Senior Information Security Engineer

Senior Information Security EngineerEquinix is the world’s digital infrastructure company, operating 245+ data centers across the globe and providing interconnections to all the key clouds and networks. Businesses need one place to simplify and bring together fragmented, complex infrastructure that spans private and public cloud environments. Our global platform allows customers to place infrastructure wherever they need it and connect it to everything they need to succeed. At Equinix, we help the world’s digital leaders scale with agility, speed the launch of digital services, deliver world-class experiences, and transform people’s lives. Our culture is based on collaboration and the growth and development of our teams.   We hire hardworking people who thrive on solving challenging problems and give them opportunities to hone new skills, and try new approaches, as we grow our product portfolio with new software and network architecture solutions. We embrace diversity in thought and contribution and are committed to providing an equitable work environment. that is foundational to our core values as a company and is vital to our success  Job SummaryThe Senior Information Security Engineer works within a multi-disciplinary team of engineers and architects to design, build and maintain integrated security solutions and patterns for the enterprise. This engineering position will focus on Information Security technologies, participating Operating Systems (OS), Business applications, Cyber threat detection, and limited incident response activities as required. This includes all security hardware, and software systems. In addition to a focus on Information Security, this role will work closely with users, network, system infrastructure, and application teams to provide guidance and best of practice solutions, to work on problems of a diverse scope where analysis of a situation requires evaluation and collaboration , and sound judgment. Success for this role requires that you are:Familiar with information security concepts, standards, trends, and best practicesDriven to learn new things; excited about challenges and finding solutionsA strong builder mentality with a drive to “see things through”Able to organize one’s work, and help others organize theirsAble to thrive in fast-paced, high-stress situationsAble to interpret and apply security principles and standards to designs, configurations and policiesAble to communicate technical concepts and details to peers and management clearly and conciselyAble to demonstrate good judgment concerning the confidentiality, availability, and integrity of informationResponsibilities:Implement and maintain key security tools such as endpoint security, web and email security, threat intelligence, and identity and access managementServe as Primary or Secondary Technology resource for InfoSec EngineeringUtilize logs and analysis tools to assist in Cyber threat detection and specify detection queries for SIEM consumption Work with IT and other InfoSec team members to identify requirements, build and deploy technologies, and maintain their operational readiness, as per the Information Security System Development Lifecycle:Plan – Scope work, capture requirements, assess impactsDesign – Architecture, Diagramming, DocumentationDeploy – Timely, complete, and with high qualityOperate – Upgrades and lifecycle management of technologies, policies, configurations. Monitor logs and perform operational assurance measures with occasional on-call duties. Troubleshoot complex issues for the assigned technology stacks.Optimize – Continuous improvement of all technology investmentsParticipate in special projects and performs other duties as assignedDesign, build, document, and maintain efficient, reusable, and reliable code for Security Orchestration, Automation, and Response (SOAR) policy as code, and Security Operations and Analytics platformsModel the Equinix culture and valuesKnowledge / Skills / Abilities:Hands-on experience with Windows or Linux OS, networks, and enterprise security stacks (EDR, DLP, Proxies, API Gateways, Firewalls, CIEM, IAM, Email Gateways, encryption technology, key management, PKI, IDS/IPS, SIEM etc)Strong working knowledge of how to implement secure systems using public cloud services (any of the major cloud providers)Functional understanding of TCP/IP, UDP, load balancers, ports, practical network operations and troubleshootingAbility to detect errors in logic, process, data, and system structureExperience building automations and services in Python, Powershell, bash, etc.Experience with troubleshooting the behavior of web UIs, web services, APIsKnowledge of Authentication and Authorization technologies and methods (SAML, HMAC, OAuth etc)Experience with continuous integration and deployment automation/orchestration tools.Broad knowledge of information technology and security controls in various application and infrastructure platforms including network (physical, virtual, internal, cloud), system platforms, storage, directory services, and end user computingFunctional understanding of TCP/IP, UDP, load balancers, ports, practical network operations and troubleshootingFamiliarity with “infrastructure as code” and “configuration as code”, and tools that facilitate this architectureMultiple year experience in one or more of the following technologies: Data Protection Identity and Access ManagementCloud SecurityEndpoint Protection Preferred experience with the transformation of traditional data center security measures into industry adopted cloud technologies including Amazon, Azure, Google, etc. Demonstrated ability to work within globally dispersed and cross-functional teamsEssential Requirements5+ years’ engineering experience in building technology solutions with an Information Security focusHands-on experience with Windows or Linux OS, networks, and enterprise security stacks (EDR, DLP, Proxies, API Gateways, Firewalls, CIEM, IAM, Email Gateways, encryption technology, key management, PKI, IDS/IPS, SIEM etc)Demonstrated experience of scripting and programming in any scripting language (Python, Perl, Shell + AWK, TCL, etc.) and communication protocols (REST, SNMP, SOAP, etc.) Strong working knowledge of how to implement secure systems using public cloud services (any of the major cloud providers) Equinix is an Equal Employment Opportunity and, in the U.S., an Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to unlawful consideration of race, color, religion, creed, national or ethnic origin, ancestry, place of birth, citizenship, sex, pregnancy / childbirth or related medical conditions, sexual orientation, gender identity or expression, marital or domestic partnership status, age, veteran or military status, physical or mental disability, medical condition, genetic information, political / organizational affiliation, status as a victim or family member of a victim of crime or abuse, or any other status protected by applicable law.