Enterprise Security Engineer
New
B
BenchlingBiotech Software
Remote, USFull-TimeSenior
Salary176,000 - 300,000 USD per year
Apply NowOpens the employer's application page
Job Details
- Experience
- 5+ years
- Required Skills
- Python
Requirements
- 5+ years in a security engineering or IAM-focused role
- Deep, hands-on IdP expertise (preferably Okta) — SSO, SCIM, MFA, Lifecycle Management, and NHI management
- Demonstrated experience implementing zero trust architecture
- Strong working knowledge of identity protocols: SAML, OIDC, OAuth 2.0, and SCIM
- Proficiency managing macOS endpoints at scale using Fleet or an equivalent MDM platform
- Foundational cloud IAM experience across at least one major provider (AWS, GCP, or Azure)
- Demonstrated track record of building automation
- Scripting proficiency in at least one language, preferably Python
- Strong understanding of operating systems fundamentals (MacOS/Linux/Windows)
Responsibilities
- Drive the organization's zero trust strategy end to end.
- Design and maintain least-privilege access patterns, Just-in-Time (JIT) access, and Privileged Access Management (PAM) controls.
- Deploy, configure, and maintain MDM infrastructure for the macOS fleet.
- Enforce SSO-required policies, review and restrict OAuth scopes, and audit third-party integration access.
- Build processes and tooling to detect shadow IT, unauthorized OAuth app grants, and SaaS tools.
- Evaluate and deploy AI-native security tooling.
- Define and enforce security standards for AI agent and LLM service identities.
- Develop and enforce CIS/NIST-aligned configuration baselines.
- Reduce manual toil through automation and AI-assisted tooling.
View Full Description & ApplyYou'll be redirected to the employer's site
