Information Security Engineer (Fulltime role)

Client is seeking an Information Security Engineer to strengthen security compliance, close audit gaps, and improve the security posture of our infrastructure and Azure cloud environments. This role works closely with Infrastructure and Cloud Operations teams to align systems with NIST 800-171 and other enterprise security frameworks.

Responsibilities

• Lead NIST 800-171 control alignment, tracking, and remediation.

• Partner with Internal Audit and Security teams to resolve audit findings.

• Manage and optimize Microsoft Defender for Cloud across Azure.

• Identify and remediate vulnerabilities across Windows and Linux systems.

• Develop and maintain Linux patch management and compliance reporting.

• Automate security and compliance checks using scripting tools.

• Report security risk and compliance metrics to leadership.

Requirements

• 4 7 years of experience in Information Security, Infrastructure, or Cloud Operations.

• Hands-on experience with Defender for Cloud / Azure Security Center or similar tools.

• Working knowledge of NIST 800-171, NIST CSF, or ISO 27001.

• Experience with patching, vulnerability management, and remediation.

• Proficiency in PowerShell, Python, or Bash.

• Knowledge of Active Directory, Azure AD, and network security fundamentals.

Preferred

• Experience with KnowBe4, Fortify, or vulnerability scanning tools.

• Exposure to Azure DevOps, IaC, or configuration-as-code.

• Security or cloud certifications (AZ-500, Security+, CISSP).