Senior Staff Security Engineer

This is a fully remote position, open to applicants in California.

📋 Description

• Strategic Security Architecture and Product Strategy

• Mastery in Tier 4 Escalation and Forensics

• Security Engineering and Hyper-Automation

• High-Stakes Advisory and Governance

⛳️ Requirements

• 8 to 12+ years of experience in Information Security, including a substantial background (3+ years) in multi-client consulting or Managed Service Provider (MSP) settings.

• Proven capability as a Force Multiplier: Demonstrated experience in leading cross-functional projects and mentoring senior engineers without direct-report authority.

• Bilingual Communication: A unique skill set that allows for transitions from in-depth technical audits with engineers to risk-based ROI presentations for executives.

• Expert-level knowledge of AWS/Azure security; Zero Trust Architecture (ZTA); Advanced IAM/Entra ID.

• Advanced engineering skills in SOAR/SIEM (Sentinel, Splunk, CrowdStrike); experience with MITRE ATT&CK mapping.

• Proficiency in deep-packet inspection; BGP security; SD-WAN; SASE; and Micro-segmentation.

• Skilled in Python, Terraform, or Ansible for infrastructure-as-code.

• Certifications such as CISSP (Highly Preferred), CISM, CCSP, or specialized GIAC (GCIH/GCFA).

🏝️ Benefits

• Scalable Multi-tenancy: Design and maintain robust, isolated security stacks (SIEM, EDR, XDR) tailored to scale across numerous distinct client environments.

• Product Vetting: Act as the technical lead for vendor assessments, rigorously testing emerging technologies to establish our global standard offerings.

• Global Standardization: Create "Gold Image" baselines and automated deployment templates grounded in CIS and NIST frameworks to facilitate swift and secure onboarding.

• Final Authority: Assume the role of the ultimate technical escalation point for the Security Operations Center (SOC), directing responses to sophisticated Advanced Persistent Threats (APTs) and intricate breaches.

• Post-Mortem Leadership: Execute comprehensive Root Cause Analysis (RCA) and convert incident insights into systemic, fleet-wide preventative strategies.

• Security as Code: Construct the automation framework that unifies our stack, employing Python, PowerShell, and Terraform to automate threat containment and patch management.

• Integration Engineering: Create custom API integrations to connect vulnerability scanners, Remote Monitoring and Management (RMM) tools, and ticketing systems for seamless auto-remediation.

• Strategic vCISO: Serve as a high-level advisor for key accounts, translating abstract risks into actionable business strategies for C-suite stakeholders.

• Compliance Orchestration: Manage the technical evidence gathering and governance for HIPAA, SOC 2, and CMMC, ensuring that our clients remain prepared for audits.