Senior Security Engineer-Corporate Information Security- Remote (Anywhere in the U.S.)

8+ years of experience in security engineering, with strong emphasis on endpoint, cloud-native and SaaS environments. In-depth knowledge of operating systems including Linux, Windows, Mac and network protocols TCP/IP, DNS, SMTP, HTTP/S and SSH. Experience with IAM, including federated identity, RBAC, lifecycle management, and cloud-native policy design. Familiarity with identity protocols and standards including SAML, OIDC, OAuth2, and SCIM. Proven track record implementing data protection controls in production. Solid understanding of cloud security architecture, network segmentation, endpoint hardening, and service exposure minimization. Hands-on experience with EDR, SIEM vulnerability management, and cloud security posture management (CSPM). Demonstrated experience supporting incident detection, event triage, investigation, and response workflows. Strong understanding of modern security frameworks (NIST, CIS Controls, ISO 27001, SOC 2). Excellent communication and collaboration skills, including the ability to work across functions and communicate risks effectively.

Architect and implement security controls across cloud platforms, endpoints, and SaaS applications. Implement and monitor data protection technologies including DLP, Labeling, Scanning, etc. across SaaS and Cloud. Define and enforce trust boundaries across cloud networks, applications, and endpoints — with a focus on segmentation, identity isolation, and minimal privilege. Lead the collaboration with IT on the design and monitoring of comprehensive Identity and Access Management (IAM) programs, including role-based access control Identity federation, SSO, SAML, OIDC, and SCIM integrations. Drive automation for security processes and control enforcement using Python and modern infrastructure-as-code tools. Support threat hunting, event triage and incident response by analyzing security events and telemetry from detection tools. Define and implement secure configuration baselines for cloud services, endpoints, and user environments. Contribute to security architecture reviews and support secure-by-design patterns for new systems. Support audit readiness, compliance assessments (e.g., SOC 2, ISO 27001), and risk management activities. Document playbooks, configurations, architecture diagrams, and process flows. Mentor peers and cross-functional teams on security risks, best practices, and secure architecture principles.