Senior Security Engineer

Summary

Join Censys as a Senior Security Engineer to lead the design, implementation, and management of our internal security infrastructure, protecting the integrity, confidentiality, and availability of our systems. You will serve as a technical authority, partnering with IT, compliance, and business units to drive security-first practices. This critical role involves architecting and implementing enterprise security controls across various environments, leading the deployment and management of security technologies, and assessing and improving our internal security posture. You will also define and enforce secure configurations, design access controls, and drive defense-in-depth strategies. Collaboration with compliance teams and mentoring junior engineers are also key aspects of this position.

Requirements

• 5+ years of experience in information security, with a focus on internal enterprise security
• Deep knowledge of endpoint, network, and cloud security principles and technologies
• Hands-on experience implementing and managing IAM, EDR, SIEM, and VPN tools at scale
• Strong grasp of secure system configurations, operating system hardening, and access control models
• Familiarity with compliance frameworks (e.g., SOC 2, ISO 27001, NIST) and regulatory requirements
• Demonstrated ability to collaborate cross-functionally with IT, compliance, and business units
• Excellent communication skills with the ability to translate complex security topics to non-technical stakeholders
• A figure-it-out, resourceful attitude and act with a sense of urgency

Responsibilities

• Architect and implement enterprise security controls across endpoints, networks, identity systems, and cloud environments
• Lead the deployment and management of technologies such as EDR/XDR, firewalls, DLP, VPNs, identity and access management (IAM), and SIEM solutions
• Assess and improve internal security posture by identifying gaps, performing risk assessments, and developing remediation plans
• Define and enforce secure configuration baselines for systems, applications, and infrastructure
• Design and oversee role-based access controls and identity federation strategies across internal services and SaaS platforms
• Drive defense-in-depth strategies to proactively protect internal assets from both external threats and insider risk
• Collaborate with compliance teams to ensure alignment with frameworks such as ISO 27001, SOC 2, and NIST, and support audit preparation and response
• Partner with IT operations and business stakeholders to securely enable employee productivity while minimizing risk
• Monitor internal environments for anomalies and respond to incidents in coordination with incident response playbooks
• Partner with Sales to ensure we are meeting compliance objectives and requirements
• Mentor junior engineers and promote a security-first culture throughout the organization

Preferred Qualifications

• Experience with automation tooling and/or scripting (e.g., Python, PowerShell, Bash)
• Experience working in a hybrid environment, on-prem + SaaS
• Familiarity with MDM, secure remote access, and Zero Trust platforms

Benefits

• Our target salary range for this role is between $162,000 USD and $205,000 USD + bonus eligibility and equity
• This position is located remote with no expectation to come into an office