Infrastructure Security Lead

Elign Consulting

The Infrastructure Security Lead is responsible for supporting IT security infrastructure and applications including architecture.

Infrastructure Security Lead
The Infrastructure Security Lead is responsible for supporting IT security infrastructure and applications including architecture, projects, deployment, systems administration, change management, upgrades, full lifecycle management as well as vendor, managed services and other platform support activities.
 
This position ensures the infrastructure technology and support applications used within the company are managed and maintained in alignment with required regulations, policies, procedures and guidelines.
 
This position assists in ensuring that service levels, as well as functional and technical objectives are achieved.
 
The Infrastructure Security Lead ensures systems and services are well managed, functioning effectively, and scale as needed in order to protect, detect and respond to cyber threats and security incidents.
 
The position supports the completion of risk and threat analysis for IT security infrastructure to establish and maintain the correct level of security and compliance with internal and external requirements
 
Accountabilities
 
  • Researches, evaluates and selects new tools and technologies in support of system operation
  • Ensures compliance with established security policies and procedures and supports alignment with best practices
  • Evaluates new technologies, systems and infrastructure to determine potential security and operational impact
  • Develops and maintains formal documentation for infrastructure and applications including technical specifications, systems documentation, qualification documents, configuration and change management documentation, user guides, wiki entries and system specific Standard Operating Procedure (SOP) documents
  • Oversees infrastructure projects and performs as lead engineer to ensure effective delivery and alignment with budgetary targets
  • Monitors global systems for operational health, vulnerabilities and capacity and ensures timely action as appropriate to ensure attainment of service levels and operational targets
  • Supports data management, analytics technologies, and automation/orchestration efforts in support of effective operations
  • Supports the updates of system administration work instructions and procedures as necessary
  • Works closely with IT operations personnel, application developers, administrators, system managers and system owners to design, implement and maintain security controls worldwide
  • Ensures the successful completion of all audits and is responsible ensuring appropriate close out activities to all audit points
  • Ensures that security infrastructure projects are completed in alignment with established budgetary targets and schedules
  • Participates in disaster recovery planning, development, exercises, and testing, as well as actual disasters or emergency events, by working in collaboration with security and other teams to create and maintain a secure infrastructure.
  • Learns and adapts quickly to new situations, changing priorities, and disruptive technologies. Participates in the processes for innovation and continuous improvement by leveraging the latest industry knowledge. Takes the initiative to experiment with new ideas and technologies.
  • Contributes to an inclusive environment that values differences by building and maintaining collaborative relationships with team members, peers, and leaders. Contributes to a culture of trust and transparency by sharing information broadly, openly, and deliberately.
  • Supports the vision for IT Infrastructure. Works closely with team members and management to implement and support effective solutions for the security architecture. Maintains currency with technology, standards, and best practices. Supports process improvement efforts within the team and across the company.
  • Adheres to the company’s ITIL practices for Incident, Change and Problem Management.
  • Publishes technology roadmaps for technology lifecycle; prepares capital plans
  • Prepares operational budgets and spend tracking, as well as key management reporting for system operations.
  • Works with service or software providers and develops system and process documentation.
  • Remains highly adaptable - Due to the changing nature of priorities in supporting business users, this role requires high adaptability.
  • Provides consultation on complex projects and is considered to be the top level contributor/specialist.
  • Performs other related duties as assigned or requested.
 
MINIMUM QUALIFICATIONS The candidate for the position of Infrastructure Security Lead must meet the following qualifications:
  • Bachelor’s degree in a relevant field such as computer science, computer information systems, etc., or equivalent combination of education, training, and experience.
  • Eight years of experience in one of the following fields: security engineering or security architecture.
  • Strong working knowledge networking protocols, MS Active Directory, firewalls, proxies, secure gateway administration, IDS/IPS, penetration testing, data loss prevention and modern security frameworks.
  • Ability to create presentation materials, generate reports, and present to appropriate stakeholders, including leadership. Ability to explain advanced concepts to engineers, peers, and leadership.
  • Ability to collaborate across a large, diverse organization and effectively communicate or negotiate with others.
  • Experience working in a project-based environment, including the ability to report on project status, evaluate project risks, and escalate project issues.
  • Individual in this position is expected to maintain a personal regimen for professional development to ensure a future proof skillet
 
PREFERRED QUALIFICATIONS The ideal candidate for the position of Infrastructure Security Lead has the following qualifications:
  • Master’s degree in a relevant field such as computer science, computer information systems, etc., or equivalent combination of education, training, and experience.
  • Ten or more years of experience in one of the following fields: security engineering or security architecture.
  • One or more of the following certifications: Certified Information Systems Security Professional (CISSP), or equivalent certification.