Senior Infrastructure Systems and Cyber Security Engineer

About The Position

Requirements

• Excellent communication and interpersonal skills.
• Minimum 5-years’ experience with endpoint security solutions (Crowdstrike)
• Minimum 5-years’ experience with scripting and automation (e.g., PowerShell).
• Minimum 5-years’ experience with Windows system Administration, imaging, deployment, and management tools (Microsoft Intune).
• 5+ years of experience in cybersecurity roles, with a strong background in IAM, Network Security, Risk & Compliance, Vulnerability Management, Application Security, and Security Operations.
• Hands-on experience with security technologies such as firewalls, IDS/IPS, SIEM, IAM platforms, EDR solutions, and vulnerability management tools.
• Proficient in conducting security assessments, risk management and incident response.
• Proficiency with Active Directory, Group Policy, and network configurations.
• Strong documentation and organizational skills.
• Strong understanding of hardware components, peripheral devices, and drivers.
• Windows operating systems (Windows 10, Windows 11) and related technologies.
• This role may require occasional evening or weekend work to perform maintenance or resolve critical issues.
• On-call support may be required.
• Bachelor’s degree in computer science, Information Technology, or a related field.
• Proficiency in operating systems (Linux/Windows), network protocols, virtualization, cloud providers (AWS, Azure, GCP), and security tools (SIEM, firewalls).
• Common certifications include CISSP, CCNP, MCITP, or vendor-specific cloud/security certifications.
• Analytical thinking, problem-solving, and communication skills to explain technical issues to non-technical stakeholders.
• Comfortable in a fast-paced environment handling multiple tasks and projects
• Able to organize and manage large amounts of files, tasks, schedules, and information.
• Self-directed and able to work without supervision.
• Energetic and eager to tackle new projects and ideas.
• Must be a team player
• Comfortable interacting with individuals at all levels of the organization and across multiple sites
• Standard office environment

Responsibilities

• Secure Infrastructure Design: Building and maintaining secure, scalable networks, servers, and data centers across on-premises and cloud environments.
• Security Implementation: Developing and installing firewalls, data encryption, and intrusion detection systems to protect sensitive data.
• Vulnerability Management: Identifying security flaws, conducting risk assessments, and applying patches to mitigate threats.
• System Optimization: Tuning systems for performance, ensuring high availability, and automating routine tasks.
• Compliance and Monitoring: Ensuring adherence to security policies and compliance standards (e.g., ISO 27001, HIPAA) and monitoring logs for potential security incidents.
• Systems Engineering: Provide support for infrastructure, cloud servers and end points issues escalated from Tier 1 helpdesk team. Implement and support new infrastructure applications, solutions including but not limited to CrowdStrike, ticketing, patch management systems/ Diagnose and resolve complex hardware and software problems, in relation to desktops, laptops, servers and printers.
• System Maintenance and Optimization: Ensure the stability, security, and performance of Windows desktop systems. Apply patches, updates, and configuration changes to maintain compliance and security standards. Partner with internal teams to develop a sustainable patching methodology Work with cybersecurity team and Sr. Director IT to resolve vulnerabilities using Vero Biotech’s vulnerability and patch/endpoint management software.
• Incident and Problem Management: Manage and resolve high-priority incidents and problems within SLAs. Document resolutions and create knowledge base articles to improve future support processes. Conduct post-incident reviews to identify improvements.
• Collaboration and Project Support: Work with cross-functional IT teams on projects, providing expertise on Windows desktop environments. Assist in the design and implementation of new technologies and solutions. Participate in planning and execution of system upgrades and migrations.
• User Support and Training: Provide guidance and training to Tier 1 staff. Assist end-users with complex technical issues and provide advanced troubleshooting.
• Documentation and Reporting: Maintain accurate and up-to-date documentation of system configurations, procedures, and support issues. Generate reports on system performance, incident resolution, and other metrics as required.
• Security Architecture & Engineering Leadership Architect, design, and implement advanced security capabilities across cloud, on-prem, and hybrid systems Serve as the top engineering authority for Zero Trust architecture, cloud security architecture, detection engineering, and data protection strategies Lead technical evaluations of new security technologies, tools, and platforms. Collaborate with enterprise architecture to integrate security into major programs and cloud transformations.
• Detection Engineering & Threat Defense Build and optimize SIEM, EDR, NDR, and cloud detection logic, rules, and automated responses. Lead advanced threat-hunting activities, identifying novel attack patterns and evolving adversary behaviors. Develops Cybersecurity framework for Vero Biotech, develop cybersecurity policies (DR, BCP etc.) Create detection frameworks aligned to MITRE ATT&CK, CIS Controls, and PCI-DSS requirements. Engineer telemetry pipelines, data collection standards, and monitoring strategies.
• Incident Response & Cyber Crisis Leadership Serve as the highest-level escalation point for major cyber incidents. Direct containment, forensics, eradication, and recovery operations. Conduct root cause analysis and design systemic improvements to prevent recurrence. Mentor and guide junior responders in advanced IR methodologies.
• Risk Reduction & Vulnerability Management Lead enterprise vulnerability management strategy, including prioritization models and compensating controls. Design hardened configurations, baselines, and secure CI/CD practices for cloud and infrastructure. Partner with product, cloud, and infrastructure teams to eliminate systemic risks. Ensure continuous measurement and reporting of vulnerability and risk posture
• Cloud Security Engineering Architect security controls and guardrails across Azure, and other cloud platforms Design secure patterns for identity, networking, encryption, key management, and workload protection