Cybersecurity Engineer, Global

About Vantage Data Centers

Vantage Data Centers powers, cools, protects and connects the technology of the world’s well-known hyperscalers, cloud providers and large enterprises. Developing and operating across North America, EMEA and Asia Pacific, Vantage has evolved data center design in innovative ways to deliver dramatic gains in reliability, efficiency and sustainability in flexible environments that can scale as quickly as the market demands.

Security Department 

The Vantage Cybersecurity Department for Vantage Data Centers is very hands-on. In most cases, we specify, purchase, configure, and maintain all networking and server hardware. We also work closely with partner Value Added Resellers (VARs) to learn about the latest technological changes so that we can make informed purchase decisions. We are always looking for ways to strike the best balance between technology, performance, and cost. Vantage Security Department also participates in designing each of our new data center building’s security infrastructure. If you like getting your hands dirty and helping to design, build and maintain Security infrastructure in a modern data center, then come work at Vantage.  We’re expanding with many new builds!

Essential Job Functions

• Keep up to date with the latest cybersecurity threats, vulnerabilities, and industry trends.

• Manage and support multiple cybersecurity initiatives Vantage Azure environment

• Adhere to KPIs

• Administration of Azure AD, Office 365, Intune, and other aspects of Azure

• Design, manage and test data backup and disaster recovery

• Experience with scripting and automation of administrative tasks

• Design, develop, and implement highly available, multi-region solutions within Microsoft Azure

• Analyze existing operational standards, processes, and/or governance to identify and implement improvements

• Manage security and access controls of cloud-based solutions

• Help develop and implement best practices and document Procedures

• Interface with internal technology and systems teams, network teams, and other stakeholders augments as needed

• Develop and implement policy-driven data and asset protection best practices

• Oversee automation and AI driven improvements on the Azure environment

• Drive system requirements, system specifications, input/output processes and working parameters by using security engineering best practices

• Lead the deployment of new modules, upgrades and fixes

• Leverage templates and tools to define security processes and services and ensure practices and processes are standardized and repeatable

• Design and improve the Azure environment supporting the principal of least privilege and RBAC

• Automate and streamline low-value activities in Azure

• Support the IAM Program using Azure Tools and solutions

• Perform benchmarking and trend analysis and create action plans to implement

Duties

• Review the current Azure Architecture and identity improvements

• Prioritize and manage improvements and create action plans and expected deliverables or outcomes

• Document all critical evolutions, lessons learned, and find possible efficiency gains in processes

• Support the improvement actions found from the Microsoft security score card

• Take a project based approach to hardening the Azure environment

• Review cloud apps and manage Cloud App Security

• Support, and monitor vendor activities ensuring work activities meet scope of work and follow established procedures

• Support Copilot projects

• Respond as-needed when system maintenance or complications arise

• Other duties may be assigned from time-to-time by management

Job Requirements

• Minimum of 5 years experience lead initiatives

• Minimum of 7 years experience in IT, Cybersecurity, or a Bachelor of Science degree and 3 years experience

• Experience with one or more: M365 Security, SIEM/SOAR, Baselines, Project Rollouts, and Change Management.

• Deep understanding of M365 products such as Teams, EXO, SPO, Power Platform, Office.

• 4+ years in cloud infrastructure/M365 technologies, information technology (IT) consulting/support, software support, technology solutions, architecture, and/or consulting, OR equivalent experience.

• Technical Certification in Cloud (e.g., Azure, AI, security certifications).

• Data Center experience is strongly preferred, but not required

• Strong skills with VMware, MS Servers and Networking preferred

• Travel required is expected to be less than 10%

Essential Job Functions

• Keep up to date with the latest cybersecurity threats, vulnerabilities, and industry trends.

• Manage, support and maintain VDC’s vulnerability management program

• Adhere to KPIs and SLAs

• Administration of the Tenable suite

• Proactively detect and secure VDC’s environment against both insider and outsider threats

• Experience with scripting and automation of administrative tasks

• Leverage Tenable to identify weaknesses in the internal and internet-facing systems by detecting vulnerabilities, missing patches, and misconfigurations

• Analyze existing operational standards, processes, and/or governance to identify and implement improvements

• Manage security and access controls of cloud-based solutions

• Help develop and implement best practices and document Procedures

• Interface with internal technology and systems teams, network teams, and other stakeholders augments as needed

• Develop and implement policy-driven data and asset protection best practices

• Oversee automation and AI driven improvements on vulnerability Management

• Drive system requirements, system specifications, input/output processes and working parameters by using security engineering best practices

• Lead the deployment of new modules, upgrades and fixes

• Leverage templates and tools to define security processes and services and ensure practices and processes are standardized and repeatable

• Work with system owners to drive remediation plans, communicate information to stake holders through dashboards and reporting, and review exception requests for threat and risk

• Automate and streamline low-value activities and notification and escalation processes

• Perform benchmarking and trend analysis and create action plans to implement

Essential Job FunctionsRisk Management & ISMS Support:

• Manage the ISMS risk register, ensuring that risks are identified, assessed, and mitigated effectively.

• Provide oversight on cyber risks and the implementation of appropriate controls.

• Support the ISMS program by ensuring compliance with relevant standards and conducting periodic gap assessments.

Cybersecurity Oversight:

• Manage, support, and maintain Vantage’s security environment.

• Act as a contact for end users and individuals reporting cybersecurity issues, questions, or concerns.

• Support AI Initiatives and governance.

GRC Program & Project Management:

• Manage GRC programs and projects as assigned, ensuring that objectives are met and risks are mitigated.

• Maintain and manage policies, procedures, standards, and the Confluence site for all documentation, ensuring accuracy and conducting annual reviews.

Audit Support & Compliance:

• Support internal and external audits by providing necessary documentation and responding to audit inquiries.

• Perform periodic gap assessments to validate compliance on an ongoing basis.

Incident Response & Triage:

• Support triage and investigation of security alerts to identify potential threats and take appropriate action

• Participate and support the Business Impact Analysis (BIA) and Crisis Management Framework (CMF) Documentation

Documentation & Communication:

• Create documentation and presentations for leadership and stakeholders on relevant topics and issues.

Professional Development:

• Engage in ongoing training and professional development to stay current with the latest cybersecurity threats, vulnerabilities, trends and technologies.

Additional Duties:

• Handle additional duties as assigned by Manager.

Job Requirements

Education:

• 7 or more years of IT or Cybersecurity Experience or Bachelor’s degree in Computer Science, Information Technology, Cybersecurity plus 3 years or more of equivalent years of experience.

• Minimum of 3 years leading cybersecurity projects or deployments

• CISA, CISM, ISO 27001 Lead implementer, 27001 lead auditor certifications preferred but not required.

Experience:

• Minimum of 3 years leading cybersecurity projects or deployments

• Demonstrated experience in enterprise risk management with strong understanding of cyber threats, vulnerabilities, probability, and impact.

• Experience with IT governance, risk, and compliance management in a complex global environment.

• Experience with scripting and automation (e.g., Python, PowerShell), preferred.

• Experience with vulnerability management and end point security

• Deep understanding of M365 products such as Teams, EXO, SPO, Power Platform, Office. 

• Data Center experience is strongly preferred, but not required 

Skills:

• Ability to excel in a fast paced and rapidly changing environment.

• Familiarity with regulatory requirements and frameworks (e.g., GDPR, COBIT, NIST).

• Understanding of cloud security principles and technologies (e.g., AWS, Azure, Google Cloud)

• Familiarity with ISMS and security frameworks, particularly ISO 27001/27002 and NIST RMF.

• Strong understanding of fundamental information security concepts and technology.

• Proficiency in written and oral communications across multiple stakeholder groups ranging from junior staff to senior executives.

• Strong background in process development, documentation, and continuous improvement.

• Experience developing Standard Operating Procedures (SOPs), job aids, and hands-on training materials.

• Preferred Tooling Experience:

  • Tenable

  • ServiceNow

  • Elastic SIEM

  • Swimlane/Turbine

  • Microsoft 365, Defender, Purview, Entra

  • Confluence

  • SharePoint

  • ClickUp or Jira

• Travel required is expected to be up to 15% but may increase over time as the business evolves.

We operate with No Ego and No Arrogance. We work to build each other up and support one another, appreciating each other’s strengths and respecting each other’s weaknesses. We find joy in our work and each other, actively seeking opportunities to inject fun into what we do. Our hard and efficient work is rewarded with an above market total compensation package. We offer a comprehensive suite of health and welfare, retirement, and paid leave benefits exceeding local expectations.

Throughout the year, the advantage of being part of the Vantage team is evident with an array of benefits, recognition, training and development, and the knowledge that your contribution adds value to the company and our community.

Don't meet all the requirements? Please still apply if you think you are the right person for the position. We are always keen to speak to people who connect with our mission and values.

Vantage Data Centers is an Equal Opportunity Employer

Vantage Data Centers does not accept unsolicited resumes from search firm agencies. Fees will not be paid in the event a candidate submitted by a recruiter without an agreement in place is hired; such resumes will be deemed the sole property of Vantage Data Centers.