Key skills
AWSDockerIAMGitSaaSCI/CDLeadershipRisk ManagementCommunication
About this role
CxAlloy is a small, technical SaaS company seeking a curious and organized Associate Infrastructure & Security Engineer to enhance their cloud operations and security program. The role involves supporting AWS infrastructure, day-to-day security operations, and compliance activities while collaborating closely with senior leadership and engineering teams.
Responsibilities:
- Assist with AWS administration, monitoring, Linux troubleshooting, networking, DNS, TLS certificates, and backups; help document and standardize environments; participate in operational support and incident response
- Support vulnerability management and remediation tracking; review alerts from security and monitoring tools; assist with endpoint security and device management; participate in access reviews and IAM processes; contribute to logging, monitoring, and security documentation
- Support SOC 2 Type II and ISO 27001 activities; maintain policies, procedures, evidence, and control documentation; participate in risk management and vendor reviews; assist with audit preparation and evidence collection; help improve operational repeatability
- Partner with developers on secure deployment practices; assist with CI/CD and operational tooling; support containerized workflows and validation of infrastructure and security changes
Requirements:
- Basic Linux and networking
- Familiarity with cloud concepts (AWS preferred)
- Awareness of security fundamentals
- Ability to follow runbooks and use ticketing/documentation tools
- Clear written and verbal communication with engineering and leadership
- Professional process and security documentation
- Comfortable diagnosing issues, learning unfamiliar systems independently, and escalating with context when appropriate
- Collaborative, reliable, and comfortable in a small, fast-moving team
- Receptive to feedback and mentorship
- Organized, detail-oriented, and willing to work across infrastructure, security, and compliance rather than a single narrow lane
- Bachelor's degree in computer science, information systems, cybersecurity or equivalent experience
- 5-10 years in infrastructure, security operations, IT operations, or compliance-adjacent technical roles
- Exposure to scripting, Docker, Git, or monitoring/logging platforms