Job description

Our client, a rapidly expanding tech firm, is actively seeking a highly experienced Lead Information Security Engineer to join their fully remote workforce. This pivotal role will lead the design, implementation, and maintenance of robust security infrastructure, protecting the company's critical assets and data from sophisticated threats. As the Lead Information Security Engineer, you will take ownership of developing and executing comprehensive security strategies. This includes architecting secure networks, implementing advanced threat detection and prevention systems, and managing security incident response processes. You will lead a team of security professionals, providing technical guidance and mentorship. Your responsibilities will extend to conducting risk assessments, developing security policies, and ensuring compliance with industry regulations. This role demands a forward-thinking approach to cybersecurity, anticipating future threats and designing resilient solutions. Key responsibilities include: Leading the architecture, design, and implementation of enterprise-wide information security solutions. Developing and managing security policies, standards, and procedures to protect company assets. Overseeing the deployment and configuration of security technologies such as firewalls, IDS/IPS, SIEM, endpoint protection, and encryption solutions. Leading incident response activities, including detection, containment, eradication, and recovery. Conducting regular risk assessments and vulnerability analyses to identify and prioritize security gaps. Mentoring and guiding junior security engineers and analysts, fostering a culture of continuous learning. Collaborating with IT and development teams to ensure security is embedded throughout the software development lifecycle (DevSecOps). Staying current with emerging security threats, vulnerabilities, and technologies, and adapting security strategies accordingly. Ensuring compliance with relevant regulatory requirements (e.g., GDPR, CCPA, HIPAA). Developing and managing security awareness training programs for all employees. Qualifications: Bachelor's or Master's degree in Computer Science, Information Security, or a related field, or equivalent practical experience. Minimum of 8 years of progressive experience in information security engineering and architecture. Proven experience in leading security projects and managing security teams. Deep technical expertise in network security, cloud security (AWS, Azure, GCP), identity and access management (IAM), and cryptography. Hands-on experience with SIEM, EDR, vulnerability management, and incident response platforms. Strong understanding of security frameworks and best practices (NIST, ISO 27001). Excellent leadership, communication, and interpersonal skills, with the ability to effectively communicate technical concepts to both technical and non-technical audiences. Relevant security certifications such as CISSP, CISM, or CCIE Security are highly desirable. This is a fully remote opportunity, allowing you to work from anywhere in the US. Join our client and play a critical role in shaping their cybersecurity future.

Requirements