Cybersecurity Engineer, Global

About Vantage Data Centers

Vantage Data Centers powers, cools, protects and connects the technology of the world’s well-known hyperscalers, cloud providers and large enterprises. Developing and operating across North America, EMEA and Asia Pacific, Vantage has evolved data center design in innovative ways to deliver dramatic gains in reliability, efficiency and sustainability in flexible environments that can scale as quickly as the market demands.

Security Department

The Vantage Cybersecurity Department for Vantage Data Centers is very hands-on. In most cases, we specify, purchase, configure, and maintain all networking and server hardware. We also work closely with partner Value Added Resellers (VARs) to learn about the latest technological changes so that we can make informed purchase decisions. We are always looking for ways to strike the best balance between technology, performance, and cost. Vantage Security Department also participates in designing each of our new data center building’s security infrastructure. If you like getting your hands dirty and helping to design, build and maintain Security infrastructure in a modern data center, then come work at Vantage. We’re expanding with many new builds!

Essential Job Functions

Keep up to date with the latest cybersecurity threats, vulnerabilities, and industry trends.

Manage and support multiple cybersecurity initiatives Vantage Azure environment

Adhere to KPIs

Administration of Azure AD, Office 365, Intune, and other aspects of Azure

Design, manage and test data backup and disaster recovery

Experience with scripting and automation of administrative tasks

Design, develop, and implement highly available, multi-region solutions within Microsoft Azure

Analyze existing operational standards, processes, and / or governance to identify and implement improvements

Manage security and access controls of cloud-based solutions

Help develop and implement best practices and document Procedures

Interface with internal technology and systems teams, network teams, and other stakeholders augments as needed

Develop and implement policy-driven data and asset protection best practices

Oversee automation and AI driven improvements on the Azure environment

Drive system requirements, system specifications, input / output processes and working parameters by using security engineering best practices

Lead the deployment of new modules, upgrades and fixes

Leverage templates and tools to define security processes and services and ensure practices and processes are standardized and repeatable

Design and improve the Azure environment supporting the principal of least privilege and RBAC

Automate and streamline low-value activities in Azure

Support the IAM Program using Azure Tools and solutions

Perform benchmarking and trend analysis and create action plans to implement

Duties

Review the current Azure Architecture and identity improvements

Prioritize and manage improvements and create action plans and expected deliverables or outcomes

Document all critical evolutions, lessons learned, and find possible efficiency gains in processes

Support the improvement actions found from the Microsoft security score card

Take a project based approach to hardening the Azure environment

Review cloud apps and manage Cloud App Security

Support, and monitor vendor activities ensuring work activities meet scope of work and follow established procedures

Support Copilot projects

Respond as-needed when system maintenance or complications arise

Other duties may be assigned from time-to-time by management

Job Requirements

Minimum of 5 years experience lead initiatives

Minimum of 7 years experience in IT, Cybersecurity, or a Bachelor of Science degree and 3 years experience

Experience with one or more : M365 Security, SIEM / SOAR, Baselines, Project Rollouts, and Change Management.

Deep understanding of M365 products such as Teams, EXO, SPO, Power Platform, Office.

4+ years in cloud infrastructure / M365 technologies, information technology (IT) consulting / support, software support, technology solutions, architecture, and / or consulting, OR equivalent experience.

Technical Certification in Cloud (e.g., Azure, AI, security certifications).

Data Center experience is strongly preferred, but not required

Strong skills with VMware, MS Servers and Networking preferred

Travel required is expected to be less than 10%

Essential Job Functions

Keep up to date with the latest cybersecurity threats, vulnerabilities, and industry trends.

Manage, support and maintain VDC’s vulnerability management program

Adhere to KPIs and SLAs

Administration of the Tenable suite

Proactively detect and secure VDC’s environment against both insider and outsider threats

Experience with scripting and automation of administrative tasks

Leverage Tenable to identify weaknesses in the internal and internet-facing systems by detecting vulnerabilities, missing patches, and misconfigurations

Analyze existing operational standards, processes, and / or governance to identify and implement improvements

Manage security and access controls of cloud-based solutions

Help develop and implement best practices and document Procedures

Interface with internal technology and systems teams, network teams, and other stakeholders augments as needed

Develop and implement policy-driven data and asset protection best practices

Oversee automation and AI driven improvements on vulnerability Management

Drive system requirements, system specifications, input / output processes and working parameters by using security engineering best practices

Lead the deployment of new modules, upgrades and fixes

Leverage templates and tools to define security processes and services and ensure practices and processes are standardized and repeatable

Work with system owners to drive remediation plans, communicate information to stake holders through dashboards and reporting, and review exception requests for threat and risk

Automate and streamline low-value activities and notification and escalation processes

Perform benchmarking and trend analysis and create action plans to implement

Essential Job Functions

Risk Management & ISMS Support :

Manage the ISMS risk register, ensuring that risks are identified, assessed, and mitigated effectively.

Provide oversight on cyber risks and the implementation of appropriate controls.

Support the ISMS program by ensuring compliance with relevant standards and conducting periodic gap assessments.

Cybersecurity Oversight :

Manage, support, and maintain Vantage’s security environment.

Act as a contact for end users and individuals reporting cybersecurity issues, questions, or concerns.

Support AI Initiatives and governance.

GRC Program & Project Management :

Manage GRC programs and projects as assigned, ensuring that objectives are met and risks are mitigated.

Maintain and manage policies, procedures, standards, and the Confluence site for all documentation, ensuring accuracy and conducting annual reviews.

Audit Support & Compliance :

Support internal and external audits by providing necessary documentation and responding to audit inquiries.

Perform periodic gap assessments to validate compliance on an ongoing basis.

Incident Response & Triage :

Support triage and investigation of security alerts to identify potential threats and take appropriate action

Participate and support the Business Impact Analysis (BIA) and Crisis Management Framework (CMF) Documentation

Documentation & Communication :

Create documentation and presentations for leadership and stakeholders on relevant topics and issues.

Professional Development :

Engage in ongoing training and professional development to stay current with the latest cybersecurity threats, vulnerabilities, trends and technologies.

Additional Duties :

Handle additional duties as assigned by Manager.

Job Requirements

Education :

7 or more years of IT or Cybersecurity Experience or Bachelor’s degree in Computer Science, Information Technology, Cybersecurity plus 3 years or more of equivalent years of experience.

Minimum of 3 years leading cybersecurity projects or deployments

CISA, CISM, ISO 27001 Lead implementer, 27001 lead auditor certifications preferred but not required.

Experience :

Minimum of 3 years leading cybersecurity projects or deployments

Demonstrated experience in enterprise risk management with strong understanding of cyber threats, vulnerabilities, probability, and impact.

Experience with IT governance, risk, and compliance management in a complex global environment.

Experience with scripting and automation (e.g., Python, PowerShell), preferred.

Experience with vulnerability management and end point security

Deep understanding of M365 products such as Teams, EXO, SPO, Power Platform, Office.

Data Center experience is strongly preferred, but not required

Skills :

Ability to excel in a fast paced and rapidly changing environment.

Familiarity with regulatory requirements and frameworks (e.g., GDPR, COBIT, NIST).

Understanding of cloud security principles and technologies (e.g., AWS, Azure, Google Cloud)

Familiarity with ISMS and security frameworks, particularly ISO 27001 / 27002 and NIST RMF.

Strong understanding of fundamental information security concepts and technology.

Proficiency in written and oral communications across multiple stakeholder groups ranging from junior staff to senior executives.

Strong background in process development, documentation, and continuous improvement.

Experience developing Standard Operating Procedures (SOPs), job aids, and hands-on training materials.

Preferred Tooling Experience :

Tenable

ServiceNow

Elastic SIEM

Swimlane / Turbine

Microsoft 365, Defender, Purview, Entra

Confluence

SharePoint

ClickUp or Jira

Travel required is expected to be up to 15% but may increase over time as the business evolves.

We operate with No Ego and No Arrogance. We work to build each other up and support one another, appreciating each other’s strengths and respecting each other’s weaknesses. We find joy in our work and each other, actively seeking opportunities to inject fun into what we do. Our hard and efficient work is rewarded with an above market total compensation package. We offer a comprehensive suite of health and welfare, retirement, and paid leave benefits exceeding local expectations.

Throughout the year, the advantage of being part of the Vantage team is evident with an array of benefits, recognition, training and development, and the knowledge that your contribution adds value to the company and our community.

Don't meet all the requirements? Please still apply if you think you are the right person for the position. We are always keen to speak to people who connect with our mission and values.

Vantage Data Centers is an Equal Opportunity Employer

Vantage Data Centers does not accept unsolicited resumes from search firm agencies. Fees will not be paid in the event a candidate submitted by a recruiter without an agreement in place is hired; such resumes will be deemed the sole property of Vantage Data Centers.