Apothecarie
Infrastructure Security Engineer
Apothecarie, Salt Lake City, Utah, United States, 84193
We Are Bootstrap Entrepreneurs Building MarTech Solutions. We're a group of entrepreneurs, innovators, and self-starters building cutting-edge MarTech solutions from the ground up. We know that success comes from bold ideas and those who execute to turn them into reality.
We're looking for All-in, All-the-time, Passionate, and Hands-On Infrastructure Security Engineer to manage our infrastructure and lead our cyber security efforts. This role is ideal for a problem solver and collaborator who thrives in a fast-paced environment, with experience in managing complex infrastructure projects and a strong understanding of cybersecurity principles and best practices.
Responsibilities:
Threat Detection and Response: Monitor security systems, analyze logs and alerts, investigate security incidents, and take immediate action to contain and mitigate threats.Vulnerability Assessment and Management: Conduct regular vulnerability scans, identify and assess potential weaknesses in our systems and networks, and implement appropriate security controls to address them.Security Infrastructure Management: Deploy, configure, and maintain security tools such as firewalls, intrusion detection systems (IDS), intrusion prevention systems (IPS), antivirus software, and endpoint protection solutions.Security Awareness and Training: Develop and deliver security awareness programs to employees, educating them on cybersecurity best practices and potential threats.Incident Response Planning: Participate in the development and maintenance of incident response plans, ensuring that we have a well-defined process for handling security breaches.Security Policy Development and Enforcement: Assist in the creation and enforcement of security policies and procedures to protect our organization's assets.Compliance Management: Ensure compliance with relevant industry regulations and security standards (e.g., GDPR, SOC2, PCI DSS).Security Research and Analysis: Stay up-to-date with the latest cybersecurity threats and vulnerabilities, and research new security technologies to enhance our defenses.Manage Multi-Cloud and On-Premises Infrastructure: Oversee and secure infrastructure across AWS, Azure, GCP, self-hosted environments, and VMware. Implement best practices for cloud and on-premises security configurations.Threat Detection and Response: Monitor security systems and logs to detect and respond to security incidents. Lead incident response efforts to mitigate threats promptly.Vulnerability Assessment and Management: Conduct regular vulnerability scans and penetration tests. Assess and prioritize vulnerabilities, implementing remediation plans.Compliance and Regulatory Adherence: Ensure compliance with industry regulations such as GDPR, SOC 2, PCI DSS. Lead SOC 2 implementation and maintain compliance documentation.Qualifications:
Education:
Bachelor's degree in Computer Science, Information Security, or a related field.Experience:
3+ years of relevant experience in infrastructure management, including hands-on experience with security tools and technologies.Industry Experience:
Relevant experience working with MarTech, Big Data, and Digital Marketing software platforms, advertising technologies, and large-scale advertising tracking solutions.Technical Skills:
Strong understanding of network security, operating system security, and application security. Deep understanding of both on-prem and cloud computing.Soft Skills:
Excellent communication, problem-solving, and analytical skills. Ability to work both independently and collaboratively. Able to convey strategy clearly and precisely with business leaders and understand business needs and concerns.
We're looking for All-in, All-the-time, Passionate, and Hands-On Infrastructure Security Engineer to manage our infrastructure and lead our cyber security efforts. This role is ideal for a problem solver and collaborator who thrives in a fast-paced environment, with experience in managing complex infrastructure projects and a strong understanding of cybersecurity principles and best practices.
Responsibilities:
Threat Detection and Response: Monitor security systems, analyze logs and alerts, investigate security incidents, and take immediate action to contain and mitigate threats.Vulnerability Assessment and Management: Conduct regular vulnerability scans, identify and assess potential weaknesses in our systems and networks, and implement appropriate security controls to address them.Security Infrastructure Management: Deploy, configure, and maintain security tools such as firewalls, intrusion detection systems (IDS), intrusion prevention systems (IPS), antivirus software, and endpoint protection solutions.Security Awareness and Training: Develop and deliver security awareness programs to employees, educating them on cybersecurity best practices and potential threats.Incident Response Planning: Participate in the development and maintenance of incident response plans, ensuring that we have a well-defined process for handling security breaches.Security Policy Development and Enforcement: Assist in the creation and enforcement of security policies and procedures to protect our organization's assets.Compliance Management: Ensure compliance with relevant industry regulations and security standards (e.g., GDPR, SOC2, PCI DSS).Security Research and Analysis: Stay up-to-date with the latest cybersecurity threats and vulnerabilities, and research new security technologies to enhance our defenses.Manage Multi-Cloud and On-Premises Infrastructure: Oversee and secure infrastructure across AWS, Azure, GCP, self-hosted environments, and VMware. Implement best practices for cloud and on-premises security configurations.Threat Detection and Response: Monitor security systems and logs to detect and respond to security incidents. Lead incident response efforts to mitigate threats promptly.Vulnerability Assessment and Management: Conduct regular vulnerability scans and penetration tests. Assess and prioritize vulnerabilities, implementing remediation plans.Compliance and Regulatory Adherence: Ensure compliance with industry regulations such as GDPR, SOC 2, PCI DSS. Lead SOC 2 implementation and maintain compliance documentation.Qualifications:
Education:
Bachelor's degree in Computer Science, Information Security, or a related field.Experience:
3+ years of relevant experience in infrastructure management, including hands-on experience with security tools and technologies.Industry Experience:
Relevant experience working with MarTech, Big Data, and Digital Marketing software platforms, advertising technologies, and large-scale advertising tracking solutions.Technical Skills:
Strong understanding of network security, operating system security, and application security. Deep understanding of both on-prem and cloud computing.Soft Skills:
Excellent communication, problem-solving, and analytical skills. Ability to work both independently and collaboratively. Able to convey strategy clearly and precisely with business leaders and understand business needs and concerns.