Key skills
PythonBashPowerShellAWSAzureSaaSCommunicationCloud Security
About this role
One Identity is an award-winning security software provider offering solutions to solve IT security challenges. The Information Security Engineer will focus on cloud and infrastructure security, working closely with engineering and IT teams to design and implement security controls while ensuring compliance with regulatory requirements.
Responsibilities:
- Design, implement, and operate cloud and infrastructure security controls across Azure‑first environments, with supporting coverage in AWS
- Implement and maintain security monitoring, detection, and response capabilities, leveraging SIEM, cloud‑native tooling, and endpoint/network telemetry
- Participate in security incident response activities, including investigation, containment, remediation, and post‑incident analysis
- Collaborate with engineering and platform teams to securely design and deploy SaaS and on‑prem solutions, including infrastructure hardening and secure configuration
- Develop, tune, and maintain security alerts and detections to improve signal quality and reduce noise
- Support vulnerability management activities, including infrastructure scanning, risk triage, remediation tracking, and validation
- Partner with compliance and GRC functions to support SOC 1, SOC 2, ISO 27001, 27017, and 27018 requirements through effective technical controls and evidence generation
- Implement and operate identity, access, and secrets management controls for cloud and infrastructure environments
- Help define and continuously improve security runbooks, operational procedures, and response playbooks
- Evaluate, implement, and support security tooling related to cloud security posture management, logging, endpoint protection, and threat detection
- Stay current on emerging threats, attacker techniques, and cloud security trends, applying this knowledge to improve defenses
- Provide mentorship and technical guidance to less‑experienced security engineers as appropriate, without direct people‑management responsibility
Requirements:
- Bachelor's degree in Information Technology, Cybersecurity, Computer Science, or a related technical field, or equivalent practical experience
- 6–8+ years of experience in information security, security engineering, or cloud/infrastructure security roles
- Hands‑on experience securing Azure cloud environments, including networking, identity, logging, and workload protection
- Experience with security monitoring, detection, and response, including SIEM platforms, log analysis, and incident investigation
- Strong understanding of infrastructure security concepts, including network segmentation, hardening, patching, and secure configuration
- Working knowledge of AWS security concepts and controls
- Experience supporting regulated environments and audits (SOC, ISO, or similar)
- Comfort working in Linux and Windows environments, with exposure to scripting or automation (e.g., PowerShell, Bash, Python)
- Strong analytical and problem‑solving skills, with the ability to translate security risks into practical remediation actions
- Excellent communication skills and the ability to work effectively with engineering, IT, and compliance stakeholders