Infrastructure & Security Engineer

Infrastructure & Security Engineer

London / Hybrid (3 days per week)

Oritain builds technology that proves trust and transparency in global supply chains. We apply data engineering and AI to problems with real human and environmental impact, helping protect people from exploitation and enabling brands to stand behind what they sell.

As we scale, secure and reliable infrastructure is critical to everything we do.

We’re a global team across London, Auckland, Singapore and Washington D.C.

The Role

This is a hands‑on individual contributor role owning Oritain’s core infrastructure and security capabilities.

You’ll design, build and operate secure cloud, identity and network services while strengthening our security posture and compliance maturity. This is not an advisory role — you’ll be directly responsible for delivery, operations and outcomes.

You’re joining at an important point, with active ISO 27001 renewal, Cyber Essentials certification, and alignment to NIST and CMMC, supported by modern tooling (Vanta). You’ll play a key role in keeping infrastructure practical, secure and scalable.

You’ll also help shape the secure adoption of AI tooling across the organisation, ensuring it’s governed, compliant and genuinely useful.

You’ll report to the Head of IT & Security and work closely with Engineering, Service Desk and the wider business.

What You’ll Do

• Design, build and secure cloud and on‑prem infrastructure services

• Own identity and access management using Microsoft Entra ID, Conditional Access and RBAC

• Design and implement network segmentation, firewalls, VLANs and VPNs

• Build and support SD‑WAN and site connectivity

• Administer Azure networking (VNets, routing, NSGs, VPN/S2S gateways)

• Lead incident response alongside our external SOC

• Operate Microsoft security services including Defender and Sentinel

• Manage vulnerability identification and remediation

• Support security compliance activities using Vanta

• Help deliver ISO 27001, Cyber Essentials, NIST and CMMC alignment

• Secure and help govern AI tooling (e.g. Microsoft Copilot), including DLP and Purview controls

• Apply automation and AI to improve infrastructure and security operations

Skills & Experience

Essential

• Hands‑on infrastructure and security engineering experience

• Strong knowledge of Microsoft Entra ID, Azure and Microsoft 365

• Solid networking fundamentals (VLANs, firewalls, routing, VPNs)

• Experience with Defender, Sentinel or similar security tooling

• Exposure to security frameworks such as ISO 27001 or NIST

• Comfortable owning delivery and working across technical and non‑technical teams

Desirable

• Zero Trust or advanced security monitoring experience

• Infrastructure or security automation experience

• Exposure to enterprise AI tooling

• Relevant Microsoft, Azure or security certifications

Company Benefits

• Paid Leave- 35 days (inclusive of public holidays) + your birthday off

• Volunteering Leave Allowance

• Enhanced Parental Leave

• Life Insurance

• Healthcare Cash Plan

• Employee Assistance Programme (EAP)

• Pension

• Monthly Wellbeing Allowance

• Breakfast, Snacks, Friday lunch & Barista Coffee Machine in the office

• Learning Portal with over 100,000 assets available to support professional development