We are seeking a highly motivated professional to fill this dynamic role, which offers the opportunity to make a significant impact within our organization. The successful candidate will be responsible for [insert responsibilities here] while collaborating closely with cross-functional teams to achieve key business objectives. Additionally, they will be expected to [insert requirements here], demonstrating a strong commitment to excellence and continuous improvement. This position demands exceptional communication skills, a proactive mindset, and the ability to thrive in a fast-paced environment. The ideal candidate will possess [insert qualifications here] and a proven track record of success in [relevant field or industry].
We seek an Infrastructure Security Engineer capable of establishing and sustaining a robust security framework within a dynamic, high-pressure financial landscape—all while ensuring minimal disruption to business operations.
At the core of our security framework, this position safeguards our cloud environments, networks, endpoints, databases, code repositories, data stores, and mission-critical systems. Your responsibilities will involve architecting, optimizing, troubleshooting, and perpetually enhancing the security measures that protect Quidax as it scales.
If you thrive in meticulous environments, demonstrate strong process orientation, exhibit logical thinking, and possess a genuine enthusiasm for cybersecurity technologies, you will be an excellent fit.
What You’ll Be Owning
Specialist will be responsible for configuring, reviewing, and optimizing security solutions to ensure robust protection and operational efficiency. This involves implementing and maintaining security measures, conducting thorough assessments of existing systems, and enhancing configurations to mitigate vulnerabilities. Additionally, the role focuses on continuous improvement through performance evaluations and strategic adjustments to strengthen the overall security posture.
Within 30 days, the Infrastructure Security Engineer will be responsible for configuring a diverse range of security solutions, such as network firewalls, Endpoint Detection & Response (EDR) platforms, Web Application Firewalls (WAS), Cloud Native Application Protection Platforms (KNAPP), Security Information and Event Management (SIEM) systems, Security Orchestration, Automation, and Response (SOAR) solutions, Identity Provider (IDP) platforms, and Threat Management solutions, among others.
Within a 90-day timeframe, the Infrastructure Security Engineer is expected to conduct thorough reviews and implement optimizations for multiple security solutions, ensuring compliance with established policies.
Within a six-month timeframe, the Infrastructure Security Engineer is responsible for evaluating existing security baselines and verifying that all security and technology solutions comply with these baselines across cloud, endpoint, and network environments.
Conduct comprehensive audits and compliance reviews to ensure adherence to regulatory standards and internal policies, identifying potential risks and areas for improvement while providing actionable recommendations to mitigate compliance gaps and enhance operational integrity.
Within a 90-day timeframe, the Infrastructure Security Engineer is expected to develop a comprehensive grasp of our current infrastructure security systems and associated technical controls, including their operational mechanisms, effectiveness, and any potential deficiencies, enabling them to contribute valuable insights during audits and compliance evaluations.
Within a six-month timeframe, the Infrastructure Security Engineer is expected to seamlessly integrate into the Information Systems Management framework and take on active responsibilities.
Within a six-month period, the Infrastructure Security Engineer must collaborate with the Governance, Risk, & Compliance team to promptly and efficiently resolve audit findings.
Overseeing and enhancing access control systems to ensure robust security measures and streamlined operations.
Within the first 30 days, the Infrastructure Security Engineer must familiarize themselves with our Access Control Policies, Processes, and Technologies.
Within 30 days, the Infrastructure Security Engineer is expected to assume full responsibility for access provisioning, decommissioning processes, and the ongoing optimization of access management systems.
Within 90 days, the Infrastructure Security Engineer will conduct a comprehensive review of the existing access management system, identify any deficiencies, and submit actionable recommendations for improvement.
The role involves overseeing and implementing a comprehensive Vulnerability Management program to identify, assess, evaluate, prioritize, and remediate security vulnerabilities across the organization’s systems, networks, and applications. Responsibilities include conducting regular vulnerability scans, analyzing results to determine risk levels, and collaborating with IT and security teams to address identified gaps. The position requires expertise in vulnerability assessment tools, strong analytical skills, and a thorough understanding of security frameworks and compliance standards. Additionally, the individual must possess excellent communication abilities to report findings and recommend mitigation strategies to stakeholders at all levels.
Within a 60-day timeframe, develop and implement a standardized vulnerability management process that spans both infrastructure and endpoint systems.
Within a 90-day timeframe, establish and enforce explicit remediation service-level agreements (SLAs) for all critical and high-severity vulnerabilities.
Within the initial six-month period, achieve a 40% reduction in monthly recurring remediated vulnerabilities.
Deliver precise, implementable recommendations for addressing vulnerabilities to Engineering and DevOps teams.
Monitor, detect, and respond to security threats in real-time to safeguard organizational assets through proactive monitoring, threat detection, and incident response initiatives.
Within a 30-day timeframe, you will thoroughly analyze and gain a comprehensive understanding of the current SIEM architecture.
Within the initial 90-day period, conduct a comprehensive assessment to pinpoint and record all potential enhancements in our security event monitoring framework.
Within a six-month timeframe, commence the execution of enhancements across log aggregation, security event analysis, and alerting systems.
Within a three-month timeframe, develop and implement innovative playbooks for automated incident response within the SOAR platform, ensuring comprehensive documentation of all recommendations.
Within a one-year timeframe, develop and deploy automated incident response playbooks as part of the SOAR strategy.
Enhance detection coverage and automate incident response processes across cloud, endpoint, and network environments through continuous improvement and orchestration.
Ensure the integrity, confidentiality, and availability of cloud infrastructure and network systems by implementing robust security measures and protocols. Develop, enforce, and monitor security policies, access controls, and encryption standards to safeguard sensitive data and mitigate potential threats. Conduct regular security audits, vulnerability assessments, and penetration testing to identify and address risks proactively. Collaborate with cross-functional teams to integrate security best practices into system design and deployment processes, ensuring compliance with industry regulations and organizational policies. Stay current with emerging cybersecurity trends, threats, and technologies to continuously enhance the security posture of cloud and network environments.
Within the first month, thoroughly evaluate and comprehend the services and configurations deployed across various cloud platforms.
Within a 60-day timeframe, you will be responsible for implementing and managing security policies and services across multiple cloud platforms.
Within a 60-day timeframe, collaborate closely with designated Engineering teams to integrate security measures into the foundational design and configuration phases of infrastructure development.
Security Operations & Automation require a proactive approach to safeguarding organizational assets through continuous monitoring, threat detection, and automated response mechanisms. Candidates must possess expertise in security frameworks, incident response protocols, and automation tools such as SIEM, SOAR, and scripting languages like Python or PowerShell. Responsibilities include designing and implementing automated security workflows, analyzing security alerts to identify potential threats, and collaborating with cross-functional teams to enhance overall security posture. Strong problem-solving skills, attention to detail, and the ability to work under pressure in fast-paced environments are essential. Familiarity with cloud security, compliance standards, and risk assessment methodologies is highly desirable.
Within a 30-day timeframe, conduct a thorough evaluation of the current automation systems, perform hands-on testing, and systematically assess opportunities for refinement and enhancement.
Within 180 days, our objective is to automate a minimum of 30% of repetitive security operations tasks, thereby enhancing operational efficiency and reducing manual workload.
Regularly assess and deploy innovative solutions designed to enhance detection capabilities, strengthen prevention measures, and optimize operational efficiency.
To enhance security policies and enforcement mechanisms, implement ongoing refinements and optimizations.
Cross-functional collaboration is essential to bolster security initiatives across various departments, necessitating joint efforts with IT, engineering, and other relevant teams to align on security protocols and mitigate risks effectively. This role requires strong interpersonal and communication skills to bridge gaps between technical and non-technical stakeholders, ensuring consistent security awareness and adherence to best practices throughout the organization.
Collaborate effectively with Engineering, DevOps, and Product teams to integrate security measures seamlessly into established workflows.
Offer practical direction throughout system design phases, deployment processes, and incident response scenarios.
Demonstrate leadership in cultivating a robust security culture throughout the organization by fostering proactive measures and encouraging widespread adoption of best practices.
You will address the most significant challenges inherent to this role, leveraging your expertise to navigate complex scenarios and deliver strategic solutions. Key responsibilities include identifying critical issues, implementing innovative approaches, and driving measurable outcomes to enhance operational efficiency and organizational success. This position demands a proactive mindset, adaptability to dynamic environments, and a commitment to overcoming obstacles through analytical rigor and collaborative effort.
The primary challenges you will be tasked with addressing include:
Analyzing the integration of diverse vendor technologies within a dynamic environment while concurrently executing essential security operation tasks represents a key responsibility.
Managing the dual responsibilities of maintaining operational security protocols while advancing long-term architectural enhancements forms the core of this role.
Ensuring security is incorporated into our engineering processes through close collaboration with the pertinent Engineering teams.
Facilitating the integration of security measures across teams primarily focused on rapid product delivery presents a key challenge in aligning security objectives with development priorities.
Securing a rapidly expanding crypto infrastructure while maintaining seamless product delivery presents a significant challenge.
Reducing alert fatigue and enhancing genuine threat detection capabilities represent critical priorities. This involves implementing strategic measures to streamline monitoring processes while ensuring no critical threats are overlooked.
Monitoring emerging threats within the cloud, blockchain, and global security domains.
What We’re Looking For
Must-haves:
You have successfully implemented cloud-native environments in large-scale, production-level deployments.
You will independently diagnose issues, develop solutions, and implement fixes all the way through to deployment without requiring supervision.
Professional candidates will demonstrate extensive practical expertise in security information and event management systems, endpoint detection and response solutions, firewall technologies, web application firewalls, vulnerability management platforms, as well as a deep understanding of networking fundamentals such as routing protocols, network address translation, network segmentation, and access control mechanisms. Additionally, expertise in cloud security domains—including identity and access management, logging and monitoring strategies, and implementation of secure configurations—is essential for success in this role.
You possess the ability to analyze intricate systems, deconstructing them into their fundamental components, and comprehending their construction, failure mechanisms, and the processes required for effective repair.
Proactive and detail-oriented professionals are encouraged to apply, as the role demands a keen eye for accuracy and a forward-thinking approach to tasks.
You will partner with engineers, offering guidance while shaping decisions, rather than assuming an authoritative “security police” role.
You possess a keen interest in Cybersecurity and a strong enthusiasm for staying abreast of emerging Technologies.
You demonstrate a dedication to ongoing growth and actively explore emerging vulnerabilities, attack vectors, and security solutions.
Nice-to-haves include proficiency in industry-specific software, prior experience in a similar role, additional certifications beyond basic requirements, familiarity with emerging technologies, and a demonstrated ability to thrive in collaborative environments. Candidates with these qualifications may be given preference during the selection process, though they are not mandatory for consideration.
Proficiency in deploying security measures and fostering secure workflows within fintech, blockchain, or financial infrastructure environments is essential.
Proficiency in scripting and workflow automation is required, utilizing technologies such as Python, Ansible, and Terraform.
Proficiency in deploying Develops methodologies and tools, such as access control systems, key management solutions, and policy enforcement mechanisms, is required.
Demonstrates a solid grasp of fundamental blockchain security principles and methodologies.
Individuals should possess a comprehensive grasp of artificial intelligence, including its inherent risks, associated security challenges, and effective mitigation strategies.
Certified professionals such as those holding CCSP, CEA, CCNP, PCN SE, Security+, or AWS certifications are preferred.
Qualifications
BA/BSc/HND , Professional Certificate
