Senior Corporate Security Engineer

Summary

Join our team as a Senior Corporate Security Engineer and play a vital role in securing our corporate environment across devices, applications, and networks. This position requires a deep understanding of enterprise IT security within a SaaS company and a passion for automation and scaling security processes. You will manage workforce IAM and identity governance, secure devices and endpoints, implement Zero Trust Network Access, enhance email security, and deploy DLP solutions. The role also involves enabling large-scale endpoint management, orchestrating security posture checks, implementing endpoint state attestation, scaling proactive security controls, and collaborating on physical security. Staying current with industry trends and developing custom security solutions are also key responsibilities.

Requirements

• Experience: Minimum of 5 years of experience in corporate security engineering within a SaaS or similar environment
• Strong knowledge of securing devices and endpoints
• Proficiency with Okta for workforce Identity and Access Management
• Experience with access management automation and workflows
• Experience with securing Google Workspace and Microsoft Enterprise Suite
• Familiarity with networking, switches, firewalls and minimal physical hardware setups
• Knowledge of deploying security solutions across SaaS applications
• Understanding of Zero Trust Network Access models
• Experience with infrastructure management tools (Puppet, Chef, Ansible, Terraform)
• Knowledge of Data Loss Prevention strategies in SaaS applications
• Experience with vulnerability management tools and methodologies
• Ability to automate tasks using a scripting language or no-code/low-code automation tools
• Ability to effectively communicate complex security concepts to technical and non-technical stakeholders, including collaboration with the physical security team
• Demonstrated ability to identify security risks and develop effective mitigation strategies
• Passion for automating processes to improve efficiency and scalability
• Bachelor's degree in Computer Science, Information Security, or a related field preferred

Responsibilities

• Manage Workforce IAM and identity governance (IGA): Oversee and optimize our Identity and Access Management systems, specifically leveraging Okta, to ensure secure and efficient user authentication and authorization and implement access management and approval automation workflows
• Secure Devices and Endpoints: Develop and implement security strategies for all corporate devices and endpoints to protect against unauthorized access and threats
• Implement Zero Trust Network Access: Design and deploy Zero Trust security models to enhance network security and safeguard company resources
• Enhance Email Security: Develop and maintain robust email security protocols to prevent phishing, spam, and other email-borne threats
• Deploy Data Loss Prevention (DLP) Solutions: Implement DLP strategies focusing on protecting PII and PCI data within SaaS applications like Google Workspace, Salesforce, and Box
• Enable Large-Scale Endpoint Management: Facilitate the deployment of secure operating systems and platforms at scale to reduce attack surfaces and improve endpoint management
• Orchestrate Security Posture Checks: Automate security checks for all new infrastructure deployments to ensure compliance with security standards
• Implement Endpoint State Attestation: Deploy tooling to continuously validate the security state of endpoints
• Scale Proactive Security Controls: Extend security measures to new environments, including those acquired through mergers or acquisitions
• Collaborate on Physical Security: Work closely with the physical security team to integrate security measures and communicate effectively about potential risks and solutions
• Stay Current with Industry Trends: Keep abreast of the latest security threats, technologies, and trends to proactively address potential vulnerabilities
• Develop Custom Security Solutions: Contribute to the development of custom and open-source security tools tailored to our needs

Preferred Qualifications

• Okta Certification is a plus
• Experience with access management automation and workflows, using OKTA IGA (preferred), Microsoft Entra ID,, sailpoint or a similar platform
• Hands-on experience implementing an enterprise zero trust network access solution such as ZScaler a strong plus
• Okta Certified Professional or higher, CISSP, CISM, or similar security certifications

Benefits

Pay Range $127,500 — $230,000 USD