Infrastructure Security Engineer

Day to day, the Infrastructure Security Engineer owns and evolves security architecture and control frameworks across on‑prem data centers and hybrid, multi‑cloud environments including OCI, AWS, Azure, and GCP. They partner closely with engineering and infrastructure teams to perform threat modeling, architecture reviews, and embed defense‑in‑depth controls across IaaS, PaaS, container platforms, and IAM before solutions reach production. The role is responsible for integrating automated security scanning, policy‑as‑code, and approval gates into CI/CD pipelines to shift security left and reduce risk at scale. This engineer designs and maintains scalable infrastructure‑as‑code frameworks to enforce security baselines, prevent configuration drift, and continuously mature security controls through regular assessments and automation‑driven roadmaps. They also design and operate cloud network security controls—including VPC architecture, micro‑segmentation, firewall policies, and centralized logging—to ensure visibility, auditability, and rapid support of incident investigations.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.

• Own security architecture and control frameworks across self-built data centers, OCI, AWS, Azure, and GCP in hybrid/multi-cloud environments.
• Implement defense-in-depth controls across IaaS, PaaS, containers, and IAM for infrastructure.
• Lead threat modeling and architecture reviews to identify and mitigate risks before production.
• Embed automated security scanning, policy-as-code, and approval gates into CI/CD pipelines.
• Build scalable IaC frameworks to enforce security baselines and eliminate configuration drift.
• Partner with engineering, infrastructure, and business teams to shift security left in the design lifecycle.
• Drive control maturity through regular assessments and a roadmap focused on automation and operational efficiency.
• Design and mature cloud network security controls - including VPC architecture, micro segmentation, and firewall policies, and establish centralized security logging and audit trail coverage.

• Mandarin speaking, both written and verbal skills

Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.