Information Security Engineer 3 - Contingent

Position: Information Security Analyst 3 - Contingent
Location: Charlotte, North Carolina
Duration: Contract (18-24 months)
Job ID: 176787
Pay range: 55-60$/hr on w2

Job Description:
Must-Haves / Core Skillset:
Micro-Segmentation and Zero Trust:

• Hands-on experience with workload-level segmentation and lateral-movement prevention.
• Demonstrated ability to move from visibility to enforcement safely in production environments.

• Strong understanding of VEN agents, SaaS policy engines, enforcement modes, and migration considerations.
• Comfort working directly with vendor engineering teams during live operational issues.

• Strong proficiency with SIEM tools (especially time-based analysis, distributions, and baselining).
• Ability to reason about event ingestion pipelines and end-to-end telemetry delivery.

• Solid Linux and Windows server fundamentals.
• Understanding of application communication patterns, service dependencies, and network flows.

• Experience with production change management and incident response.
• Ability to halt or delay enforcement when telemetry or validation is insufficient.

• Ability to clearly communicate technical risk, impact, and recommendations to engineers, leadership, and vendors.
• Comfortable translating telemetry and failures into executive-level summaries.

• Advance the enterprise Zero Trust micro-segmentation program, delivering safe, auditable, and scalable traffic visibility and policy enforcement across hybrid environments (on-prem and cloud). This role ensures operational reliability, policy confidence, and vendor accountability for Illumio SaaS-based segmentation at enterprise scale.

• Operate and mature the Illumio micro-segmentation platform (SaaS with limited on-prem presence), including VEN agent lifecycle management across Windows, Linux, and future AIX workloads.
• Design, validate, and deploy least-privilege segmentation policies, ensuring policy changes can be safely verified via traffic telemetry before and after enforcement.
• Analyze traffic flow telemetry and delay metrics across ingestion pipelines and SIEM tooling to validate platform health, identify regressions, and distinguish policy issues from platform or vendor constraints.
• Lead incident response and vendor escalation with Illumio engineering, including capacity constraints, SaaS scaling events, maintenance windows, and potential data integrity risks.
• Partner with Network Engineering, NOC/NMC, application teams, and platform owners to coordinate production changes, policy deployments, and change-management activities.
• Maintain and evolve security standards, baselines, and deployment guidance for enterprise micro-segmentation, aligning to internal governance, audit, and risk requirements.
• Support large-scale onboarding and migration efforts, including SaaS cutovers, phased policy enforcement, and certification of segmentation controls for high-risk and payment applications.

• CISSP, CCSP, or comparable security architecture certification
• Zero Trust-focused training or vendor micro-segmentation certifications

• Familiarity with Azure and enterprise IAM concepts (SaaS authentication, RBAC, API access)

• Experience integrating segmentation telemetry into SIEM, data lakes, or automation pipelines
• Exposure to policy certification, audit traceability, or regulatory reporting.

• Micro-Segmentation
• Network Macro-Segmentation

• Consult on or participate in moderately complex initiatives and deliverables within Information Security Engineering and contribute to large-scale planning related to Information Security Engineering deliverables.
• Review and analyze moderately complex Information Security Engineering challenges that require an in-depth evaluation of variable factors.
• Contribute to the resolution of moderately complex issues and consult with others to meet Information Security Engineering deliverables while leveraging solid understanding of the function, policies, procedures, and compliance requirements.
• Collaborate with client personnel in Information Security Engineering.

• 4 plus years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work or consulting experience, training, military experience, education.

• Micro-segmentation and Zero Trust
• Deep understanding of workload-level segmentation, policy modeling, and lateral-movement prevention.
• Practical experience enforcing policy safely in production, not just designing it.
• Location - Las Colinas, (PREFERRED) Brevard, Charlotte - Chandler
• Conversion - NO
• Spotlight - 5.8
• INTV - PREFER IN- PERSON FOR LOCAL TO LAS COLINAS - TEAMS - 1 PANEL

Pay Range: $XXX - $XXX

The specific compensation for this position will be determined by a number of factors, including the scope, complexity and location of the role as well as the cost of labor in the market; the skills, education, training, credentials and experience of the candidate; and other conditions of employment. Our full-time consultants have access to benefits including medical, dental, vision and 401K contributions as well as any other PTO, sick leave, and other benefits mandated by appliable state or localities where you reside or work.