IT Security & Infrastructure Engineer

Amiblu, headquartered in Klagenfurt, specializes in designing and manufacturing solutions for drinking water, irrigation, wastewater disposal, hydropower plants, and industry. The company operates in 125 countries, employs nearly 1500 people, and has production plants in Poland, Germany, Romania, Spain, Morocco, and Turkey, as well as a research and development center in Norway.

• Practical experience in systems administration plus security operations (strong security focus with infrastructure depth).
• Hands-on administration of VMware vSphere/ESXi (patching, troubleshooting, lifecycle).
• Experience with Microsoft Intune and Windows Autopilot (deployment, policies, compliance).
• Solid patching and maintenance experience across Windows and Linux.
• Familiarity with EDR, preferably CrowdStrike, including alert triage and response workflows.
• Strong troubleshooting skills, disciplined change management, and clear documentation habits.
• Ability to work independently, prioritize, and be proactive.
• English level B2–C1 (written and spoken)

Nice to have:

• Security frameworks knowledge (CIS, NIST, ISO 27001 concepts).
• Certifications (any of): Security+, SSCP, AZ-500, SC-200, MS-102, VMware VCP.

• Act as the primary point of contact for security monitoring and incident response (triage, investigation, containment, remediation, post-incident reviews).
• Manage and tune CrowdStrike policies, detections, alerts, and response actions.
• Maintain and improve security tooling and processes (alert handling, escalation paths, runbooks).
• Perform threat hunting, log review, and root-cause analysis where applicable.
• Drive security best practices: MFA, least privilege, hardening baselines, secure admin workflows.
• Support internal/external audits and maintain evidence for security controls (where required).
• Own end-to-end patch management and update strategy across Windows Server/Windows clients, VMware ESXi/vCenter, Linux servers, and Microsoft Exchange.
• Run vulnerability scanning (or coordinate it), assess risk, and track remediation to closure.
• Plan maintenance windows, execute updates with minimal downtime, and maintain rollback plans.
• Keep systems current, supported, and aligned with vendor guidance.
• Administer Microsoft Intune for device compliance, policies, and security baselines.
• Improve device posture: encryption, AV/EDR integration, compliance reporting, conditional access alignment (where applicable).
• Maintain VMware vSphere/ESXi environment: updates, configuration, capacity, health monitoring, troubleshooting.
• Maintain documentation: architecture, procedures, asset and patch status, incident reports.
• Identify risks and opportunities, propose improvements, and drive implementation.
• Create and maintain operational documentation, runbooks, and known-good baselines.
• Work with internal stakeholders and vendors on escalations, upgrades, and security initiatives.