Mover Jobs

About The Position

Requirements

• 3–5 years of hands-on security engineering experience, ideally in a software or cloud-native environment
• Proven track record of implementing security tools and controls (not just scoping or recommending)
• Solid working knowledge of AWS security services (IAM, SCPs, GuardDuty, Security Hub, CloudTrail)
• Hands-on experience with Cloudflare (WAF, Zero Trust, DLP) or demonstrated ability to learn quickly
• Experience deploying and managing endpoint protection (EDR/MDM) across developer and production environments
• Familiarity with software supply chain concepts (SBOMs, dependency management, artifact signing, SLSA)
• Experience integrating SAST/SCA/DAST tools into CI/CD pipelines
• Scripting or light automation skills (Python, Bash, or similar)
• Ability to work independently, prioritize ruthlessly, and operate without a playbook

Nice To Haves

• Familiarity with Nix, package management, or reproducible build systems
• Experience evaluating or managing an outsourced SOC relationship
• Prior SIEM deployment or detection engineering experience
• Experience supporting SOC 2 or ISO 27001 audits
• Security certifications (CISSP, OSCP, AWS Security Specialty, etc.)

Responsibilities

• Deploy, configure, and maintain detection, monitoring, and response capabilities (SIEM or outsourced SOC) and tune alerting
• Build and test incident response runbooks and triage workflows, including backup/ransomware recovery checks
• Harden cloud infrastructure (AWS) posture: IAM, SCPs, security groups, GuardDuty, Security Hub, and automated guardrails
• Configure and manage Cloudflare across WAF rules, DDoS protection, bot management, Zero Trust access, and DLP policies
• Implement IaC security scanning (e.g., Checkov, tfsec) in CI/CD pipelines and operate CSPM tooling end-to-end
• Deploy and manage endpoint protection (EDR/MDM), define endpoint compliance policies, and balance developer friction with security controls
• Secure build and release pipelines, stand up vulnerability scanning, and own remediation workflows for third-party components
• Integrate SAST/SCA tooling into developer workflows and participate in threat modeling and security design reviews
• Audit and rationalize identity and access across cloud, SaaS, and internal tooling; drive SSO consolidation, enforce MFA, and implement least-privilege access
• Own joiner/mover/leaver entitlement processes and build a lightweight access review cadence

Benefits

• Competitive salary
• Meaningful equity
• Flexible hybrid environment