Staff IT Security
About The Position
Terzo processes some of the most sensitive commercial data in the enterprise world for Fortune 500 customers who expect enterprise-grade security as a baseline. Keeping that trust means our internal security posture has to be as strong as our product security. You will own Terzo's internal IT and security infrastructure including endpoint management, identity and access, network security, and the security tooling stack that protects our people, devices, and systems. This includes managing and evolving tools like Defender, Jamf, 1Password, Twingate, Entra ID, and Sentinel across a distributed engineering team. As the role matures, you will grow into owning compliance operations e.g. audit readiness, evidence generation, and continuous monitoring and becoming the person who bridges IT, security, and compliance into a single discipline.
Requirements
- 5+ years of experience in IT security, security engineering, or systems administration with a strong security focus
- Hands-on experience managing endpoint security, MDM, and device management across Mac and Windows fleets (Jamf, Intune, Defender)
- Strong understanding of identity and access management including SSO, MFA, conditional access, zero-trust network access
- Experience administering and securing cloud identity platforms (Azure Entra ID, Okta, or similar)
- Comfort scripting and automating IT/security workflows including you build tooling, infrastructure as code, agentic workflows.
- Familiarity with enterprise security frameworks (SOC 2, ISO 27001, NIST 800-171) and how IT controls map to compliance requirements
- Clear communication across engineering, security, and business stakeholders
- High ownership mentality, you see a security gap and close it, not escalate it
Nice To Haves
- Experience managing a ZTNA stack (Twingate, Cloudflare Access, Zscaler, or similar) in a remote-first environment
- Background with SIEM/SOAR platforms (Sentinel, Splunk) for security monitoring and incident response
- Familiarity with GRC platforms and compliance automation tooling
- Experience supporting CMMC Level 2 or FedRAMP readiness from the IT controls side
- Prior work at a high-growth startup where you built the IT/security function from scratch, not just inherited it
- Interest in growing into a compliance operations role as the security program matures
Responsibilities
- Own Terzo's internal IT and security infrastructure including endpoint management, identity and access, network security, and the security tooling stack.
- Manage and evolve tools like Defender, Jamf, 1Password, Twingate, Entra ID, and Sentinel across a distributed engineering team.
- Grow into owning compliance operations, including audit readiness, evidence generation, and continuous monitoring.
- Bridge IT, security, and compliance into a single discipline.
Benefits
- Competitive salary
- Annual performance bonus
- Employee stock option plan
- 100% paid medical, dental, and vision coverage
- 401(k) with employer contribution
- Generous vacation and sick leave
- Flexible work arrangements
- High-quality equipment for home and office
- Strong culture of collaboration, mentorship, and continuous improvement
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
Education Level
No Education Listed
