Job Title: Infrastructure Security Specialist
Overview
The Infrastructure Security Specialist is responsible for designing, implementing, and managing security controls across IT infrastructure environments.
The role focuses on protecting networks, servers, cloud platforms, and data centers against internal and external threats while ensuring compliance with organizational and regulatory standards.
Key Responsibilities
- Security Architecture & Implementation
- Design, implement, and maintain secure network and server infrastructures (on-premises and cloud).
- Deploy and manage firewalls, intrusion detection/prevention systems (IDS/IPS), VPNs, and endpoint protection tools.
- Secure infrastructure-as-code (IaC) deployments in hybrid or multi-cloud environments.
- Monitoring & Incident Response
- Monitor infrastructure security events using SIEM tools (e.G., Splunk, QRadar, Azure Sentinel).
- Investigate and respond to security incidents, breaches, and vulnerabilities.
- Conduct root cause analyses and implement remediation strategies.
- Vulnerability Management
- Perform regular vulnerability assessments, patch management, and configuration hardening.
- Coordinate with infrastructure and DevOps teams to resolve security issues.
- Compliance & Governance
- Ensure infrastructure aligns with security frameworks (ISO 27001, NIST, CIS, GDPR, etc.).
- Maintain documentation, audit logs, and compliance reports.
- Access & Identity Management
- Manage identity, access, and privileged account controls across systems and networks.
- Implement zero-trust and least-privilege models.
- Collaboration & Training
- Collaborate with IT, DevOps, and cloud teams to integrate security best practices.
- Conduct training and awareness sessions for infrastructure teams.
Required Skills & Qualifications
- Bachelor’s degree in Computer Science, Information Security, or related field.
- 6–8 years of experience in IT infrastructure and security operations.
- Strong knowledge of:
- Network protocols, firewalls, and VPNs
- Cloud platforms (AWS, Azure, GCP) and their security services
- Linux/Windows server hardening and endpoint security
- SIEM, vulnerability scanning, and EDR solutions
- Familiarity with scripting languages (PowerShell, Python, Bash) for automation.
- Understanding of regulatory compliance (ISO, SOC 2, GDPR, HIPAA).
Preferred Certifications
- CISSP, CISM, or CISA
- CompTIA Security+ or CySA+
- Microsoft Certified: Security Operations Analyst / Azure Security Engineer
- AWS Certified Security – Specialty
- CCSP (Certified Cloud Security Professional)
Soft Skills
- Strong analytical and problem-solving ability.
- Excellent communication and documentation skills.
- Ability to work collaboratively across technical and business teams.
- Attention to detail and a proactive security mindset.