Information Security Engineer

Main Details

We are seeking a skilled Information Security Engineer to lead the implementation and continuous improvement of our company's security posture. This role focuses on deploying secure infrastructure, managing risks, and ensuring compliance across all endpoints, networks, and user access systems, within a Zero Trust security model.

What You Will Do

• Maintain and enhance overall information security infrastructure
• Implement and manage vulnerability management processes: scanning, risk assessment, remediation
• Configure and operate SIEM systems (e.g., ELK/Elastic, Graylog, Splunk), including alerting and event correlation
• Manage SSO and identity lifecycle (Okta, OneLogin), enforce 2FA/MFA, secure credential management
• Apply and monitor security policies across company systems
• Develop and enforce access control policies (RBAC, ACL) aligned with Zero Trust principles
• Administer MDM platforms (Intune, JAMF, Google MDM): device compliance, encryption, remote access control
• Enforce endpoint and server hardening across MacOS, Linux, and Windows
• Deploy and manage encryption tools: BitLocker, LUKS, FileVault, TPM, Secure Boot, HSM/YubiKey
• Support VPN infrastructure and remote access (OpenVPN, WireGuard, IPSec, pfSense/OPNsense, etc.)
• Oversee PKI infrastructure: certificate issuance, SSL/TLS automation (Let's Encrypt/ACME)
• Lead periodic security audits, incident investigations, and remediation strategies
• Conduct internal security awareness training
• Collaborate with department leads to build a security-first culture

Expertise Required

• Strong understanding of information security concepts and Zero Trust model
• Hands-on experience with identity and access management tools and protocols (SAML, OAuth2)
• Experience with security monitoring tools and SIEM platforms
• Familiarity with vulnerability scanning tools (Nessus, Qualys, OpenVAS)
• Proficiency in MDM configuration and device compliance enforcement
• Solid scripting ability (Bash, PowerShell, Python) for security automation tasks
• Strong documentation skills for policy and system configuration
• Advantageous: experience in VPN and PKI administration

Benefits

• Competitive compensation
• Unlimited holiday's and benefit package
• Flexible remote/hybrid setup
• Annual training and certification support
• Clear growth trajectory within security and infrastructure domains
• Culture focused on autonomy, trust, and continuous improvement

Next Step

If you’re ready to architect and enforce enterprise-grade security, apply now and join a company where your work has direct impact.