Security Operations Engineer

About The Position

Requirements

• 5+ years of experience in security engineering, security operations, or infrastructure security roles.
• Strong hands-on experience implementing security controls across: Identity & Access Management Endpoint management (Windows/macOS) Network and cloud platforms
• Demonstrated ability to translate security policy into technical implementation.
• Experience supporting & automating audit and compliance evidence collection.
• Strong troubleshooting and incident response skills.

Nice To Haves

• 10+ years of experience in security engineering, security operations, or infrastructure security roles.
• Experience with Okta (IdP, SSO, MFA, SCIM, workflows).
• Experience with FortiGate & Cisco Network Technologies.
• Strong Understanding of TCP/IP, DNS, HTTP/S, VPNs, SD-WAN, routing/switching.
• Proficiency with security tools like firewalls, IDS/IPS, and SIEM platforms.
• Familiarity with regulated environments (NIST, ISO 27001, CMMC, FedRAMP).
• Experience automating security controls or evidence collection.
• Exposure to cloud security tooling and observability platforms.
• Proficiency in Python, Bash, or PowerShell to automate routine tasks, security checks, and incident response workflows.

Responsibilities

• Implement and operate technical security controls across identity, endpoint, network, and cloud platforms.
• Translate InfoSec policies, standards, and POA&Ms into enforceable configurations and guardrails.
• Own security configuration hygiene for corporate platforms, ensuring controls are consistently applied and monitored.
• Operate and secure Umbra’s Identity & Access Management (IAM) stack, including IdP, SSO, MFA, SCIM/JIT, and PAM.
• Partner with Core Infrastructure and Digital Workplace to ensure access is least-privilege, time-bound, and auditable.
• Support quarterly access reviews and remediation activities in partnership with InfoSec.
• Partner with Digital Workplace to enforce endpoint security baselines across Windows and macOS.
• Ensure endpoint controls align with InfoSec standards (encryption, patching, device trust).
• Operate platform-level security tooling for endpoint posture, monitoring, and compliance.
• Support security operations across network and cloud environments, including: Firewalls, segmentation, ZTNA/VPN Cloud guardrails and security configurations
• Partner with Core Infrastructure engineers to ensure secure-by-design network and cloud architectures
• Operate and tune logging, monitoring, and detection capabilities across IT platforms.
• Support investigation and response for security incidents in coordination with InfoSec.
• Provide technical context, evidence, and remediation support during incident response activities.
• Act as a primary technical contributor to audit evidence generation for IT-owned controls.
• Maintain documentation, configuration artifacts, and system evidence required for SOC 2, NIST, CMMC, FedRAMP, and related frameworks.
• Partner with InfoSec to ensure evidence is accurate, timely, and repeatable.
• Identify opportunities to automate security controls, evidence collection, and compliance reporting.
• Reduce manual security toil through policy-driven automation and infrastructure-as-code patterns.
• Contribute security improvements to the IT automation backlog via the SMO.
• Collaborate closely with: InfoSec for policy, risk, and assurance Core Infrastructure for platform guardrails Digital Workplace for endpoint and employee-facing security controls Enterprise Applications for app-level security configuration and evidence
• Participate in SMO forums, CABs, and security-related change reviews

Benefits

• Flexible Time Off, Sick, Family & Medical Leave
• Medical, Dental, Vision, Life, LTD, STD (employer funded)
• Vol Life, Critical Illness, Accidental, Hospital Indemnity, Pet Insurance (employee funded)
• 401k with 3% non-elective company contribution
• Stock Options
• Free Parking
• Free lunch daily in office