Corporate Security Engineer

About The Position

Requirements

• Bachelor’s degree in computer science, engineering, or related field
• Prior professional experience in corporate security, IT security operations, security operations, endpoint security, identity administration, or a security-focused IT engineering role.
• Experience administering identity providers, SSO, MFA, directory systems, and SaaS access controls.
• Experience managing endpoint security controls across macOS and/or Windows devices using MDM, EDR, disk encryption, and patch management tools.
• Knowledge common corporate security workflows, including onboarding/offboarding, access reviews, phishing response, suspicious login investigation, and endpoint alert triage.
• Knowledge of networking fundamentals, including TCP/IP, DNS, DHCP, routing, VPNs, firewall rules, and secure Wi-Fi.
• Ability to write, modify, and run scripts in Python, Bash, PowerShell, or a comparable language to automate workflows.
• Ability to use REST APIs to integrate administrative systems, export security data, pull metrics, or automate operational workflows.
• Ability to use Git for documentation, scripts, configuration tracking, or operational change management.
• Communication skills and the ability to document repeatable security and IT procedures.

Nice To Haves

• Prior startup experience in a security, IT, infrastructure, or operations role.
• Experience with tools such as Google Workspace, JumpCloud, Okta, Cloudflare, Tailscale, Jamf, Kandji, Intune, CrowdStrike, SentinelOne, Datadog, AWS, or similar platforms.
• Familiarity with SOC 2, ISO 27001, CIS Controls, or similar security/compliance frameworks.
• Experience supporting security questionnaires, audit evidence collection, access reviews, or vendor security reviews.
• Experience automating identity, endpoint, SaaS administration, or compliance workflows.
• Certifications such as CompTIA Security+, Network+, Cisco CCNA, AWS Certified Cloud Practitioner, or equivalent practical experience.

Responsibilities

• Own identity and access management across SSO, directory systems, MFA, SCIM provisioning, and corporate SaaS applications.
• Manage secure onboarding, offboarding, access changes, and recurring access reviews across employee systems.
• Administer and improve endpoint security controls across macOS and Windows devices, including MDM, disk encryption, patch compliance, EDR coverage, and device posture reporting.
• Provision, manage, and de-provision laptops and employee devices using automated MDM tools.
• Triage and investigate security alerts from identity providers, endpoint security tools, firewalls, VPN/Zero Trust systems, SIEM/logging platforms, and SaaS applications.
• Support phishing response, suspicious login investigations, endpoint security events, and other corporate security incidents.
• Maintain and improve corporate network security, including secure Wi-Fi, VLAN basics, VPN/Zero Trust access, firewall hygiene, and office network troubleshooting.
• Diagnose and resolve multi-platform hardware, software, access, and local network issues for onsite, hybrid, and distributed teams.
• Build scripts and automations using Python, Bash, PowerShell, or REST APIs to reduce manual work across onboarding, offboarding, access reviews, device compliance, system telemetry collection, and audit evidence collection.
• Use REST APIs to pull metrics, reconcile access, integrate administrative systems, and automate security operations workflows.
• Support routine security patch management, vulnerability remediation tracking, and corporate compliance validation.
• Support SOC 2 and other compliance efforts by producing evidence for access controls, device management, security monitoring, patching, and user lifecycle management.
• Maintain security runbooks, IT/security documentation, administrative scripts, and Git-backed operational procedures.
• Utilize Git for documentation, change tracking, and sharing administrative source code.
• Partner with engineering and operations teams on secure access to internal systems, VPN/private network access, least-privilege permissions, and security process improvements.
• Provide escalation-level IT support for employee devices, account access, local network issues, and corporate systems.

Benefits

• Competitive salary
• Comprehensive benefits package