Senior Security Engineer

📋 Description

• Implement and fine-tune security measures across both on-premises and cloud environments (IaaS, PaaS, SaaS)

• Ensure effective integration of security architectures as designed by leadership

• Identify, evaluate, and monitor security vulnerabilities throughout infrastructure, cloud environments, endpoints, and applications

• Conduct risk-based analyses to prioritize remediation efforts, collaborate with IT and Engineering teams to drive solutions, and validate the effectiveness of remediation

• Maintain and oversee security configurations across various cloud providers

• Manage and resolve issues with on-premises security controls, including firewalls, endpoint protection (EDR), and virtualization security

• Administer and enforce Identity and Access Management (IAM) policies, which include SSO integration, MFA implementation, and management of Privileged Access Management (PAM) tools

• Act as a primary technical responder during security incidents, aiding in investigation, containment, and documentation of post-incident outcomes

• Maintain security tools and create scripts (e.g., Python, Terraform) to automate repetitive security tasks and enhance operational efficiency

• Assist in collecting evidence for audits and ensuring our controls comply with industry standards such as ISO 27001, SOC 2, or PCI DSS

⛳️ Requirements

• Bachelor’s degree in Computer Science, Cybersecurity, or a related field (or equivalent hands-on experience)

• 4–6 years of experience in cybersecurity engineering or infrastructure security

• Practical experience in configuring security settings within at least one prominent cloud provider (AWS, Azure, or GCP)

• Strong understanding of network protocols, firewalls, and endpoint security technologies

• Proficiency in using scripting languages (e.g., Python, PowerShell) or Infrastructure as Code (Terraform, CloudFormation) for managing security configurations

• Hands-on experience with identity providers (e.g., Okta, Azure AD) and Role-Based Access Control (RBAC) models

• Excellent documentation skills for technical processes and the ability to communicate security risks to colleagues and cross-functional teams

• Relevant certifications such as CompTIA Security+, GIAC (GSEC/GCIH), or Associate-level Cloud Security certifications (e.g., AWS Certified Security Specialty) are advantageous

🏝️ Benefits

• Generous Paid Time Off (PTO) policy

• Support for work-life balance with Unplugged Days

• Flexible Work From Home (WFH) policy

• Mental and Physical Wellness programs

• Phone and Internet Reimbursement program

• Access to Continuous Career Development opportunities

• Comprehensive benefits and competitive compensation packages

• Paid time off for volunteer work

• Employee Resource Groups