Information Security Engineer

EBSCO Industries, Inc. (EBSCO), headquartered in Birmingham, Alabama, is one of the largest privately held and family-owned companies in the United States. EBSCO was founded in 1944 by an entrepreneur who was passionate about honoring our commitments to our customers, rejecting the status quo, and seeking to continuously improve our team. We continue to operate that way today, with a passion for our people and our businesses succeeding together. EBSCO has grown and evolved over time into a holding company with a global portfolio comprised of dozens of entities in over 15 separate industries/markets, including Information services, outdoor products, real estate, manufacturing and distribution, and insurance services. We provide valuable support services to our subsidiaries to support their growth. We hire passionate people, driven to grow, because we know the success of EBSCO depends on the long-term success of our businesses and our teams.

Job Summary

We’re looking for a junior to intermediate information security engineer to help strengthen our AWS infrastructure and protect our digital assets from evolving threats.This is a hands-on role for someone with a solid foundation in cloud security who’s ready to take ownership of core responsibilities, including access controls, threat detection, and bot mitigation. You’ll work across teams to ensure our systems are secure, compliant, and built to scale

Why join us

 

- Work in a security-first, cloud-native environment
- Make a meaningful impact on real-world systems
- Flexible work culture
- Competitive pay
- Opportunities to grow

 

 

Job Responsibilities

 

- Implement and maintain security tools across AWS, including IAM, WAF, GuardDuty, Security Hub, and Route 53.
- Identify and block malicious bots and automated abuse using WAF rules, traffic monitoring, and reCAPTCHA.
- Manage identity and access controls using Keycloak (SSO) and AWS IAM with MFA and role-based access.
- Respond to security alerts and investigate suspicious activity using AWS logs and dashboards.
- Help automate routine security tasks using scripting (Python, Bash, or Lambda).
- Support compliance with PCI DSS and other standards using AWS-native tools.

 

Job Requirements

 

- 2+ years of experience in cybersecurity or cloud infrastructure, ideally with AWS
- Familiarity with AWS services like EC2, S3, Lambda, CloudFront, and Route 53
- Basic experience with Keycloak or similar SSO systems
- Comfort with scripting and security automation
- Understanding of compliance frameworks including SOC 2, ISO 27001, NIST, and PCI DS   Nice to have: - AWS certification (Cloud Practitioner, Security Specialty, or Architect Associate)
- Experience mitigating bot traffic and API abuse
- Exposure to Terraform, CloudFormation, or CI/CD pipelines
- Interest in DNS security and modern access control strategies

 

Essential Job Function

 

We are an equal opportunity employer and comply with all applicable federal, state, and local fair employment practices laws. We strictly prohibit and do not tolerate discrimination against employees, applicants, or any other covered persons because of race, color, sex, pregnancy status, age, national origin or ancestry, ethnicity, religion, creed, sexual orientation, gender identity, status as a veteran, and basis of disability or any other federal, state or local protected class. This policy applies to all terms and conditions of employment, including, but not limited to, hiring, training, promotion, discipline, compensation, benefits, and termination of employment.

We comply with the Americans with Disabilities Act (ADA), as amended by the ADA Amendments Act, and all applicable state or local law.