IT Infrastructure Security Engineer

#### Position Summary:

Smart Start is seeking a highly skilled Infrastructure Security Engineer to manage and enhance the security and reliability of our on-premises IT infrastructure. This role focuses on structured patching, vulnerability remediation, and secure configuration practices across production systems. The successful candidate will operate as a bridge between Infrastructure and Information Security, ensuring consistent remediation, system stability, and audit readiness while supporting business-critical operations.

#### Essential Duties and Responsibilities:

Patching & Vulnerability Remediation

• Lead patch management efforts for servers and applications, including testing and phased rollouts
• Execute vulnerability remediation based on scan results and security guidance
• Validate remediation actions to ensure effectiveness and system stability
• Maintain patch schedules, maintenance windows, and remediation tracking
• Ensure all remediation work is documented with audit-ready evidence

Infrastructure Operations & Reliability

• Support and maintain server infrastructure across production environments
• Troubleshoot issues resulting from patching or configuration changes
• Perform root cause analysis and implement corrective actions
• Participate in change management processes to minimize disruption

Security Hardening & Coordination

• Implement secure configuration baselines across infrastructure systems
• Ensure logging and monitoring are properly configured
• Act as liaison between Infrastructure and Security teams
• Translate security findings into actionable remediation tasks

Cybersecurity Response (Infrastructure-Focused)

• Assist with containment, remediation, and recovery during security incidents
• Support evidence collection including logs and system artifacts
• Participate in post-incident reviews and corrective actions

Compliance, Audit Readiness & Documentation

• Maintain documentation of system configurations and remediation activities
• Support closure of audit findings and security assessments
• Ensure consistency and repeatability in remediation processes
• Participate in on-call rotations and after-hours maintenance
• Any other duties assigned by the IT Director

#### Position Requirements

• Minimum of 3–6 years’ experience in systems administration within enterprise environments
• Strong experience in Windows Server administration and patch management
• Proven experience managing structured patching across production systems
• Experience with vulnerability management and remediation workflows
• Strong troubleshooting and root cause analysis skills
• Experience with ticketing and change management systems
• Strong documentation and communication skills
• Ability to manage multiple priorities in a fast-paced environment
• Strong analytical and problem-solving skills
• Ability to work both independently and as part of a team
• Must be able to work varying hours and travel when required
• Must be able to lift servers, network, and storage equipment up to 50 lbs

#### Preferred Skills & Certifications

• Strong interest in infrastructure security and system hardening, with a proactive approach to reducing risk in production environments
• Experience working with security teams to remediate vulnerabilities and implement secure configurations
• Hands-on experience with vulnerability scanning and remediation tools (e.g., Nessus, Qualys, Rapid7)
• Experience patching and maintaining Linux systems (e.g., Red Hat or similar) in addition to Windows environments
• Experience managing and patching systems within enterprise virtualized environments, including coordination of host and guest updates
• Scripting experience (PowerShell, Bash, or similar) to automate patching, remediation, and operational tasks
• Familiarity with security frameworks and best practices (CIS Benchmarks, NIST, ISO 27001) applied in real environments
• Experience supporting audit or compliance efforts, including remediation tracking and evidence collection
• Demonstrated ability to balance system stability with security requirements in production systems
• Microsoft Certified: Windows Server Hybrid Administrator Associate (or equivalent experience)
• CompTIA Security+ or equivalent foundational security certification
• Red Hat Certified System Administrator (RHCSA) or similar Linux certification
• ITIL Foundation (for change management and operational processes)

#### Why Join Smart Start

Smart Start provides a competitive salary, health, and dental insurance plans, employer-sponsored retirement plan (401K), paid time off, and a challenging work environment.

If you are ready to be a part of a hard-working IT team in a challenging position, are prepared to develop new skills, have a sense of humor and desire to have fun, please submit your resume.

No recruiting agencies. Applicants only.

Job Type: Full-time