Information Security Engineer

This is a fully remote position, open to applicants in United States.

📋 Description

• Assist in executing and supporting security incident response initiatives, which encompass triage, investigation assistance, containment coordination, lessons learned, and tracking corrective actions.

• Create and sustain incident response playbooks, runbooks, and escalation procedures; engage in and facilitate tabletop exercises.

• Manage and enhance enterprise security controls and tools (such as endpoint protection/EDR, SaaS security measures, email security, and access control workflows), ensuring reliable setup and continual effectiveness.

• Collaborate with Observability Engineering to guarantee that security-relevant telemetry is accessible for investigations and responses, without taking ownership of the SIEM/telemetry platform administration.

• Work in conjunction with Vulnerability Management to drive remediation efforts, validate fixes when necessary, and minimize repeat findings through hardening and improvements in controls.

• Coordinate security investigations with DevOps, IT, and Engineering teams; monitor actions through to completion and document results.

• Support access governance and least-privilege initiatives, which include periodic access reviews, privileged access workflows, and secure authentication controls.

• Develop and maintain security documentation for processes, controls, and operational procedures to ensure consistency across teams and locations.

• Assist with security control evidence and operational readiness activities for compliance frameworks (such as SOC 2, ISO 27001, FedRAMP/GovRAMP, NIST 800-53) in collaboration with Compliance and platform teams.

• Identify automation opportunities to enhance the efficiency of security operations (including ticketing workflows, control checks, integrations, and scripting).

⛳️ Requirements

• Over 5 years of experience in Information Security, Security Engineering, or Security Operations roles within a SaaS or cloud-focused environment.

• Practical experience in supporting incident response and investigations, including creating/using runbooks and taking part in post-incident evaluations.

• Experience in implementing and managing security controls and tools across endpoints, SaaS applications, and cloud environments.

• Proficient understanding of cloud security fundamentals (AWS, Azure, or GCP), identity/access concepts (SSO, MFA, RBAC), and contemporary security best practices.

• Ability to work effectively with technical teams (DevOps, Engineering, Observability, AppSec) to facilitate remediation and measurable risk reduction.

• Familiarity with vulnerability and risk concepts (CVEs, prioritization, remediation tracking), even if not the program owner.

• Strong documentation practices and an operational mindset (emphasizing clear processes, repeatability, and auditability).

• In compliance with FedRAMP requirements, candidates must be classified as a U.S. Person.

🏝️ Benefits

• Medical, Dental & Vision coverage (including domestic partnerships).

• Employer-funded Life Insurance & Employee/Spouse/Child Supplemental Life options.

• Voluntary Short/Long Term Disability Insurance.

• 401K plans (Roth/Traditional).

• A generous Paid Time Off (PTO) plan that acknowledges your commitment and seniority (including paid Bereavement/Jury Duty, etc.).

• Annual bonuses that exceed market standards.