Information Security Engineer - Hybrid

Information Security Engineer - Hybrid

Genesis10 is currently seeking an Information Security Engineer - Hybrid for a 12+ month contract position with a Global Financial Institution located in Irving, TX, Brevard, NC, Charlotte, NC or Chandler, AZ.

In this role, you will advance the enterprise Zero Trust micro-segmentation program, delivering safe, auditable, and scalable traffic visibility and policy enforcement across hybrid environments. You will be responsible for ensuring operational reliability, policy confidence, and vendor accountability for SaaS-based segmentation at an enterprise scale, consulting on moderately complex initiatives within Information Security Engineering.

Responsibilities:

• Operate and mature the Illumio micro-segmentation platform (SaaS with limited on-prem presence), including VEN agent lifecycle management across Windows, Linux, and future AIX workloads
• Design, validate, and deploy least-privilege segmentation policies, ensuring policy changes can be safely verified via traffic telemetry before and after enforcement
• Analyze traffic flow telemetry and delay metrics across ingestion pipelines and SIEM tooling to validate platform health, identify regressions, and distinguish policy issues from platform or vendor constraints
• Lead incident response and vendor escalation with Illumio engineering, including capacity constraints, SaaS scaling events, maintenance windows, and potential data integrity risks
• Partner with Network Engineering, NOC/NMC, application teams, and platform owners to coordinate production changes, policy deployments, and change-management activities
• Maintain and evolve security standards, baselines, and deployment guidance for enterprise micro-segmentation, aligning to internal governance, audit, and risk requirements
• Support large-scale onboarding and migration efforts, including SaaS cutovers, phased policy enforcement, and certification of segmentation controls for high-risk and payment applications

Requirements:

• 4 years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work or consulting experience, training, military experience, education
• Hands-on experience with workload-level segmentation and lateral-movement prevention (Micro-Segmentation & Zero Trust)
• Demonstrated ability to move from visibility to enforcement safely in production environments
• Strong understanding of VEN agents, SaaS policy engines, enforcement modes, and migration considerations (Illumio or Equivalent Platform Experience)
• Strong proficiency with SIEM tools, especially time-based analysis, distributions, and baselining
• Solid Linux and Windows server fundamentals
• Understanding of application communication patterns, service dependencies, and network flows
• Experience with production change management and incident response
• Ability to clearly communicate technical risk, impact, and recommendations to engineers, leadership, and vendors

Desired Skills:

• CISSP, CCSP, or comparable security architecture certification
• Zero Trust-focused training or vendor micro-segmentation certifications
• Familiarity with Azure and enterprise IAM concepts (SaaS authentication, RBAC, API access)
• Experience integrating segmentation telemetry into SIEM, data lakes, or automation pipelines
• Exposure to policy certification, audit traceability, or regulatory reporting

Pay range: $43.59 - $51.59 per hour

Only candidates available and ready to work directly as Genesis10 employees will be considered for this position.

If you have the described qualifications and are interested in this exciting opportunity, please apply!