knowledge.
• Experience with Palo Alto, F5, Routing and switching.
• Hands-on troubleshooting, analysis, and technical expertise in network, server, and workstation operating systems; previous experience in troubleshooting day-to-day operational processes such as security monitoring, data correlation, security operations, etc.

Skills / Experience

5+ years of experience in a technical security role (., Penetration Testing, Red Team, Application Security, Infrastructure Security);

or master’s degree in computer science / engineering or related cyber field, and 2 years of relevant experience.

Mandatory Non-technical skills

• A proactive and positive team player who is impact-focused, driven, curious, analytical, and a self-starter.
• Demonstrated ability to autonomously make high-judgment decisions and take calculated risks.
• Ability to establish trust relationships and influence others to positively impact the security posture and the business.
• Flexible and adaptive to support a dynamic and global environment with diverse stakeholders and ambiguity.
• Solid customer orientation with excellent oral and written communication skills in English.
• Must be able to operate extremely well under pressure while maintaining a professional.

Differentiating Competencies

• Ability to lead globally dispersed teams to achieve a unified outcome.
• Experience driving large-scale risk reduction initiatives across Fortune 500 organizations.
• Ability to weigh the relative costs / benefits / trade-offs of potential actions and identify the best resolution.
• Information Security certifications such as CISSP, CISM, CCSP, are a plus.

What You Will Be Doing

• Conduct infrastructure security scans on the infrastructure, cloud environments, devices, and across complex environments (including operational technologies).
• Drive all phases of infrastructure security assessment, including Scoping, planning, communications, timelines, and execution of key activities (vulnerability management, security configuration management).
• Develop in-depth reports (issue, severity, impact, remediation recommendations) for infrastructure security.
• Develop tools and techniques to automate, scale, and accelerate infrastructure security assessment and vulnerability discovery.
• Establish and mature team documentation, processes, procedures, and team KPIs.
• Mentor infrastructure security members, and other functions where needed to drive unified and holistic outcomes.
• Manage third-party security engagements to ensure high-quality products and deliverables.
• Support Infrastructure security research, innovation, and testing across emerging capabilities (., AI, LLM, ML, NLP, Smart Contracts, .
• Hands-on troubleshooting, analysis, and technical expertise in network, server, and workstation operating systems; previous experience in troubleshooting day-to-day operational processes such as security monitoring, data correlation, security operations, etc.
• Work directly with 3rd parties on Network and Cloud vulnerability assessments
• A broad understanding of cyber-security threats, vulnerabilities, controls, and remediation strategies in global enterprise environments
• Knowledge of technologies, systems, and networks as well as typical gaps that could impact the ability of an organization to effectively detect and respond to cyber attacks
• A team-focused mentality with the proven ability to work effectively with diverse stakeholders
• An ability to communicate complex and technical issues to diverse audiences, orally and in writing, a clear, authoritative, and actionable manner.
• Excellent oral and written communication skills in English

Accountabilities

• Execute on projects, objectives, and deliverables in alignments with team vision, mission, and goals.
• Routinely develop and update infrastructure security, documentation, processes, and technologies to adapt to emerging threat landscape.
• Develop automation to scale global infrastructure security capabilities and operational resiliency.
• Collaborate with partner teams, service owners, and senior leadership to influence, prioritize, and drive the resolution of discovered security findings.
• Create and deliver trainings; and participate in security reviews, audits, on-site engagements, and support incidents after-hours when required.

You will receive the following benefits :

• Medical Insurance - Four medical plans to choose from for you and your family
• Dental & Orthodontia Benefits
• Vision Benefits
• Health Savings Account (HSA)
• Health and Dependent Care Flexible Spending Accounts
• Voluntary Life Insurance, Long-Term & Short-Term Disability Insurance
• Hospital Indemnity Insurance
• 401(k) including match with pre and post-tax options
• Paid Sick Time Leave
• Legal and Identity Protection Plans
• Pre-tax Commuter Benefit
• 529 College Saver Plan
30+ days ago