Senior Security Lead - Infrastructure Security

As a Senior Security Analyst, you will work closely with teams across these functions to secure and protect Altera's infrastructure.

Infrastructure Security Engineering & Hardenin

g Implement and maintain, secure configurations and hardening practices for Windows, Linux, virtualization, identity, and cloud environments

. Perform infrastructure security reviews for servers, cloud deployments, and datacenter technologies

. Assist with evaluating and deploying tools such as EDR, vulnerability scanners, cloud security agents, and logging integrations

. Collaborate with IT Operations, Cloud, Network, and Platform Engineering to embed security into system build processes

.
Threat Detection, Monitoring & Incident Respon

se Conduct investigations involving system compromise, identity misuse, privilege escalation, malware, and data exfiltratio

n. Analyze infrastructure logs, cloud logs, identity telemetry, EDR alerts, and SIEM event

s. Develop detection logic and tune alerting to reduce false positive

s. Participate in incident response, contributing analysis, containment, forensics, and remediation suppor

t. Document incident findings and recommendation

s.
Vulnerability Management & Risk Reduct

ion Perform vulnerability assessments across servers, cloud workloads, and enterprise platfor

ms. Analyze remediation requirements and track closure with system owne

rs. Support risk assessments for new systems, cloud services, and infrastructure chang

es. Validate controls against NIST CSF, NIST 80053, and ISO 27001. Knowledge of CMMC is a pl

us.
Governance, Standards & Compliance Sup

port Contribute to infrastructure security policies, baselines, and secure configuration standa

rds. Provide security requirements and best practices to engineering and operations te

ams. Assist with evidence collection for audits and compliance effo

rts.CrossFunctional Collaboration & Communica

tion Collaborate with Legal, Privacy, Risk, IT Ops, Cloud, DevOps, and Engineering te

ams. Communicate findings and risk recommendations to technical and nontechnical stakehold

ers. Prepare documentation, operational reports, and risk summar

ies.
Experience & S

kills 47+ years in information security or infrastructure enginee

ring. Strong experience with infrastructure security concepts: Windows/Linux hardening, AD/Entra ID, virtualization, Azure/AWS, vulnerability management, EDR,

SIEM. Solid understanding of system internals, network protocols, authentication, and common attack techni

ques. Scripting experience (Python, PowerShell, KQL) is a

plus.Leadership Expectations (Individual Contrib

utor) Demonstrate ownership and accountability for infrastructure security t