Security Engineer

About The Position

Requirements

• 3–5 years of experience in security operations, identity/access administration, or a related technical role
• Experience with cloud-native enterprise services
• Solid understanding of identity and access management concepts, including authentication, authorization, least privilege, and role-based access control
• Hands-on experience with privileged access management, with specific experience in endpoint privilege management (managing local administrator rights and elevation)
• Experience running or supporting access reviews and access certifications, and removing unneeded access
• Familiarity with compliance frameworks (e.g., SOC 1, SOC 2, SOX) and supporting the collection of audit evidence
• Comfortable triaging alerts from a SIEM or endpoint security tooling and following documented response procedures
• Experience administering or supporting a security awareness or phishing simulation platform
• Comfortable operating established programs and processes under direction, while contributing ideas to improve them
• Self-motivated, detail-oriented, organized, and able to manage recurring deadlines across multiple workstreams
• Exceptional written and verbal communication, with the ability to document processes clearly

Nice To Haves

• Experience with Azure Privileged Identity Management (PIM) and Azure RBAC
• Experience with an endpoint privilege management solution (e.g., CyberArk EPM, Admin By Request, BeyondTrust)
• Experience administering Okta and Microsoft 365 / Entra ID
• Familiarity with Microsoft Sentinel (or another SIEM) and basic KQL
• Experience with a security awareness platform
• Security certifications (e.g., Security+, SC-900, SC-300, CySA+) or cloud certifications (e.g., AZ-500)

Responsibilities

• Run Coterie’s recurring user access reviews under the direction of the Principal Security Architect, coordinating with system owners to certify access and remove stale or over-provisioned entitlements across our environments
• Gather, organize, and validate evidence to support compliance testing and audits, following established procedures to build evidence packets that trace access and changes from request through approval
• Administer our privileged access management program with oversight, focusing on endpoint privilege management, operating local administrator elevation, least-privilege policies, and just-in-time access on endpoints within approved guardrails
• Support time-bound, approved, and reviewed privileged access through Azure Privileged Identity Management (PIM), including role assignments and periodic recertification of privileged identities
• Triage and respond to security operations alerts from our SIEM and endpoint tooling under the guidance of senior engineers, escalating, documenting, and helping close out incidents
• Run the day-to-day administration of our security awareness program, including building, scheduling, and reporting on phishing simulations and assigning follow-up training
• Follow and maintain the procedures, standards, and documentation the team has established for access reviews, privileged access, and related security operations workflows
• Utilize a risk-based approach to your day-to-day work and surface pain points and recommend continuous-improvement ideas for these programs and processes
• Partner with IT operations, engineering, and compliance teams to help close access and process gaps and mature Coterie’s security posture
• Take on other security operations tasks that support the team, such as detection tuning, vulnerability remediation tracking, and tooling evaluations, as directed and as priorities shift

Benefits

• 100% remote
• Health insurance through Aetna (we pay 100% of premiums)
• Dental and vision insurance through Guardian (we pay 100% of premiums)
• Basic life insurance (we pay 100% of premiums)
• Access to flexible spending account (FSA) or health savings account (HSA) (for those using HSA eligible plans)
• 401K plan (up 4% match with immediate vest). Must be 21 years of age or older to participate
• Flexible PTO policy offering employees up to 4 weeks of PTO in their first 12 months. Thereafter, PTO usage aligns with company standards and typically does not exceed 5 weeks per calendar year.
• 12 company-paid holidays each year
• Continuing education annual stipend