Staff Security Engineer
About The Position
We are seeking a Staff Security Engineer who operates at the nexus of high-level strategy and multi-tenant operational excellence. While a traditional internal role secures a single enterprise perimeter, you are responsible for the integrated defense fabric of a vast portfolio of diverse client environments. You will navigate the complexities of varied compliance needs and legacy technical debt, transforming them into a unified, scalable security posture. This is a technical leadership role designed for an expert who prefers the keyboard and the whiteboard over a people-management track, focusing on the "big picture" of our global security product stack.
Requirements
- Expert-level AWS/Azure security
- Zero Trust Architecture (ZTA)
- Advanced IAM/Entra ID
- Advanced SOAR/SIEM engineering (Sentinel, Splunk, CrowdStrike)
- MITRE ATT&CK mapping
- Deep-packet inspection
- BGP security
- SD-WAN
- SASE
- Micro-segmentation
- Proficiency in Python, Terraform, or Ansible for infrastructure-as-code
- CISSP (Highly Preferred), CISM, CCSP, or specialized GIAC (GCIH/GCFA)
- 8–12+ Years in Information Security
- Significant background (3+ years) in multi-client consulting or MSP environments
- Proven track record of leading cross-functional projects and mentoring senior engineers without direct-report authority
- The rare ability to pivot from a deep-dive technical audit with an engineer to a risk-based ROI presentation for a CEO.
Responsibilities
- Architect and maintain hardened, isolated security stacks (SIEM, EDR, XDR) designed to scale across hundreds of distinct client environments.
- Serve as the technical lead for vendor evaluations, "battle-testing" emerging tech to define our global standard offerings.
- Engineer "Gold Image" baselines and automated deployment templates based on CIS and NIST frameworks to ensure rapid, secure onboarding.
- Serve as the ultimate technical escalation point for the SOC, leading the response to sophisticated APTs and complex breaches.
- Conduct deep-dive Root Cause Analysis (RCA) and translate incident findings into systemic, fleet-wide preventative measures.
- Build the automation tissue that connects our stack, utilizing Python, PowerShell, and Terraform to automate threat containment and patch management.
- Develop custom API integrations to bridge gaps between vulnerability scanners, RMM tools, and ticketing systems for seamless auto-remediation.
- Act as a high-level advisor for key accounts, translating abstract risk into actionable business roadmaps for C-suite stakeholders.
- Oversee technical evidence collection and governance for HIPAA, SOC 2, and CMMC, ensuring our clients remain audit-ready.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
Education Level
No Education Listed
