Security Engineer (Infrastructure) - ESK Agency

As an Infrastructure Security Engineer, you will join our global information security team to design, deploy, and maintain security controls for our private cloud and on-premises infrastructure. Your role is critical in protecting our servers, networks, and data centers from internal and external threats, ensuring operational resilience while enabling the organization to function securely.

You will have full responsibility for the engineering, maintenance, and day-to-day operations of security systems that protect our data and IT assets, with a focus on practical, hands-on implementation and continuous improvement.

• Engineer, deploy, maintain and improve security technologies, including:

  • WAF, IDS/IPS, and endpoint protection platforms (e.g., CrowdStrike, Cortex, SentinelOne).

  • SIEM solutions (e.g., Splunk, QRadar, ELK) for log aggregation, correlation, and alerting.

  • Vulnerability management platforms for scanning, patching, and remediation.

• Automate routine security tasks (e.g., vulnerability scanning, patch management, configuration compliance) using scripting (Python, Bash, PowerShell) and infrastructure-as-code tools (Ansible, Terraform).

• Improve infrastructure for new vulnerability scanning capabilities, ensuring comprehensive coverage of on-premises assets.

• Lead the operational management of security systems, ensuring high availability and rapid response to security product malfunctions (e.g., WAF latency, SIEM failures).

• Act as the Security Subject Matter Expert (SME) in infrastructure projects, identifying security requirements, reviewing low-level designs, and shaping secure solutions. Also to provide support on all the different products and tools managed by the team for internal and external clients.

• Provide on-call support exclusively for security product outages, including troubleshooting analysis and remediation for infrastructure-related issues.

• Drive the security roadmap for infrastructure, identifying gaps, proposing improvements, and implementing controls to mitigate risks.

• Collaborate with IT and operations teams to integrate security into change management, support cycles, and disaster recovery planning.

• Deploy and configure new security products (e.g., SOAR, HSM) from initial setup to knowledge transfer for the Security Operations team.

• Maintain detailed documentation for security systems, policies, and procedures.

• Stay current with emerging threats and vulnerabilities relevant to infrastructure and share knowledge within the team.