System Engineer [Contract to Hire]

Cart.com•Houston, TX

2d•Remote

About The Position

We’re Cart.com, one of the fastest growing commerce enablement companies in the world. We provide the digital and physical infrastructure that empowers thousands of leading B2C, B2B and public sector organizations to unify commerce operations from product discovery to product delivery. We’re building toward a world where commerce has no bounds. Our enterprise-grade software, services and logistics infrastructure, including our own network of omnichannel fulfillment and distribution centers, enable merchants to navigate an increasingly complex operating landscape and drive efficient growth. Our goal is to be the global backbone of commerce. To achieve it, we’re looking for entrepreneurial, innovative and determined teammates who are eager to help our growing base of customers simplify their commerce operations and seamlessly reach their own customers, wherever they are. Sound like you? We’d love to hear from you. Cart.com Fast Facts: 6,000+ customers worldwide 1,600+ employees globally 17 warehouses nationwide, totaling over 10 million square feet of space Headquartered in Houston, TX with international offices in Mexico and Poland. This position is open to applicants or individuals who are located in or willing to move to AZ, CA, CO, CT, DE, FL, GA, HI, IL, IN, KY, MD, MA, MI, MS, NE, NV, NJ, NY, NC,OH, OR, PA, SC, TN, TX, UT, VA, WA.

Requirements

3–5 years of experience as a system or security engineer in an enterprise environment.
Exposure to AI‑enabled security tools or platforms (e.g., AI‑assisted threat detection, automated response, intelligent alerting).
Hands‑on experience with SentinelOne or equivalent EDR/XDR platforms.
Strong understanding of patch management and vulnerability remediation best practices for Windows, macOS, and Linux systems using Tanium or other similar patching solutions.
Working knowledge of Microsoft Entra ID (Azure AD), Microsoft 365, and SaaS administration.
Experience supporting Windows, macOS, and Linux operating systems at scale.
Familiarity with cloud infrastructure and containerized workloads (Kubernetes experience preferred).
High proficiency in scripting and automation (PowerShell, Python, Bash, or equivalent).

Nice To Haves

Bachelor’s degree in Computer Science, Information Technology, Engineering, or related field — or equivalent practical experience.
CompTIA certifications (A+, Network+, Server+) strongly preferred.
SentinelOne or Tanium certifications recommended.
Microsoft, Azure, or cloud security certifications (MCP, AZ‑series) are a plus.
Experience working in Agile or DevOps‑oriented environments preferred.

Responsibilities

Own and administer the SentinelOne platform across workstations, servers, and Kubernetes workloads.
Ensure SentinelOne agents are deployed, healthy, and running supported versions across all environments (Windows, macOS, Linux, Kubernetes).
Evaluate and adopt emerging AI‑powered security features and tooling to enhance detection fidelity and reduce operational noise.
Monitor the SentinelOne management console for agent health, policy compliance, and security events; troubleshoot and remediate issues as needed.
Stay current on SentinelOne releases, features, and advisories; plan and execute agent upgrades to address bugs, vulnerabilities, and enhancements.
Partner with incident response teams and business units to investigate alerts, support containment and remediation, and participate in post‑incident reviews.
Leverage AI‑driven capabilities within XDR, endpoint, and security platforms to improve alert triage, threat prioritization, and response workflows.
Collaborate with security leadership to responsibly introduce AI technologies while considering governance, data protection, and risk.
Administer and support Tanium for patch deployment and vulnerability remediation.
Own the patching lifecycle for endpoints and servers, including: patch assessment and prioritization, testing and validation, deployment orchestration, post‑deployment verification and reporting.
Use Tanium modules to track patch compliance, maintain accurate application inventory, and reduce exposure windows.
Coordinate patching activities with infrastructure, application, and business teams to minimize operational impact.
Respond to emerging vulnerabilities (zero‑days, actively exploited CVEs) with rapid mitigation or patch deployment.
Develop and maintain patching standards, maintenance windows, and compliance metrics.
Perform general system administration across production and non‑production environments.
Maintain, configure, and support Windows, macOS, and Linux systems at enterprise scale.
Leverage third‑party monitoring tools to ensure endpoint and system availability, performance, and reliability.
Serve as the highest tier of technical escalation for complex system and security issues.
Manage vendor relationships and escalations for endpoint, security, and infrastructure platforms.
Develop and maintain automation using PowerShell, Python, Bash, or similar scripting languages to improve operational efficiency and consistency.
Create and maintain technical documentation, runbooks, and standard operating procedures (SOPs).
Provide technical guidance and mentorship to service desk and junior engineers.
Participate in an on‑call rotation supporting production systems as required.