Based in Ottawa, Ontario, Canada, Harris Computer Systems provides mission-critical software solutions for organizations across the United States and Canada, in
Senior Infrastructure & Security Engineer
Location
United Kingdom
Posted
15 days ago
Salary
0
Seniority
Senior
Job Description
Senior Infrastructure & Security Engineer
Harris Computer Systems
Role Description Commerce Decisions, part of Harris Computer Company, are currently seeking an experienced Senior Infrastructure & Security Engineer on a full-time, permanent basis operating on a remote working model. Role Responsibilities - Infrastructure & cloud operations: - Design, implement and run cloud infrastructure across Azure and Oracle Cloud (OCI) spanning the UK and Canada, for high availability, scalability and security. - Administer a mixed Linux and Windows server estate, plus Docker and Kubernetes workloads. - Own deployment of monthly SaaS releases, updates and patches into Staging, internal and hosted customer environments (Dev produces the release package). - Light MySQL maintenance: version upgrades, backup monitoring, replica health checks and tuning improvements. - Manage internal IT assets and users via ManageEngine; monitor staff device patch status. - Maintain internal servers and QA/test environments. - Investigate and resolve infrastructure issues and bugs, supporting the wider engineering team. - Automation & modernisation (≈50% of the role): - Lead the migration of manually-built Oracle Cloud environments onto Terraform and Ansible, with proper change management. - Partner with Development to identify and build automation that improves releases and deployment. - Drive automation and modernisation as a continuous theme, treating infrastructure-as-code as the living source of truth for infrastructure state. - Security engineering: - Patch management across the estate. - Maintain and improve hardened environments to CIS benchmarks. - Threat-horizon monitoring: track IT news, vendor advisories, CVE feeds, NCSC and similar for issues relevant to our stack, and drive remediation. - Operate security tooling (CrowdStrike, ESET, Rapid7, or equivalents): deploy agents, ensure coverage and updates, monitor dashboards, and triage and analyse alerts. - Coordinate penetration tests end-to-end and own scoping. - Author and review customer security questionnaires and bid responses about our hosting environments and security controls. - Provide technical evidence and implement controls in support of ISO 27001 and Cyber Essentials Plus. - Networking: - Hands-on (and IaC) with Cloud based load balancers, SSL certs & ciphers, WAFs, security headers, network security groups and VPNs. - Resilience & business continuity: - Capacity monitoring and resilience planning; design for high availability and scalability. - Lead disaster-recovery and business-continuity capability. - Build and maintain alerting and observability. - Documentation & operating rhythm: - Maintain infrastructure-as-code as the primary record of infrastructure state. - Weekly tracking of work in progress and incoming work. Qualifications - Collaboration closely with R&D and Customer Support and Success teams to ensure the best outcomes for our customers. - Strong hands-on infrastructure/IT operations background across a mixed estate. - Production experience with at least one major public cloud (Azure, AWS, OCI or GCP) and a strong grasp of the underlying concepts. - Practical experience with Terraform, Ansible or similar in production. - Confident administering both Linux and Windows servers. - Solid understanding of containers and orchestration, Kubernetes in particular. - Demonstrable networking skills: load balancers, WAFs, VPNs, security headers, network security groups. - Practical security operations: patching, hardening, vulnerability management, and operating endpoint/threat tooling. - Experience coordinating penetration tests and driving triage and remediation through to closure. - Experience designing for resilience, high availability and business continuity. - Strong analytical and logical troubleshooting, root-cause discipline. - Genuine curiosity for emerging tools and technologies, including AI. - Clear written communication. - Eligible for and able to obtain UK SC clearance. Requirements - Active SC clearance at point of hire. - Hands-on Oracle Cloud Infrastructure (OCI). - Direct experience with the specific security tooling: CrowdStrike, ESET, Rapid7. - Octopus Deploy. - ManageEngine. - MySQL administration. - Observability stacks: Grafana/Loki, PRTG. - Experience migrating manually-built environments to infrastructure-as-code. - Direct experience with ISO 27001, Cyber Essentials Plus and MOD frameworks. - Prior experience in a defence, government, or other regulated/secure environment. Benefits - Harris offers an extremely competitive UK employee benefits programme. - 25 days holiday. - 5 Personal Days leave entitlement. - An annual Lifestyle Reward amounting £325 per annum/pro rata. - Private medical and dental care. - Employee Share Ownership Plan. Company Description Commerce Decisions is part of Harris. Harris’ strategy focuses on acquiring software businesses, strengthening and managing them well, and growing them for the future. Our companies provide mission-critical software solutions to a global customer base across various vertical markets. We are part of Constellation Software Inc. (TSX: CSU), one of the world’s most active acquirers of software businesses.
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Security L2 Technical Support Team Lead
GeneaWelcome to Genea. Genea means Family - Where babies are made sooner.
• Own daily L2 queue triage: prioritize tickets by urgency, SLA exposure, and install-linkage; ensure no ticket ages without owner visibility. • Serve as acting lead in the Support Manager’s absence — make real-time judgment calls on escalation routing, coverage gaps, and customer communication without requiring manager availability. • Enforce channel hygiene across Teams support and onboarding channels; ensure proper routing protocols are followed by all L2 team members and flag drift quickly. • Own SLA compliance visibility for the team; surface aging tickets and at-risk cases to the Support Manager proactively. • Own the L2 on-call and after-hours coverage schedule in coordination with the Support Manager; ensure coverage assignments are confirmed before each cutover window, high-risk installation, or enterprise go-live. • Serve as the first call when issues arise during after-hours or weekend coverage windows; resolve or escalate as appropriate before involving the Support Manager. • Maintain the install-linked coverage tracking model; confirm that technician assignments are logged and FLSA-compliant before each coverage period. • Serve as the primary technical onboarder for new L2 hires: design and deliver structured shadowing, conduct skill gap assessments, and provide readiness sign-off before new team members handle cases independently. • Coach L2 team members on escalation urgency standards and technical decision-making; distinguish true L3-required issues from those resolvable within the L2 tier. • Run recurring team knowledge sessions — translate resolved L3 tickets, recurring incident patterns, and product updates into practical L2 training and Intercom knowledge base entries. • Provide informal performance input to the Support Manager on team members’ technical progress, emerging skill gaps, and coaching opportunities; participate in L2 candidate interviews when requested. • Lead technical support for large-scale and enterprise implementations, including multi-site deployments, controller migrations (e.g., EP to MP controller upgrades), and phased cutovers. • Monitor and manage the support and onboarding Teams channels; enforce proper routing protocols and ensure channel hygiene across the team. • Use advanced troubleshooting skills to isolate and resolve equipment and software malfunctions; escalate to L3 only when resolution requires backend platform access or engineering involvement. • Complete accurate and detailed service reports for both customers and Genea in a timely manner to support invoicing and job tracking within the ticketing system (Zendesk).
Security Engineer
Level AccessTechnology is evolving rapidly and it should work for everyone. Digital accessibility compliance software and services.
• Reporting to the Senior Director of Information Security, the Security Engineer role at Level Access will help the company meet its goal of being the most secure company in digital accessibility. • Perform initial triage of disparate security signals and events to determine severity and drive response to potential business-impacting incidents. • Monitor and analyze vulnerability management tools and feeds; provide remediation guidance to downstream teams; and keep technical risk under control. • Operate the security awareness program, including course design, phishing simulations, reporting, and support for business teams and users. • Support internal and external stakeholders as required to gather information and evidence for security governance activities and compliance audits. • Use AI and automation techniques to enhance compliance, facilitate business operations, and improve efficiency. • Undertake small projects to mitigate risk, support the team, and support other company objectives.
Security Engineer
Level AccessTechnology is evolving rapidly and it should work for everyone. Digital accessibility compliance software and services.
• Reporting to the Senior Director of Information Security, the Security Engineer role at Level Access will help the company meet its goal of being the most secure company in digital accessibility. • Security alert triage: Perform initial triage of disparate security signals and events to determine severity and drive response to potential business-impacting incidents. • Vulnerability management: Monitor and analyze vulnerability management tools and feeds; provide remediation guidance to downstream teams; and keep technical risk under control. • Security awareness: Operate the security awareness program, including course design, phishing simulations, reporting, and support for business teams and users. • Audit support: Support internal and external stakeholders as required to gather information and evidence for security governance activities and compliance audits. • AI and automation: Use AI and automation techniques to enhance compliance, facilitate business operations, and improve efficiency. • Business analysis: Undertake small projects to mitigate risk, support the team, and support other company objectives.
Quality Assurance Individual, Cybersecurity Maturity Model Certification Assessments
OCT Consulting LLCLeaders in Organizational Change & Technology
Provide independent quality assurance review of CMMC Level 2 certification assessments, maintain the quality management system, verify adherence to assessment procedures, and identify nonconformities while ensuring impartiality in the quality function.



