Apply now »

IT Infrastructure Security Engineer

We are looking for a highly motivated, hands-on IT Infrastructure Security Engineer to support both infrastructure security projects and the day-to-day operation of critical security services. As part of a small expert team, you will help design, implement, operate, troubleshoot, automate, and continuously improve security platforms across a global IT environment. You will work with areas such as endpoint security, vulnerability management, cloud security, hardening, integrations, platform health, asset onboarding, and lifecycle management. You will collaborate with infrastructure teams, security teams, application owners, vendors, managed service providers, ITSM and CMDB stakeholders to translate business and security requirements into practical, reliable, and compliant technical solutions. This role is ideal for a pragmatic, delivery-oriented engineer who enjoys owning security services end to end — from implementation and automation to BAU operations, documentation, governance, and continuous improvement.

 

Your main responsibilities

  • Identify, validate, and implement functional and technical security requirements based on business and security needs.  
  • Support proof of concepts, technology evaluations, and solution design for new or improved infrastructure security capabilities.  
  • Design, configure, operate, optimize, and troubleshoot IT security solutions across infrastructure, cloud, endpoint, and security monitoring domains.  
  • Apply infrastructure-as-code and automation approaches to enable repeatable, controlled, and scalable deployment of security solutions.
  • Develop automated asset onboarding solutions that maintain security coverage, functional KPIs, and platform health across the service lifecycle.
  • Support patching and vulnerability remediation across hybrid environments, including on-premises, cloud, server, endpoint, and third-party-managed infrastructure.  
  • Integrate security platforms with ITSM, CMDB, hyperscalers, data platforms, threat intelligence sources, and other enterprise services.  
  • Automate repetitive tasks using scripts, APIs, workflows, and platform-native automation capabilities.  
  • Use ITSM, BAU tracking, request, incident, change, and service management systems for daily operations.  
  • Develop and maintain security policies, baseline configurations, hardening standards, operational governance, and compliance alignment.  
  • Create and maintain technical documentation, including architecture diagrams, procedures, configuration standards, and troubleshooting guides.
  • Collaborate with internal teams, vendors, and managed service providers to improve reliability, coverage, automation, efficiency, and business value.  
  • Provide ongoing support, guidance, and training to internal customers. 

 

Your profile

  • Degree in a STEM field with 5+ years of professional experience, or 10+ years of IT experience.  
  • Experience in global, heterogeneous enterprise environments.  
  • Hands-on experience in at least two areas such as Endpoint Management/Security, EPM, Antivirus, EDR, Vulnerability Management, DLP, CNAPP, DAST/SAST, or SIEM.  
  • Experience with platform health monitoring, complex upgrades, appliance maintenance, lifecycle management, server configuration, hardening, patching, and baseline configuration for Linux and Windows Server.
  • Practical experience with patching and vulnerability remediation across hybrid environments.  
  • Good understanding of Microsoft security technologies, including Azure, Entra ID, Microsoft Defender, Microsoft
  • Sentinel, identity/security configuration, and cloud security controls.  
  • AWS security experience is a strong advantage, including secure configuration, infrastructure security controls, cloud-native services, automation, and infrastructure-as-code.  
  • Familiarity with AD, SSO, RBAC, ITSM workflows, CMDB schemas, automation tools, and infrastructure-as-code.  
  • Strong troubleshooting knowledge across networks, protocols, HA setups, communication flows, client-server architectures, tunnels, proxies, and firewalls.  
  • Experience with tools such as tcpdump, Wireshark, traceroute, netstat, nmap, Postman, curl, netcat, socat, openssl, gdb, strace, lsof, and Sysinternals Suite.  
  • Proficiency in Bash, PowerShell, and Python for scripting, integrations, APIs, REST, GraphQL, and SDKs.  
  • Hands-on experience with Terraform, GitLab/GitLab CI/CD, Docker, and common package/build tools such as apt, yum, snap, npm, pip, git, and make.  
  • Ability to align IT operations with frameworks such as ITIL, CIS, NIST, and GDPR.  
  • Strong communication, presentation, coordination, ownership, and vendor management skills.  
  • Ability to navigate ambiguity, separate facts from assumptions, challenge weak reasoning professionally, and deliver viable solutions under tight deadlines.  
  • Pragmatic, flexible, self-driven, service-oriented, motivated to learn, and fluent in English.  

If you are coming from a job portal, please click directly on “Apply now”!

You can find the detailed job description & many more jobs here:
Open jobs

Apply now »