JMA is restoring U.S. leadership in wireless technology at a critical time in the transition to 5G. It makes the world’s most advanced software-based 5G platform, designed, coded, and manufactured in Syracuse, NY at the only U.S.-owned 5G factory in the country.
Across its global tech centers, JMA makes 5G possible for organizations with the most critical connectivity demands in the world. JMA’s technology is ushering in a new era of connectivity for leading mobile carriers, the most iconic stadiums, major universities, leading healthcare centers, the busiest transit centers, and the U.S. Military.
5G is more than another G on your phone — it is a generational opportunity to change the way the world operates. Join the industry’s fastest growing technology company to shape that future today.
We are seeking an IT Infrastructure Security Operations Engineer to own the day-to-day operational security posture of our enterprise infrastructure. This role is focused on Continuous Diagnostics and Mitigation (CDM) — the ongoing work of monitoring infrastructure health, enforcing configuration baselines, managing patching cadence, coordinating vulnerability
remediation, and ensuring our environments remain hardened between audit cycles.
This is an operational execution role, not a governance or audit role. The Infrastructure Security Operations Engineer works within IT Infrastructure Operations and complements our Cybersecurity function, which owns governance, audit, and security assessment. Together, the two functions maintain a healthy separation of duties — Cybersecurity assesses, Infrastructure Operations remediates and hardens.
The ideal candidate brings deep hands-on experience across both Windows and Linux environments, a strong understanding of security operations at the infrastructure level, and the discipline to maintain continuous hygiene rather than reactive fixes.
Responsibilities:
Own and execute the Continuous Diagnostics and Mitigation (CDM) program for enterprise infrastructure, including both Windows and Linux environments.
Manage and enforce patch management cadence across all infrastructure systems, tracking compliance and driving remediation of gaps.
Establish and maintain configuration baselines for servers, endpoints, and network-adjacent systems; monitor for drift and enforce corrections.
Coordinate vulnerability remediation by triaging scan results, prioritizing findings, and working with Systems and Network teams to implement fixes within defined SLAs.
Conduct and manage access reviews, ensuring appropriate permissions, removing stale accounts, and documenting findings.
Continuously monitor infrastructure security posture using available tools (SIEM, endpoint protection, vulnerability scanners) and escalate anomalies as appropriate.
Prepare and maintain operational evidence to support internal and external audits, ensuring Infrastructure Operations can demonstrate compliance with frameworks such as CMMC, SOC2, and ISO 27001.
Create, update, and maintain detailed documentation for security operations processes, controls, and remediation activities.
Collaborate with the Cybersecurity team to align operational execution with governance requirements, audit findings, and evolving security standards.
Collaborate with Systems Administrators and Systems Engineers to ensure security practices are integrated into daily infrastructure operations rather than treated as separate workstreams.
Identify opportunities to automate and improve security operations workflows, reducing manual effort and increasing consistency.
Provide Tier 2/3 escalation support for security-related infrastructure issues and end user support requests that exceed Help Desk capabilities.
Stay current with evolving threats, vulnerabilities, and industry best practices to continuously improve the organization's security posture.
Required Skills & Experience:
6+ years of experience in infrastructure security operations, systems administration with a security focus, or a related technical discipline.
Strong hands-on experience across both Windows and Linux server environments.
Demonstrated experience with patch management processes and tools across heterogeneous environments.
Experience with vulnerability scanning, triage, and remediation coordination.
Familiarity with SIEM platforms, endpoint protection tools, and infrastructure monitoring solutions.
Understanding of configuration management and baseline enforcement concepts.
Experience conducting or supporting access reviews and identity hygiene processes.
Working knowledge of compliance frameworks such as CMMC, SOC2, or ISO 27001 and experience preparing operational evidence for audits.
Strong documentation skills and a disciplined approach to process consistency.
Excellent communication and collaboration skills, with the ability to work across infrastructure, security, and leadership teams.
Preferred Skills & Experience:
Experience building or maturing a CDM program or equivalent continuous security operations function.
Familiarity with scripting and automation (PowerShell, Bash, Python) to streamline security operations tasks.
Experience with configuration management tools such as Ansible, Puppet, or similar.
Experience with Active Directory, Group Policy, and M365/Entra from a security and compliance perspective.
Familiarity with network security concepts (firewalls, segmentation, VPN) sufficient to collaborate with Network Engineering.
Relevant certifications such as CompTIA Security+, CISSP, CISM, GIAC, or
similar.
#LI-TM1
At JMA, our people are deeply committed to their work and we provide benefits to match. When you join JMA you have immediate access to everything you need. Whether you're looking for employee discounts, financial, legal and/or childcare resources and support, we have you covered. We believe in providing comprehensive health and wellness coverage along with monetary rewards towards health goals, in addition to numerous company-provided personal protection benefits at no additional cost to you.
At JMA, we don’t just accept differences — we embrace them. JMA is proud to be an equal opportunity workplace. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristic.
