Security Engineer

6+ years of progressive experience in a dedicated cybersecurity role.
Demonstrated experience in Application Security (AppSec) principles and practices.
Direct experience administering and optimizing key security tools, including Okta (IAM), CrowdStrike (EDR), and Wiz (Cloud Security Posture Management).
Proven experience with Cloud Security concepts and best practices (experience with at least one major cloud provider required).
Hands-on experience with Identity Management and Access Control systems.
Experience participating in Incident Response processes and procedures.
Understanding of corporate security principles and their practical application.
Experience with third-party risk management processes and security assessments.
Solid understanding of networking fundamentals and security protocols.
Familiarity with common security frameworks and standards (e.g., NIST, ISO 27001, FedRAMP, StateRAMP).
Excellent problem-solving skills and the ability to work independently and as part of a team.
Strong written and verbal communication skills.

Implementing, monitoring, and maintaining security controls across our corporate and cloud environments.
Participating in the application security program, including supporting security testing, vulnerability management, and secure development practices.
Managing and improving our identity and access management (IAM) solutions and processes.
Contributing to our incident response capabilities, including participating in security incident detection, analysis, and remediation efforts.
Supporting corporate security initiatives, including security awareness training, policy enforcement, and compliance activities.
Assisting with the third-party risk management program, including security reviews and assessments of vendors and partners.
Performing regular security assessments, vulnerability scans, and penetration testing (or coordinating external tests).
Administering and optimizing various security tools and technologies.
Collaborating with IT, Engineering, and other teams to ensure security best practices are integrated into daily operations and new projects.
Developing and maintaining security documentation, procedures, and runbooks.
Staying current with the latest security threats, vulnerabilities, and industry trends.

Experience with specific security tools and platforms such as: IdP, Cloud Service Provider, Cloud Security Posture Management tools, Endpoint Detection and Response solutions, Google Workspace (security features and administration).
Security certifications such as Security+, CySA+, CEH, cloud-specific security certifications (e.g., AWS Certified Security – Specialty).
Experience working in a cybersecurity vendor environment.