Job Specifications
Information Security Engineer
We are in need of a InfoSec Engineer to join our global client on a direct hire basis. In this role you will be responsible for leading and executing information security operations across multiple locations, with a primary focus on incident response, security technologies, change management, and continuous improvement. This role safeguards the organization’s digital assets by designing, implementing, and maintaining key processes and technologies such as intrusion detection, malware protection, zero-day threat mitigation, firewalls, internet filtering, and SIEM tools.
Location: San Francisco, CA (Hybrid – 3 days on-site)
This job expects to pay about $125,000 - $155,000 per year plus benefits
What You Will Do:
Security Operations & Incident Response
Assist with 24x7 security operations, ensuring continuous availability and performance of critical security systems.
Support aspects of incident response, including detection, escalation, containment, service recovery, and root cause analysis.
Tune and configure IDS/IPS, antivirus, firewall, vulnerability management, and application assessment tools to ensure optimal protection and performance.
Implement and maintain automated monitoring and logging processes; conduct regular log reviews and threat detection.
Manage escalations from the Security Operations Center (SOC) and drive timely resolution of critical issues.
Identify, track, and communicate key risks and security concerns using a metrics-based approach.
Continuously improve incident response processes, system documentation, monitoring tools, and recovery procedures.
Security Technologies & Compliance
Administer and support a range of security tools and technologies including SIEM, intrusion detection/prevention systems, malware protection, encryption, and content filtering.
Ensure compliance with internal information security policies and external regulatory frameworks (e.g., NIST, ISO).
Develop, maintain, and enforce security documentation, workflows, and access control procedures.
Monitor compliance across systems; identify gaps and coordinate remediation with stakeholders.
Governance, Metrics & Strategic Planning
Develop and maintain security metrics to inform leadership and guide strategic decisions.
Provide input into the organization’s overall information security strategy to ensure alignment with business goals.
Contribute to the continuous improvement of documentation, monitoring capabilities, automation, and recovery plans.
Vendor & Partner Oversight
Manage relationships with third-party security vendors and service providers, ensuring contractual obligations, service quality, and compliance are met.
Oversee change management activities related to externally managed security platforms and services.
Collaborate with managed service providers (MSPs) to drive operational improvements and automation.
Additional Responsibilities
Partner with cross-functional teams to support the deployment and maintenance of security tools and services.
Oversee daily security operations and escalate critical issues as appropriate.
Support additional information security projects or initiatives as assigned.
What You Bring to The Table:
Bachelor’s Degree in relevant field or other relevant professional experience
4-5+ years of experience in enterprise information security operations, with hands-on expertise in IDS/IPS, SIEM, malware protection, firewalls, and incident response
Strong understanding of compliance and risk frameworks: NIST, ISO 27001
Demonstrated experience with security monitoring, threat detection, and forensic analysis.
Proven ability to develop, execute, and mature operational security processes and documentation
Skilled in managing security vendors and third-party services, including contract and performance oversight
Excellent written and verbal communication skills, with the ability to present technical concepts clearly to both technical and non-technical stakeholders
Strong attention to detail
Proficient in Microsoft Office, web-based collaboration tools, and security platforms
CISSP, CISM, CISA, GCIH, CEH or other related information security certifications preferred
Experience with Rapid7, Zscaler, and Fortinet firewalls is a plus
Experience working in a Microsoft environment is a plus
Irvine Technology Corporation (ITC) is a leading provider of technology and staffing solutions for IT, Security, Engineering, and Interactive Design disciplines servicing startups to enterprise clients, nationally. We pride ourselves in the ability to introduce you to our intimate network of business and technology leaders – bringing you opportunity coupled with personal growth, and professional development! Join us. Let us catapult your career!
Irvine Technology Corporation provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In additi