Corporate Security Engineer, Lead

About The Position

Requirements

• Significant experience in corporate security, IT security, or security engineering, with a track record of building programs or capabilities rather than operating within established ones.
• Strong technical depth across several of the following: identity and access management, SaaS security, endpoint management, DLP, network security, detection and response.
• Demonstrated ability to build tooling and automation that enforce controls, not just define them. You've written code, built integrations, or implemented systems that actively reduce risk in a production environment.
• Experience working within or closely alongside IT organizations. You understand the operational realities of IT — device management, support workflows, tooling constraints — and can build security practices that work with these realities rather than against them.
• The ability to define and communicate risk clearly to both technical and non-technical stakeholders, and comfort making sequencing decisions with imperfect information.
• A bias toward pragmatic, enforceable controls over theoretical frameworks.

Nice To Haves

• Experience with macOS-heavy environments managed through Jamf Pro or Fleet.
• Familiarity with OAuth governance, Slack integration management, or SaaS security posture management (SSPM) tooling.
• Experience building toward Zero Trust architecture or implementing DLP at a growth-stage company.

Responsibilities

• Own the centralized risk register and drive remediation across SaaS applications, integrations, endpoints, identity, and access paths.
• Secure our SaaS and integration landscape by auditing and governing OAuth applications, Slack integrations, and third-party connections, and by establishing authorization controls and ongoing review processes.
• Design and implement enforcement systems — automation and integrations that continuously enforce controls, detect and revoke unauthorized access, govern OAuth scopes, and monitor integration activity.
• Improve endpoint and user-level visibility, working with existing endpoint management tooling to manage risk from user-installed applications and browser extensions.
• Sequence a broader security roadmap across adjacent domains (DLP, IAM, Zero Trust, vendor security, detection and response, and more), and shape how the team grows over time.

Benefits

• Flexible (unlimited) paid time off
• Medical, dental, and vision benefits for you and your family
• Life insurance and disability benefits
• Retirement plan dependent on country of employment
• Parental leave
• Fertility and family building benefits through Carrot
• Lunch, as well as delicious snacks and coffee to keep you energized
• Discretionary benefit stipend giving people the ability to spend where it matters most
• Free alphorn lessons