Information Security Platform Engineer

• 4+ years of hands-on experience in one or more of the following:
• o Information Security Engineering
• o Incident Response / Security Operations
• o IT Infrastructure Engineering with strong security tooling exposure
• Practical experience implementing and supporting security controls and platforms such as:
• o Endpoint protection and EDR
• o Email security
• o Network security controls
• o Vulnerability management
• o Secure cloud configurations
• Strong troubleshooting and problem-solving skills with the ability to work independently.
• Experience collaborating with cross-functional technical teams in a remote environment.
• Excellent written and verbal communication skills, with the ability to communicate clearly to both technical and non-technical stakeholders.
• Familiarity with at least one industry regulation or framework (e.g., NIST, CIS, SANS, MITRE ATT&CK, HIPAA, HITRUST).

• Build, configure, and provide Tier 2 support for security tools, including but not limited to:
• o SIEM
• o IDS/IPS
• o Web Application Firewall (WAF)
• o Next-Generation Antivirus / Endpoint Protection
• o Email security gateways
• o Vulnerability management platforms
• o Asset discovery and inventory tools
• o Cloud security controls Operationalize existing security tools through:
• o Control validation and tuning o Enablement of new features
• o Platform upgrades aligned to security objectives
• Partner with Information Security and IT teams to improve Security Operations Center (SOC) efficiency and effectiveness.
• Support investigation of escalated security incidents in collaboration with the SOC, including:
• o Identifying unauthorized activity
• o Assisting with containment and remediation
• o Contributing technical findings and documentation to incident reports
• Perform root-cause analysis related to security tool outages or performance issues and provide remediation recommendations.
• Assist with preparation and responses for external audits, penetration tests, and vulnerability assessments.
• Produce clear technical documentation and knowledge transfer for internal teams.

• Required Experience & Skills
• 4+ years of hands-on experience in one or more of the following:
• o Information Security Engineering
• o Incident Response / Security Operations
• o IT Infrastructure Engineering with strong security tooling exposure
• Practical experience implementing and supporting security controls and platforms such as:
• o Endpoint protection and EDR
• o Email security
• o Network security controls
• o Vulnerability management
• o Secure cloud configurations Strong troubleshooting and problem-solving skills with the ability to work independently.
• Experience collaborating with cross-functional technical teams in a remote environment.
• Excellent written and verbal communication skills, with the ability to communicate clearly to both technical and non-technical stakeholders.
• Familiarity with at least one industry regulation or framework (e.g., NIST, CIS, SANS, MITRE ATT&CK, HIPAA, HITRUST).

• Hands-on experience with cloud and cloud security platforms (AWS, Azure, or GCP).
• Prior experience operationalizing or maturing SOC tools.
• Security certifications such as CISSP, CISM, CEH, or CompTIA Security+ are a plus
• Deliverables & Outcomes
• The consulting firm should expect the contractor to:
• Maintain stable and effective operation of assigned security tools Improve reliability and detection quality of existing security platforms
• Contribute to faster and more effective incident response
• Provide clean documentation and knowledge transfer to internal teams by the end of the engagement

• This role is intended to augment an existing Information Security team and does not include people-management responsibilities.
• Pricing should reflect a senior-level individual contributor with strong security engineering hands-on expertise.
• The contractor must be able to perform all responsibilities with or without reasonable accommodation.

This is a remote position.