Infrastructure Security Engineer Controls & Vaulting

  • Posted 9 hours ago | Updated 9 hours ago

Overview

Remote
Hybrid
Contract - W2
Contract - 3 Month(s)

Skills

Python
Amazon Web Services
Logging
Operations
DEV OPS
Terraform
Best Practices
Database
Scripting
Kafka
Continuous Integration/Delivery
GCP
Shell Scripting
Infrastructure Design
CISSP
Audit
Cloud Security
Risk Assessments
Incident Response
Identity and Access Management
AWS Certified
Encryption
Access Control
Security Policies
Audit Security

Job Details

Job Title: Infrastructure Security Engineer Controls & Vaulting

Location: Remote (US)

Job Summary:

We are looking for a skilled Infrastructure Security Engineer specializing in implementing and managing security controls focused on Identity and Access Management (IAM), Database security, Key Management Services (KMS), Kafka security, and Vaulting solutions. The ideal candidate will be responsible for securing critical infrastructure components, ensuring compliance with security policies, and automating security operations.

Key Responsibilities:

  • Design, implement, and maintain security controls across infrastructure components including IAM policies, database access, KMS key management, and Kafka security configurations.

  • Manage and automate secrets management using tools like HashiCorp Vault or equivalent vaulting solutions.

  • Collaborate with cross-functional teams to ensure secure configuration and access control for databases and messaging platforms.

  • Monitor and audit security controls to detect and remediate vulnerabilities and compliance issues.

  • Develop and maintain infrastructure-as-code (IaC) templates or automation scripts to enforce security best practices.

  • Support incident response efforts related to infrastructure security breaches or vulnerabilities.

  • Participate in security reviews, risk assessments, and compliance audits to align infrastructure with organizational and regulatory standards.

  • Provide guidance and mentorship to engineering teams on secure infrastructure design and vaulting best practices.

Required Qualifications:

  • 2-5 years of experience in infrastructure security, cloud security, or related fields.

  • Hands-on experience with IAM implementations and access management in cloud or on-prem environments.

  • Knowledge of database security principles and configurations.

  • Experience with Key Management Services (KMS) and encryption key lifecycle management.

  • Familiarity with messaging systems like Kafka and their security models.

  • Proficiency with secret management tools such as HashiCorp Vault or alternatives.

  • Strong scripting or automation skills (Python, Bash, Terraform, etc.).

  • Understanding of security controls, compliance frameworks, and operational security best practices.

Preferred Qualifications:

  • Experience with cloud platforms (AWS, Azure, Google Cloud Platform) and their native security services.

  • Certifications such as CISSP, AWS Certified Security Specialty, or Certified Cloud Security Professional (CCSP).

  • Familiarity with logging, monitoring, and alerting tools related to security.

  • Experience working in agile or DevOps environments integrating security into CI/CD pipelines.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.