Security Engineer I

About The Position

Requirements

• Working knowledge of Google Workspace, Okta, Slack, Jira, Kandji, and Intune.
• Familiarity with AWS fundamentals (IAM, Secrets Manager, KMS) and centralized logging (Loki).
• Experience with monitoring/alerting in Datadog and basic query/visualization for investigations.
• Comfort with Linux/macOS administration and common endpoint/network troubleshooting.
• Exposure to scripting or automation (Python, Bash, Go) and strong Git hygiene for config/runbook changes.
• Patient, professional, and approachable when partnering with non‑technical staff.
• Clear, concise asynchronous communication and documentation; constructive collaboration across teams.
• Ownership mindset; follows tasks through to completion and escalates risks early.
• Uses logs, alerts, and runbooks to diagnose issues; proposes minimal, testable fixes.
• Applies least‑privilege and defense‑in‑depth principles; makes risk‑based, auditable decisions.
• Identifies root causes and contributes durable prevention measures.
• Education: Bachelor’s degree in a technical field or equivalent practical experience.
• Experience: Approximately 1–2 years in security operations, IT support, or related roles (relevant internships or open‑source contributions considered).
• Foundational Practices: MFA, phishing awareness, least‑privilege, secure handling of credentials/secrets.
• Other Requirements: Strong written and verbal communication.

Nice To Haves

• Hands‑on experience with Okta (group/rule hygiene, lifecycle), Google Workspace administration, Kandji/Intune compliance policies.
• Familiarity with AWS security (IAM roles/policies, security groups, encryption at rest/in transit) and CloudTrail/CloudWatch log flows.
• Experience building Datadog monitors/dashboards and basic detections; exposure to SIEM concepts.
• Experience with Python for automation and security tooling integration.
• Experience with Terraform for secure resource configuration and deployment.
• Awareness of web/mobile app security considerations.
• Experience with Docker and AWS ECS/EKS for securing and managing containerized applications.

Responsibilities

• Creates, monitors, and triages security signals in Datadog, CloudWatch, and Loki; participates in SIEM evaluation and onboarding.
• Supports vulnerability management by tracking findings, driving remediation with service owners, and verifying closure against agreed SLAs.
• Maintains identity and access hygiene in critical applications: enforces MFA, applies least‑privilege access patterns, and participates in periodic access reviews.
• Assists with endpoint security baselines via Kandji, Intune, and SentinelOne; helps remediate non‑compliant devices.
• Supports secure SDLC practices: dependency hygiene, secrets management, and security checks in CI; raises risks in design/review with actionable recommendations.
• Contributes to web/mobile application security by coordinating with product/engineering on secure release practices and platform‑specific control considerations.
• Coordinates and maintains security training and awareness campaigns.
• Authors and maintains security documentation: policies, procedures, runbooks, FAQs, and user‑facing guidance.
• Support audits, compliance assessments, and third-party risk reviews.
• Onboarding & Offboarding: Sets up accounts, provisions hardware, applies appropriate access controls; collects, wipes, and reassigns devices during offboarding.
• Asset Management: Tracks and reconciles hardware/software inventory; assists with shipping, receiving, and device preparation for employees.
• Helpdesk / Jira Ticket Support: Monitors Jira queues and Slack Support channels. Meet first‑response SLAs; handles routine troubleshooting (account lockouts, software installs, printer/network issues); escalates complex issues with clear notes and reproduction steps.
• Troubleshooting & Hands‑On Support: Joins calls or screen shares with end users for initial diagnosis; communicates clearly and walks users through fixes.