Sr. Corporate Security Engineer

Strong understanding of endpoint, identity, and SaaS security best practices. Experience with third-party risk management processes and conducting in-depth vendor security reviews. Familiarity with corporate IT platforms (e.g., M365, Intune, Kandji, CrowdStrike, ZScaler, Proofpoint, etc.). Ability to assess cloud/SaaS vendors against frameworks such as SOC 2, HIPAA, ISO 27001, and CIS. Excellent communication and collaboration skills — comfortable working across technical and business teams.

Lead the hardening and continuous improvement of corporate IT systems, endpoints, and third-party SaaS applications. Implement and maintain security controls for identity, endpoint, and network protection within corporate environments. Conduct in-depth vendor security assessments. Manage and mature the third-party risk management (TPRM) program. Collaborate to ensure consistent enforcement of vendor security requirements. Develop and maintain security baselines, configurations, and policies. Support internal audits, compliance reviews, and security awareness initiatives.