1

Infrastructure Security Analyst Jobs (NOW HIRING)

IT Security Analyst Position Summary Our client is seeking an IT Security Analyst to serve as a key ... Cloud Security * Assist with securing cloud services and infrastructure. * Support implementation ...

$110K/yr

Conduct comprehensive security assessments, threat modeling, and risk analysis to identify ... Extensive experience in infrastructure security within public cloud environments such as AWS, Azure ...

Infrastructure Security Engineer

Durham, NC · On-site

$134K/yr

Strong troubleshooting and analytical skills. * Ability to prioritize tasks and respond effectively ... Infrastructure Security * Identity & Access Management * Entra ID Risk Detection & Response

IT Security Analyst

Compton, CA · On-site

$115K - $125K/yr

Position: IT Security Analyst Position reports to: Director of IT Position Overview: Greenstone ... In this role, you will bridge the gap between technical infrastructure and business risk. You will ...

In this role, you will monitor, analyze, and protect the organization's network infrastructure against potential threats and vulnerabilities. You will be responsible for identifying security risks ...

In this role, you will monitor, analyze, and protect the organization's network infrastructure against potential threats and vulnerabilities. You will be responsible for identifying security risks ...

In this role, you will monitor, analyze, and protect the organization's network infrastructure against potential threats and vulnerabilities. You will be responsible for identifying security risks ...

... cloud infrastructure protection. At Upwind, you'll have the opportunity to think creatively ... We are looking for a Security Analyst to join our MDR team. In this role, you will be part of our ...

As the Principal Infrastructure Security Engineer at Upstart, you will define and drive the ... analysis, risk-based prioritization, and long-term architectural improvements. * Elevate ...

... cloud infrastructure protection. At Upwind, you'll have the opportunity to think creatively ... We are looking for a Security Analyst to join our MDR team. In this role, you will be part of our ...

In this role, you will monitor, analyze, and protect the organization's network infrastructure against potential threats and vulnerabilities. You will be responsible for identifying security risks ...

In this role, you will monitor, analyze, and protect the organization's network infrastructure against potential threats and vulnerabilities. You will be responsible for identifying security risks ...

In this role, you will monitor, analyze, and protect the organization's network infrastructure against potential threats and vulnerabilities. You will be responsible for identifying security risks ...

next page

Showing results 1-20

Infrastructure Security Analyst information

See salary details

$12

$46

$74

How much do infrastructure security analyst jobs pay per hour?

As of Jul 13, 2026, the average hourly pay for infrastructure security analyst in the United States is $46.24, according to ZipRecruiter salary data. Most workers in this role earn between $37.02 and $54.57 per hour, depending on experience, location, and employer.

What is the role of infrastructure security analyst?

An infrastructure security analyst is responsible for protecting an organization's IT infrastructure by monitoring networks, identifying vulnerabilities, and implementing security measures such as firewalls, intrusion detection systems, and encryption. They analyze security risks, respond to incidents, and ensure compliance with security standards, often using tools like SIEMs and vulnerability scanners. Strong technical skills and relevant certifications like CISSP or CompTIA Security+ are typically required.

Can you make $500,000 a year in cyber security?

Infrastructure Security Analysts typically earn between $80,000 and $150,000 annually, depending on experience, certifications, and location. Reaching a $500,000 salary usually requires senior roles, management positions, or specialized expertise in high-demand areas such as threat intelligence or security architecture, often combined with leadership responsibilities or consulting work.

What are the key skills and qualifications needed to thrive as an Infrastructure Security Analyst, and why are they important?

To excel as an Infrastructure Security Analyst, you need a solid background in network security, risk assessment, and incident response, typically supported by a degree in information technology or cybersecurity and relevant certifications like CompTIA Security+ or CISSP. Familiarity with security information and event management (SIEM) tools, firewalls, intrusion detection systems, and vulnerability scanners is crucial. Strong analytical thinking, attention to detail, and effective communication skills help analysts identify threats and collaborate with IT teams. These skills and qualities are vital for proactively protecting organizational assets and ensuring robust defense against evolving cyber threats.

Is SOC an entry level job?

A Security Operations Center (SOC) analyst role is typically not entry-level and usually requires some experience in cybersecurity, network monitoring, or related fields. Entry-level positions may be labeled as SOC analyst I or junior SOC analyst, but higher-level roles often demand certifications like CompTIA Security+ or CISSP and familiarity with security tools such as SIEM systems.

What are the most common challenges Infrastructure Security Analysts face when balancing security requirements with business operations?

Infrastructure Security Analysts often encounter the challenge of implementing robust security controls without disrupting essential business processes. They must strike a balance between enforcing strict security measures, such as access controls and monitoring, while ensuring that employees can efficiently perform their duties. Collaboration with IT, operations, and business teams is crucial to understand workflow needs and to design solutions that mitigate risks without causing unnecessary friction. Effective communication and a proactive approach to understanding evolving business requirements help analysts address these challenges successfully.

What does an Infrastructure Security Analyst do?

An Infrastructure Security Analyst is responsible for protecting an organization’s IT infrastructure from cyber threats and vulnerabilities. They monitor networks, servers, and systems for suspicious activity, conduct risk assessments, and implement security measures such as firewalls and encryption. These professionals also respond to security incidents, ensure compliance with security policies, and help design strategies to prevent future breaches. Their work is crucial in maintaining the confidentiality, integrity, and availability of company data and services.

What does an infrastructure analyst do?

An infrastructure security analyst is responsible for protecting an organization's IT infrastructure, including networks, servers, and systems, from cyber threats. They monitor security systems, analyze vulnerabilities, implement security measures, and respond to incidents, often using tools like firewalls, intrusion detection systems, and security information and event management (SIEM) software. Strong knowledge of network protocols, security best practices, and relevant certifications such as CISSP or CompTIA Security+ are common requirements.

What is the difference between Infrastructure Security Analyst vs Network Security Analyst?

AspectInfrastructure Security AnalystNetwork Security Analyst
CertificationsCompTIA Security+, CISSP, CEHCompTIA Security+, CISSP, CCNA Security
Work EnvironmentFocus on securing entire IT infrastructure, including servers, cloud, and hardwareFocus on securing network devices, traffic, and network-specific vulnerabilities
Employer & Industry UsageUsed across industries to protect infrastructure assetsCommon in organizations with complex networks, such as ISPs and large enterprises
Comparison Search IntentHigh overlap in cybersecurity roles, often compared in job searchesRelated but more network-specific

While both roles focus on cybersecurity, the Infrastructure Security Analyst primarily safeguards the entire IT infrastructure, including servers and cloud systems. The Network Security Analyst concentrates on protecting network devices and traffic. Understanding these differences helps in choosing the right career path or job focus.

More about Infrastructure Security Analyst jobs
What cities are hiring for Infrastructure Security Analyst jobs? Cities with the most Infrastructure Security Analyst job openings:
What states have the most Infrastructure Security Analyst jobs? States with the most job openings for Infrastructure Security Analyst jobs include:
Infographic showing various Infrastructure Security Analyst job openings in the United States as of July 2026, with employment types broken down into 1% Locum Tenens, 1% Internship, 86% Full Time, 6% Part Time, 1% Temporary, and 5% Contract. Highlights an 82% Physical, 5% Hybrid, and 13% Remote job distribution, with an average salary of $96,171 per year, or $46.2 per hour.
Infrastructure & Security Manager

Infrastructure & Security Manager

Sourceability

Austin, TX • Hybrid

Other

PTO

Re-posted 15 days ago


Job description

Sourceability is building a new Global Engineering Organization (GEO) to strengthen technology ownership, improve production reliability, and build long-term internal engineering and infrastructure capability.

We are looking for an Infrastructure & Security Manager to lead the infrastructure and security function within GEO. This role is responsible for server, network, data center, hybrid infrastructure, identity, access control, infrastructure security, vulnerability management, monitoring, disaster recovery readiness, and operational risk reduction for business-critical systems.

This is a functional management role. The Infrastructure & Security Manager will manage infrastructure and security capacity, priorities, vendors, operational processes, team execution, and escalation handling. Platform / DevOps & Data will own CI/CD, deployment automation, environments, data platform, and release tooling. Software Engineering will own application code and application-level technical delivery. Business IT / end-user IT boundaries may be handled separately depending on the company operating model.

The right candidate should be hands-on enough to understand technical details, challenge weak plans, manage urgent incidents, and guide infrastructure and security engineers, while also being able to build process discipline and communicate risk clearly to leadership.

This is a hybrid role working from our Austin, TX office. 

Scope of Ownership:

This role focuses on technology infrastructure and security operations that support production systems, engineering teams, and critical business platforms. The role may coordinate with end-user IT or business technology teams, but it should not become a helpdesk or general desktop support manager role.

  • Production infrastructure, server operations, virtualization, storage, backups, and data center coordination.
  • Network operations including firewalls, VPNs, routing, DNS, load balancing, segmentation, and connectivity between offices, data centers, cloud services, and remote users.
  • Infrastructure security controls including patching, vulnerability remediation, access control, privileged access, endpoint/server protection, and security monitoring coordination.
  • Identity and access control governance for production and engineering systems, including least privilege, access reviews, and escalation approval paths.
  • Disaster recovery and business continuity readiness for infrastructure services and critical systems.
  • Vendor and managed service coordination for infrastructure, network, security tooling, data center, cloud, and telecom services.

Insight on Your Impact:

In this role, you will:

  • Lead and manage the infrastructure and security function within GEO, including current and future SysOps, infrastructure, network, and cybersecurity resources.
  • Own operational reliability for infrastructure supporting business-critical systems, including servers, virtualization, storage, network connectivity, VPNs, firewalls, identity, and monitoring.
  • Establish clear infrastructure ownership, escalation paths, operational runbooks, change discipline, and incident response expectations.
  • Manage infrastructure and security priorities, capacity, vendors, and delivery risks in partnership with the CTO and other GEO leaders.
  • Partner with Platform, DevOps & Data teams to support stable environments, deployment needs, monitoring, observability, and release readiness.
  • Partner with Software Engineering teams to ensure infrastructure constraints, access needs, environment dependencies, and production risks are understood and addressed.
  • Lead practical vulnerability management, patch management, configuration hardening, access reviews, and remediation tracking across infrastructure and security tooling.
  • Own or coordinate response to infrastructure and security incidents, including triage, escalation, communication, root cause analysis, and remediation follow-up.
  • Ensure disaster recovery, backup, restore, and business continuity processes are documented, tested, and improved over time.
  • Manage infrastructure vendors, data center providers, cloud providers, network providers, managed security providers, and equipment suppliers with attention to service quality, cost, risk, and accountability.
  • Improve monitoring and alerting coverage for infrastructure and security events so production risks are detected before they become business outages.
  • Build practical security operations discipline without creating unnecessary bureaucracy or blocking engineering delivery.
  • Support compliance and audit evidence collection related to infrastructure, access control, vulnerability management, patching, and security operations.
  • Develop team members through coaching, clear expectations, performance feedback, documentation discipline, and operational standards.
  • Report infrastructure status, security risks, open incidents, remediation progress, vendor issues, and operational gaps to GEO leadership and senior stakeholders.

Your Qualifications, Your Influence:

To be successful in this role, you should have:

  • 7+ years of experience in infrastructure, systems engineering, network operations, security operations, or IT operations supporting production environments.
  • 3+ years of experience in a management, team lead, or senior ownership role for infrastructure, SysOps, network, or security operations teams.
  • Strong hands-on understanding of Windows and Linux server environments, virtualization, storage, backup systems, networking, VPNs, firewalls, DNS, monitoring, and identity/access management.
  • Experience supporting business-critical systems where uptime, access control, backup/recovery, and incident response are important operational responsibilities.
  • Practical understanding of cybersecurity operations including vulnerability management, patching, endpoint/server protection, privileged access, incident response, and security monitoring.
  • Experience managing hybrid infrastructure environments with on-premise data centers, cloud services, remote access, and distributed office connectivity.
  • Ability to manage vendors and managed service providers while maintaining internal ownership and accountability.
  • Experience building operational processes such as runbooks, change control, access reviews, incident response, RCA, DR testing, and infrastructure documentation.
  • Ability to prioritize urgent production issues against longer-term infrastructure and security improvement work.
  • Strong communication skills with the ability to explain infrastructure risk, security risk, operational tradeoffs, and remediation needs to technical and non-technical stakeholders.
  • Ability to lead distributed teams and coordinate work across multiple regions and time zones.
  • Strong ownership mindset, practical judgment, and ability to make decisions under pressure during infrastructure or security incidents.

Preferred Skills and Technical Familiarity:

The following experience will be helpful in this role:

  • Experience with Microsoft-based enterprise environments including Active Directory, Azure AD / Entra ID, Group Policy, Windows Server, SQL Server infrastructure dependencies, and Microsoft 365 security controls.
  • Experience with virtualization platforms such as VMware or Hyper-V, storage platforms, backup platforms such as Veeam, and monitoring tools such as Zabbix or similar systems.
  • Experience with network/security platforms such as Fortinet, Barracuda, Meraki, UniFi, or similar firewall, VPN, SD-WAN, or secure access technologies.
  • Familiarity with endpoint management, RMM, patching, EDR/MDR, SIEM, vulnerability scanners, and security alert triage processes.
  • Experience with data center operations, hardware lifecycle planning, server/storage/network refresh projects, and vendor coordination.
  • Experience with compliance frameworks or practices such as SOC 2, ISO 27001, NIST, GDPR, or other audit/security programs.
  • Relevant certifications such as CISSP, CISM, CompTIA Security+, Microsoft, VMware, Fortinet, or cloud infrastructure/security certifications.
  • Experience in electronic components, technology distribution, supply chain, logistics, manufacturing, e-commerce, or similar B2B environments.

Success in the First 90 Days:

Within the first 90 days, the Infrastructure & Security Manager should be able to:

  • Understand Sourceability's key infrastructure, data centers, network topology, remote access model, production dependencies, monitoring coverage, vendors, and current operational risks.
  • Establish working relationships with the CTO, Platform / DevOps & Data Manager, Software Engineering Manager, SysOps resources, Cybersecurity Engineer, DevOps, DBA, and business technology stakeholders.
  • Clarify infrastructure and security ownership boundaries inside GEO and with any business IT / end-user IT teams.
  • Identify critical infrastructure risks, security gaps, access control issues, monitoring gaps, backup/recovery gaps, and single points of failure.
  • Create a practical 90-day remediation plan for the highest-risk infrastructure and security items.
  • Establish or improve infrastructure incident escalation, RCA, runbook, and change communication practices.
  • Review patching, vulnerability remediation, privileged access, firewall/VPN rules, backup status, and DR readiness for critical systems.
  • Improve visibility into infrastructure and security work through agreed tracking, reporting, and status communication practices.
  • Create a staffing and capacity view for infrastructure, SysOps, network, and security needs for Day 1, 90-day, and 6-12 month GEO growth.
  • Start building a practical operating model for infrastructure and security that improves reliability without slowing down engineering delivery.

What This Role Does Not Own:

This role does not own application code, product backlog, or application-level delivery commitments. Those remain with Software Engineering, Product / Delivery, and Platform / DevOps teams as applicable.

This role does not independently define all corporate compliance policy or act as the company CISO unless separately assigned. The role owns practical infrastructure security operations, security controls, remediation tracking, and security execution within GEO scope.

This role should not become a general helpdesk or end-user support manager role. It may coordinate with end-user IT, but the primary focus is production infrastructure, engineering infrastructure, security operations, network/server reliability, and operational risk reduction.

Benefits:

  • Competitive salary
  • Ongoing training and professional development opportunities
  • Collaborative global work environment
  • PTO