Senior Infrastructure Security Lead

Job Description

Stefanini Group is looking for a Senior Infrastructure Security Lead to join our Cyber Security Services Cluster within the Infrastructure Services (INFRA) Division.

As a Senior Infrastructure Security Lead, reporting to the client CISO, you will be instrumental in advancing the cybersecurity services and platforms, ensuring they meet the highest standards of governance and effectiveness. You will combine service governance with hands-on security engineering across NDR/MDR, the Microsoft 365 Security stack, and Application Security/DevSecOps, while coordinating with SOC and client technical teams. We are seeking a dedicated professional who is passionate about delivering measurable security outcomes in a dynamic environment.

Job responsibilities:

• Identify, validate, and remediate security issues, misconfigurations, and vulnerabilities across on‑prem, cloud, and M365 environments.
• Engineer, implement, and continuously improve security controls and hardening for infrastructure and applications.
• Configure, tune, and manage NDR/MDR/XDR and the Microsoft 365 Security stack; maintain policies, detections, and automations.
• Lead AppSec/DevSecOps integrations (e.g., SAST/DAST/SCA/secret scanning) into CI/CD and support secure SDLC practices.
• Conduct security evaluations of infrastructure and applications and drive remediation with accountable teams.
• Create and maintain runbooks, SOPs, and hardening baselines aligned to CIS/NIST.
• Evaluate and pilot new security technologies; manage security vendors/MSSPs, SLAs, and roadmaps.
• Collaborate with SOC, IT, and product teams to implement controls and fixes; ensure clean handovers from build to run.
  
  

Job Requirements

Key requirements:

• Demonstrated experience in a comparable position is required.
• 5+ years of experience in systems engineering (Windows/Linux, networking, cloud/M365), ideally with security-focused responsibilities.
• Solid experience identifying and mitigating infrastructure and application vulnerabilities, misconfigurations, and exposures; familiarity with secure configuration baselines.
• Hands-on programming/scripting (e.g., PowerShell, Python, Bash) and DevSecOps practices (CI/CD integration, SAST/DAST/SCA, secrets management; IaC basics a plus).
• Proven ability to design, implement, and improve security measures across infrastructure and applications (hardening, access control, logging/monitoring).
• Excellent written and verbal communication skills and the ability to synthesize complex technical topics into clear, actionable guidance.
• Capability to build effective working relationships with key stakeholders (IT, SOC, development, business, and vendors) and influence without authority.
• Strong presentation and collaboration skills.
• Excellent written and verbal communication skills in English.
• French language skills would be considered a plus.
• Ability to manage multiple priorities and meet deadlines.
• High degree of initiative, dependability and ability to work with little supervision.
• Relevant certifications in Cyber Security (e.g., CISSP, CISM, etc.) are preferred.
• Very proficient in MS tools: Excel, PowerPoint, visio, pj.
  
  

This job description outlines the general nature and level of work performed by employees within this classification and is not intended to be a comprehensive inventory of all duties and responsibilities. Additionally, the responsibility to possess the necessary employment documents for this country rests with the candidate.

Diversity & Inclusion

Here at the Stefanini Group, we value diversity and equity, regardless of race, sexual orientation, disability, age, ancestry, religion, gender, or nationality. We understand and encourage the importance of being yourself and invest our efforts in maintaining an environment where it is safe to express oneself!

About Us

Global Tech Consulting Company All in One.

Stefanini is a Brazilian multinational company with 38 years of experience and presence in 41 countries. With more than 35,000 employees, we co-create solutions for a better future, driving digital transformation with a focus on real results.

We operate in an integrated way through 7 specialized business units: Consulting (Technology and Business Agility), Analytics & AI, Banking & Payments, Cybersecurity, Manufacturing 4.0, and Digital Marketing. We are a group that breathes collaboration and offers a dynamic environment where you will learn by doing, grow alongside the team, and have space to contribute with ideas and projects.