Senior Security Engineer

This is a fully remote position, open to applicants in New York.

📋 Description

• Take charge of the design, configuration, and continuous enhancement of endpoint protection and EDR tools throughout the organization.

• Manage and optimize zero-trust networking and identity tools (policy design, tuning, and operational resilience).

• Collaborate with IT to develop and implement IAM strategies (joiner/mover/leaver, privileged access, MFA, conditional access, SSO).

• Establish operational standards (runbooks, playbooks, SLAs) for corporate security tools and support workflows.

• Utilize automation and AI-driven features to minimize manual workload and enhance detection, response time, and consistency.

• Lead incident response planning, execution, and post-incident evaluations; implement improvements based on lessons learned.

• Develop and refine detections (alerts, rules, behavioral analytics) to ensure effective monitoring with high signal-to-noise ratios.

• Manage threat intelligence gathering, analysis, and internal distribution; convert intelligence into actionable controls.

• Coordinate cross-functional response initiatives (IT, Engineering, HR, Legal, vendors) during security incidents.

• Conduct root-cause analyses for recurring security concerns and drive corrective and preventive measures.

• Oversee security training and phishing simulation programs; evaluate results and enhance effectiveness over time.

• Act as an escalation point for internal security inquiries and support tickets; enhance user experience with security controls.

• Provide security guidance to teams to facilitate productivity while ensuring appropriate risk management.

• Define, monitor, and report KPIs that evaluate control effectiveness (coverage, MTTD/MTTR, phishing resilience, patch/EDR compliance).

• Communicate the security posture, risks, and trends to leadership with clear recommendations and prioritized action plans.

• Identify and implement enhancements to the visibility, automation, scalability, and resilience of security operations.

⛳️ Requirements

• A minimum of 6 years of experience in corporate IT, security engineering, or security operations.

• Practical expertise in endpoint protection/EDR, identity security, and network security controls within modern SaaS settings.

• Strong background in zero-trust technologies and identity platforms (e.g., Zscaler; Okta or Entra ID; conditional access/MFA/SSO).

• Proven experience in leading incident response processes from start to finish, including post-incident remediation and control enhancements.

• Experience in developing or advancing threat intelligence, detection engineering, and security monitoring initiatives.

• Capability to automate operational tasks (e.g., scripting, SOAR-like workflows, API integrations) to enhance scalability and reliability.

• Exceptional communication skills, sound judgment, and a collaborative approach; comfortable working cross-functionally with IT, HR, Engineering, and vendors.

• Demonstrated ability to prioritize tasks effectively, take ownership, and drive measurable improvements to security outcomes.

• Bachelor’s degree in Information Security, Computer Science, Information Systems, or equivalent practical experience.

• Relevant certifications are advantageous (e.g., Security+, SSCP, CISSP, GIAC, vendor certifications for identity/EDR/zero-trust).

🏝️ Benefits

• Comprehensive benefits package including health, dental, and vision insurance.

• A 401(k) plan with company matching contributions.

• Generous paid time off to promote your well-being.

• Flexible work environment, whether remote, hybrid, or in-office.