Senior Enterprise Security Engineer

About The Position

Requirements

• 5+ years in security engineering with deep hands-on ownership of endpoint security (Kandji/Intune/Jamf/CrowdStrike), SaaS security, or DLP.
• Hands-on AWS security experience, including IAM policies, CloudTrail. Ability to investigate cloud activity end-to-end and design guardrails.
• Advanced knowledge of operating systems with core competency in two or more of: device hardening (macOS, Windows), SaaS security, DLP, or assurance and validation.
• Experience securing corporate email infrastructure, including SPF, DKIM, DMARC, and anti-phishing controls in Google Workspace or equivalent.
• Experience designing and operating zero trust access controls, including device trust signals, conditional access, and contextual access policies.
• Proven track record driving the implementation of preventative controls.
• Experience managing EDR fleet health at scale, including agent deployment, version currency, policy compliance, and coverage gap remediation (CrowdStrike Falcon preferred).
• Fluent AI user. Daily use of AI tools like Claude, Cursor, Claude Code, or equivalent; understanding of LLM output trustworthiness and limitations; experience shipping production automations or agents.
• Comfortable building with APIs and MCP, not just configuring GUIs.
• Clear, direct communicator who pushes back on risk and drives alignment with IT, Engineering, and leadership.
• Strong collaborator who prioritizes ruthlessly and operates independently under minimal supervision.
• Bias for engineering over ticketing; zero-trust mindset grounded in pragmatism.
• Bachelor’s degree or equivalent.

Nice To Haves

• OSCP, GIAC or equivalent advanced certs.
• Experience building agent-assisted security workflows with MCP servers.
• Experience with DLP tooling.
• Familiarity with compliance frameworks (SOC 2, ISO 27001, NIST CSF).

Responsibilities

• Develop systems and tools that improve the security posture of Life360's DLP, device hardening, SaaS, and zero trust layers.
• Execute security strategy and policy for Life360-built services and SaaS applications.
• Review and provide architectural guidance on infrastructure systems, fleet management, and automation.
• Own EDR agent deployment health and coverage across the endpoint fleet, ensuring CrowdStrike Falcon agents are installed, current, and correctly configured on every managed device; identify and close coverage gaps in partnership with IT and D&R.
• Partner with D&R on log source enablement, ensuring corporate systems (Kandji, Intune, Slack, Box, Google Workspace) emit the telemetry D&R needs for detection and investigation, without owning the detection logic itself.
• Build and operate agent-assisted workflows that take action across endpoint, SaaS, and awareness domains — directing AI more than doing the work by hand, with appropriate guardrails on anything that touches sensitive data or production systems.
• Automate manual toil using Python, Tray.io, Lambda, and AI agents across endpoint, SaaS, and corporate security workflows.
• Engineer controls that satisfy SOC 2 and privacy requirements across device and SaaS layers, partnering with GRC on evidence collection and audit readiness.
• Own the security awareness program end-to-end, including developing and delivering training, running phishing simulations, tracking and reporting metrics, and continuously improving the program to drive measurable behavior change.

Benefits

• Competitive pay and benefits
• Medical, dental, vision, life and disability insurance plans (100% paid for employees)
• 401(k) plan with company matching program
• Mental Wellness Program & Employee Assistance Program (EAP) for mental well-being
• Flexible PTO, 13 company-wide days off throughout the year
• Winter and Summer Weeklong Synchronized Company Shutdowns
• Learning & Development programs
• Equipment, tools, and reimbursement support for a productive remote environment
• Free Life360 Platinum Membership for your preferred circle
• Free Tile Products