About this role
About the Role We are looking for an Information Security Engineer to help scale and mature our corporate security program in a fast-moving, high-growth environment. This role will focus on identity and access management, endpoint security, SaaS security, corporate infrastructure security, and security operations enablement. The ideal candidate is hands-on, automation-minded, and comfortable partnering across IT, Engineering, Infrastructure, HR, and Compliance teams to improve security controls while maintaining a strong employee experience. You will help design and operate security systems that protect corporate assets, secure employee access, improve visibility, and reduce organizational risk across cloud-first and SaaS-heavy environments. Responsibilities Identity & Access Management
• Design, implement, and improve identity and access management controls across enterprise applications and infrastructure.
• Manage and optimize SSO, MFA, lifecycle management, conditional access, RBAC, and privileged access workflows.
• Partner with IT and business stakeholders to implement least-privilege access models.
• Support onboarding, offboarding, and automated provisioning/deprovisioning workflows.
• Conduct periodic access reviews and help drive remediation efforts.
• Improve authentication security and identity posture across corporate systems.
Corporate Security Engineering
• Secure and manage corporate endpoints across macOS, Windows, and cloud-managed environments.
• Improve endpoint visibility, hardening, monitoring, and response capabilities.
• Help implement and tune modern endpoint protection, browser security, device trust, and web/data protection controls.
• Partner with Infrastructure and IT teams on secure configuration standards and operational improvements.
• Support security initiatives related to enterprise SaaS applications and collaboration platforms.
• Assist with vendor and third-party security evaluations related to enterprise tooling.
Security Operations & Monitoring
• Assist with security monitoring, detection engineering, and incident response activities.
• Improve log visibility and telemetry coverage across identity, endpoint, and SaaS platforms.
• Build and maintain detections, alerts, and operational playbooks.
• Participate in incident investigations and post-incident remediation efforts.
• Help operationalize security metrics and reporting.
Automation & Engineering
• Build automations and integrations that improve security operations efficiency.
• Develop scripts and workflows to reduce manual processes.
• Partner with Engineering and Infrastructure teams to improve security guardrails and operational maturity.
• Contribute to infrastructure-as-code and policy-as-code initiatives where applicable.
Compliance & Security Programs
• Support security compliance initiatives such as SOC 2, ISO 27001, or similar frameworks.
• Help document technical controls, processes, and operational procedures.
• Participate in risk assessments and remediation tracking.
• Contribute to security awareness and internal enablement efforts.
Qualifications Required
• 4+ years of experience in information security, security engineering, IT security, or related fields.
• Experience administering enterprise identity providers and access management systems.
• Experience with endpoint management and endpoint security tooling.
• Familiarity with security monitoring, logging, and incident response workflows.
• Strong understanding of authentication protocols and identity security concepts, including SAML, OIDC, OAuth, SCIM, MFA, conditional access, and RBAC.
• Experience working in cloud-first environments using modern SaaS platforms.
• Strong scripting or automation experience using Python, Bash, PowerShell, or similar.
• Ability to balance security requirements with operational usability and business needs.
• Strong communication and cross-functional collaboration skills.
Preferred
• Experience securing macOS environments at scale.
• Experience with modern browser security and data protection technologies.
• Experience with cloud-native security monitoring or SIEM platforms.
• Familiarity with MDM/UEM platforms, EDR solutions, identity governance, and SaaS security tools.
• Experience implementing automation around identity lifecycle management.
• Familiarity with infrastructure-as-code or cloud security practices.
• Experience in high-growth startup or enterprise environments.
• Security certifications such as Security+, CISSP, GIAC, identity provider certifications, endpoint management certifications, or equivalent.