Senior Infrastructure Security Engineer
STACK Infrastructure
On-site
Denver, Colorado, United States
$148,800 - $160,000 USD yearly
Cyber Security Engineer
SR INFRASTRUCTURE SECURITY ENGINEER
THE COMPANY:
STACK INFRASTRUCTURE (STACK) provides digital infrastructure to scale the world’s most innovative companies. We are an award-winning industry leader in building, owning, and operating highly efficient, cost-effective wholesale, colocation, and cloud data centers. Each of our national facilities meets or exceeds the highest industry standards in all operational categories of availability, security, connectivity, and physical resilience. STACK offers the scale and geographic reach that rapidly growing hyperscale and enterprise companies need. The world runs on data. Data runs on STACK.
THE POSITION:
At STACK Infrastructure, the Sr Infrastructure Security Engineer is a key member of the team responsible for multiple aspects of IT cybersecurity and support of Operational Technology cybersecurity needs. The Sr Infrastructure Security Engineer position requires expertise in support of running a highly available, secure, and scalable environment. The position will require the development and maintenance of our datacenter environments. Technologies will include, but not be limited to firewalls, IDS/IPS, switches, routers, VPNs, edge security architectures, Windows and Linux servers/appliances, archiving and backup, encryption, business continuity, security risk assessment, and support of Operational Technology applications. The position works under minimal direction with considerable latitude as part of a global security team where the use of critical analysis, initiative, and independent judgment are highly desirable. The position will be required to utilize project management and time management skills to ensure timely delivery of business and departmental objectives.
RESPONSIBILITIES:
Responsibilities may include:
- Planning, implementing, managing, monitoring, and upgrading security measures for the protection of STACK Infrastructure’s data, systems, and networks.
- Monitor and triage critical IT infrastructure for irregular behavior/weaknesses and respond with robust countermeasures to prevent future incidents.
- Zero Trust Implementation: Champion a Zero Trust security model across STACK’s network and datacenter environments. Architect solutions that enforce least-privilege access, continuous verification, and micro-segmentation of services – ensuring no implicit trust at any layer.
- Install and maintain security tools that monitor critical infrastructure (systems and networks) for security breaches and intrusions.
- Leading or collaborating with peers on project management to accomplish the goals set by leadership.
- Providing SME-level advice and expertise regarding various technologies and enable leadership to drive security objectives and improve STACK’s overall security posture.
- Triage and investigate security and user high-risk events.
- Lead/participate in incident response and investigation of IT/OT security detections and incidents.
- Infrastructure and Network OS security hardening
- Monitoring and optimization of security tools
- DNS management
- Penetration testing remediation
- Policy enforcement
- Attack surface management and threat hunting
- Participation in an on-call rotation with your team to ensure 24/7/365 coverage.
- Work closely with cross-functional teams, including IT Support, IT Infrastructure, and Critical Operations teams, to ensure systems and networks are secure, compliant with applicable regulations, and protected against unauthorized access
- Serve as a point of escalation and support for Information Technology and international IT administrators security needs.
- Other duties as assigned
THE DETAILS:
Location: Denver, CO
Travel: up to 25%
Compensation: from $148,800 to $160,000 base salary + Bonus.
Must be eligible to work in the United States.
Must pass comprehensive background screening.
Must be willing to work flexible hours across time zones.
Must be willing to participate in an on-call rotation to ensure 24/7/365 coverage.
Travel: up to 25%
Compensation: from $148,800 to $160,000 base salary + Bonus.
Must be eligible to work in the United States.
Must pass comprehensive background screening.
Must be willing to work flexible hours across time zones.
Must be willing to participate in an on-call rotation to ensure 24/7/365 coverage.
MUST-HAVE QUALIFICATIONS:
- 10-15 years hands-on network security engineering experience, specializing in Firewalls and Infrastructure security.
- Strong Palo Alto and Panorama experience. Other enterprise firewall experience accepted but Palo Alto is preferred.
- Exposure and experience with International and multi-country IT security programs.
- Certifications in one or more of the following disciplines/providers preferred: CISSP, CEH, GIAC (GSEC, GCIH, etc.), ISACA, Other Networking/Network Security related certifications.
- Experience and familiarity with cyber incident response, SIEM, vulnerability scanning tools, security operations workflow, IPS, Browser security, Cloud security, and Endpoint Security.
- Familiarity with security-related compliance such as NIST CSF, CIS Critical Security Controls, ISO 27001/27002 and regulations such as GDPR, HIPAA, SOC1/2, and PCI-DSS.
- Strong understanding of MITRE ATT&CK framework.
- An analytical security-focused mind, outstanding problem-solving skills, and strong threat assessment and mitigation skills.
- Strong communication and interpersonal skills, with the ability to effectively communicate complex security concepts to technical and non-technical stakeholders. Exceptional documentation and report generation skills.
- Great awareness of cybersecurity trends, emerging threats, and techniques.
THIS MIGHT BE RIGHT FOR YOU IF:
- You’re at the senior level of the technical path in Networking or Network Security, with a strong understanding of server infrastructures.
- You have a strong interest or specialization in enterprise datacenter technologies.
- You’re passionate about IT and Cybersecurity.
- You’re persuasive and clear, blending analytics with experience in decision-making.
- You’re highly adaptable in an ever-changing environment and enjoy change and growth.
- You’re naturally curious and driven toward continual improvement. While you celebrate your successes, you take time to review and analyze campaigns for future learning.
WHY STACK Infrastructure?
- We offer a competitive compensation package with strong benefits, including medical, dental, and vision insurance, a 401K program and flexible spending accounts
- We foster a culture of appreciation, including STACK Assembly recognition.
- Fun is part of our DNA, with events, game nights, happy hours, and barbecues.
- We’re growing – this is a great time to join and make an impact!
STACK is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity and expression, age, national origin, mental or physical disability, genetic information, veteran status, or any other status protected by federal, state, or local law.
Note to external agencies: we are not accepting any blind submissions or resumes/cvs from recruitment agencies. Any candidates sent to stack infrastructure will not be accepted or considered as a submission without a signed agreement in place.
Note to external agencies: we are not accepting any blind submissions or resumes/cvs from recruitment agencies. Any candidates sent to stack infrastructure will not be accepted or considered as a submission without a signed agreement in place.