Senior Infrastructure & Security Engineer

We are seeking a senior, hands-on technology professional who enjoys balancing infrastructure, security, and compliance responsibilities in a collaborative environment. This role serves as the lead technical resource for infrastructure and security operations, working closely with our Director of IT to support and enhance the systems that keep our business running securely and efficiently.

The ideal candidate is a versatile problem-solver who is equally comfortable troubleshooting core infrastructure, strengthening security controls, and contributing to compliance initiatives. Rather than viewing infrastructure and cybersecurity as separate disciplines, they understand how the two work together to support a secure, reliable technology environment.

Our IT team supports a regulated environment that includes federal contract work governed by frameworks such as CMMC and DFARS. This is an opportunity to play a meaningful role in maintaining and advancing systems that directly support important projects and clients. Because our team is lean and highly collaborative, your contributions will be visible, valued, and impactful. We are looking for someone who takes pride in building solutions that are thoughtful, reliable, and designed to meet both operational and compliance requirements.

Joining our team means immersing yourself in an environment that nurtures creativity, encourages collaboration at all levels, fosters a supportive culture, and facilitates professional development., * Own infrastructure operations across servers, storage, Active Directory, Entra ID, Microsoft Azure, and on-prem identity.

• Run the security operations stack day to day, including CrowdStrike Falcon (EDR), SumoLogic (SIEM), Microsoft Defender, Microsoft Purview, and endpoint protection tooling.
• Manage and tune vulnerability management, alert triage, and incident response workflows in coordination with the Director of IT.
• Support the implementation, maintenance, and technical operation of security controls required by EnSafe's CMMC and NIST compliance programs. Governance, risk management, policy ownership, and assessment management remain the responsibility of the Director of IT.
• Support network operations - Fortinet, WAN, Cisco VPN, segmentation.
• Lead infrastructure and security projects end-to-end, from requirements through implementation and documentation.
• Manage vendor relationships for infrastructure and security platforms, including renewals, contract review with EnSafe' s contracting team, escalations, and ongoing performance.
• Contribute to EnSafe' s AI governance work as part of a cross-functional team. Not the owner of that program; an active participant.

• 9 or more years of progressively responsible IT experience, with at least three years in a role that combines infrastructure ownership and enterprise security.
• Microsoft enterprise stack depth: Active Directory, Entra ID, Azure, Microsoft 365, Intune.
• Hands-on EDR operations experience, ideally CrowdStrike Falcon.
• Hands-on SIEM operations experience, ideally SumoLogic.
• Working knowledge of NIST SP 800-171 and 800-53, including knowledge of CMMC Level 2 and DFARS.
• Working network competence - enough to support Fortinet, VPN, segmentation, and basic firewall work during the gap before a dedicated Senior Network Engineer joins the team.
• Scripting fluency in PowerShell, Python, or both.
• Security+, Network+, or a Microsoft equivalent certification.
• Strong written and verbal communication - the ability to translate technical work for non-technical stakeholders, and the willingness to do it.

Preferred (not required)

• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field.
• CISSP, CISM, CCSP, CISA, CCP, CCA, or FedRAMP certifications.
• Experience in federal or DIB-regulated environments.
• Mergers and acquisitions integration experience.
• Experience supporting AI governance, data loss prevention, or insider risk programs.

EnSafe is accepting applications for a full-time Senior Infrastructure & Security Engineer to join our IT team in Memphis, TN. This position will support all EnSafe offices across the U.S. and Canada., EnSafe is 100% employee-owned, with an ESOP (Employee Stock Ownership Plan) since 1997. That means when EnSafe succeeds, you succeed too, turning company growth directly into shared rewards. * Commitment to Growth and Wellness The company supports personalized career development, mentorship, and employee wellness initiatives such as health tracking tools. * Purposeâ??Driven Work EnSafe's mission focuses on impactful environmental, health, and safety consulting-making a real difference in communities and is backed by its long-standing technical credibility. * Safety as a Value, Not Just a Service Safety is deeply embedded in our culture, prioritizing employee well-being in addition to helping clients maintain compliance. We stress that "safety is part of everything we do." * A Culture of Freedom & Ownership At EnSafe, our career philosophy is built on freedom. The freedom to take initiative, achieve your goals, and shape your own career path Employees are encouraged to pursue growth in a flexible, entrepreneurial environment. * Challenging, Creative Work Workdays at EnSafe are anything but ordinary, fast-paced, dynamic, and filled with opportunities to tackle projects in environmental consulting, health & safety, engineering, and technology. Every day calls for creativity, innovation, and agile problem-solving., EnSafe began as a two-person firm in 1980, navigating complex regulatory compliance issues on behalf of our clients. We nurture our people with growth and development opportunities. We build enduring, trustful relationships with each of our clients, with a focus on high ethical and safety standards. We build this reputation by attracting high-quality people and retaining them for the long term.