Remote Corporate Security Engineer - IAM

Description:

• The Corporate Security Engineer will be responsible for designing, building, and maintaining One’s Information Technology systems and processes with a focus on security.
• This role includes responding to user reports and issues, assisting in deploying controls, and refining processes.
• The engineer will establish and oversee knowledge and content management, including hands-on updates to critical content.
• They will identify opportunities to automate and/or provide self-service for internal customers and lead projects to deliver on those opportunities.
• The role requires a security-first approach to every task, project, and incident.
• Responsibilities include driving maturity, consistency, and completeness in the IAM (Identity and Access Management) program across multiple critical workloads.
• The engineer will assist with the scaled management of the endpoint environment, including policy development, alignment with CIS and other benchmarks, managing and monitoring vulnerabilities, and contributing to disaster recovery and incident planning.
• Troubleshooting and resolving technical issues related to the corporate SaaS environment is also a key responsibility, including pursuing vendor support when necessary.
• Collaboration with IT & Security teams to develop and implement administrative and technical security controls is essential.
• The engineer will act as an escalation point for IT service queue, including security concerns from the company’s user base.
• Ensuring compliance with corporate policies and standards for security, data privacy, and disaster recovery is required.
• The engineer will assist in the development and maintenance of policies and procedures.
• They will act as the primary technical owner of several corporate systems, staying up to date on releases, enabling new functionality, and ensuring continued operational effectiveness.

Requirements:

• Candidates must have 8+ years of experience in IT with an emphasis on corporate security, ideally with 3 or more years dedicated solely to security.
• Significant focused experience in IAM, specifically AWS IAM, is required.
• Candidates should be well-versed in designing, building, and operationalizing systems with a focus on SaaS services and tools.
• Strong knowledge of macOS management and deployment tools, such as Jamf Pro or similar MDM solutions, is necessary.
• The ability to take ownership of projects or tactical issues and bring them to completion independently is essential.
• A willingness to work outside one's wheelhouse across domains as the team and business require is expected.
• Domain knowledge in multiple disciplines including networking, compliance, authentication standards, and frameworks such as MITRE ATT&CK and NIST is required.
• Experience with infrastructure-as-code such as Terraform, CloudFormation, ARM Templates, or other is necessary.
• In-depth experience with Netskope, Zscaler, or similar ZTNA & DLP solutions is a plus.

Benefits:

• The position offers a competitive cash salary.
• Benefits are effective on day one of employment.
• Employees gain early access to a high potential, high growth fintech environment.
• Generous stock option packages are available in this early-stage startup.
• The role is remote-friendly (anywhere in the US) and office-friendly, allowing employees to choose their schedule.
• Flexible time off programs are provided, including vacation, sick leave, paid parental leave, and paid caregiver leave.
• A 401(k) plan with a match is included as part of the benefits package.