Infrastructure Security Engineer

Skills

About the Role

YOU will lead the security of cloud infrastructure production systems internal platforms and operational environments. You will design secure systems, improve detection and response capabilities, and embed security throughout the software and operational lifecycle. You will investigate security incidents, conduct root cause analyses, and drive remediation. You will automate security controls and integrate security tooling into engineering workflows. You will collaborate across functions to secure CI CD pipelines and review infrastructure changes to identify and mitigate risks.

Requirements

• 7+ years of experience in infrastructure security, security engineering, security operations, or related fields
• Strong experience securing cloud environments, particularly AWS
• Deep understanding of Linux systems administration and security
• Hands-on experience with Kubernetes, containers, and cloud-native infrastructure
• Experience with SIEM, EDR, logging, monitoring, and incident response tooling
• Strong knowledge of networking, VPNs, DNS, firewalls, load balancing, and network security principles
• Experience implementing IAM, RBAC, secrets management, and privileged access controls
• Experience securing CI/CD pipelines and infrastructure-as-code environments
• Strong scripting or programming skills in Python, Go, Bash, Rust, or similar languages
• Experience leading security initiatives in production environments

Responsibilities

• Design, implement, and maintain security controls across AWS and cloud-native infrastructure
• Lead infrastructure hardening initiatives across servers, containers, Kubernetes clusters, and cloud services
• Drive identity and access management programs including least-privilege access, RBAC, privileged access management, and secrets management
• Own vulnerability management processes, remediation programs, and infrastructure security reviews
• Build and improve security monitoring, detection engineering, alerting, and incident response capabilities
• Investigate security incidents, conduct root-cause analysis, and lead response and recovery efforts
• Develop and maintain incident response playbooks, operational procedures, and security runbooks
• Partner with engineering teams to secure CI/CD pipelines, deployment workflows, and developer platforms
• Review infrastructure architecture and operational changes to identify and mitigate security risks
• Automate security controls and integrate security tooling into engineering workflows
• Conduct threat modeling and architecture reviews for infrastructure and platform services
• Support endpoint security, device management, vendor security assessments, and internal security initiatives
• Establish security metrics, reporting, and visibility into operational risk across the organization
• Collaborate effectively within a globally distributed team