Senior Corporate Security Engineer

About The Position

Requirements

• Experience: 4 to 5+ years of experience in Corporate Security, IT Security, enterprise security, identity and access management, or closely related security engineering roles.
• IAM & Zero Trust Expertise: Strong, practical understanding of modern IAM concepts (SSO, RBAC/ABAC, least privilege), zero trust architecture, threat modeling, and security frameworks such as SOC 2, ISO 27001, and CIS Controls.
• Tooling Familiarity: Hands-on experience with security configurations for platforms such as Okta, Entra ID, Google Workspace, and EDR/MDM tooling.
• Automation Mindset: Some experience writing and maintaining scripts, with proficiency in at least one modern language (e.g., Python, Powershell, KQL) used to build automations, integrations, or internal tooling.
• AI Forward: Demonstrates curiosity about AI tools and emerging technologies, with a willingness to learn and leverage them to enhance productivity, collaboration, or decision-making.

Responsibilities

• Secure SaaS, Endpoints, and the Extended Workforce
• SaaS Posture Management: Evaluate, configure, and harden SaaS applications (Google Workspace, Microsoft 365, Slack, HRIS, ticketing) to align with enterprise security policies.
• Implement and tune controls such as data access policies, DLP, sharing controls, and audit logging across the SaaS estate.
• Endpoint Hardening: Collaborate with Endpoint/IT teams to define and enforce baseline configurations for laptops, workstations, and other managed devices via MDM and EDR.
• Data Loss & Insider Risk: Develop and implement strategies and tooling for Data Loss Prevention (DLP) and the mitigation of insider risks within the organization.
• Engineer Modern Identity and Access Controls
• Single Sign-On Assurance & Federation: Partner with Information Technology to implement, configure, and monitor highly secure workforce identity solutions (e.g., Okta/Entra and other IdPs) while enforcing strict SSO assurance levels including Multi-Factor Authentication and Conditional Access.
• Privileged Identity & JIT Provisioning: Define and maintain RBAC/ABAC patterns for enterprise applications, focusing on role models, entitlements, and separation of duties.
• Implement Just-In-Time (JIT) access and automated approval workflows to ensure users only have elevated access when strictly necessary.
• Zero Trust & Break-Glass Workflows: Design and deploy controls that combine user identity, device posture, network context, and application sensitivity to aggressively enforce least-privilege access.
• Build automated, self-service experiences for access requests, recurring access reviews, and emergency break-glass workflows.
• Automate and Instrument Everything
• Security Workflows: Design and build automation scripts and tools to streamline security workflows, collect actionable metrics, and enforce security policies at scale.
• Build automation and self-service experiences for access requests, approvals, access reviews, and break-glass workflows.
• System Integrations: Develop integrations between IdPs, HRIS, ticketing, and other systems to minimize manual toil and reduce identity-related error rates.
• Operational Support & Incident Response
• Incident Partnership: Partner with our Incident Manager and provide subject matter expertise for investigations and incident response related to identity, endpoint, and SaaS domains.
• Detection & Visibility: Work with Security Operations and SIEM teams to ensure robust visibility into identity, device, and SaaS activity, and to build high-signal detections.
• Clear Documentation: Author clear documentation and runbooks that make it easy for teams to consume and operate the controls you build.

Benefits

• Flextime, recognition, and support for autonomous work: Flexible time off with ample learning and development opportunities to continue growing your career. We offer a comprehensive onboarding program, leadership training for Titans at all levels, and other programs and events. Great work is rewarded through Bonusly, peer-nominated awards, and more.
• Holistic health and wellness benefits: Company-paid medical, dental, and vision (with 100% employer paid options and 90% coverage for dependents), FSA and HSA, 401k match, and telehealth options including memberships to One Medical.
• Support for Titans at all stages of life: Parental leave and support, up to $20k in fertility services (i.e. IUI and IVF), surrogacy, and adoption reimbursement, on demand maternity support through Maven Maternity, free breast milk shipping through Maven Milk, pet insurance, legal advisory services, financial planning tools, and more.