Security Engineer

Job Summary

To support security operations in a cloud-native environment, the full-time remote Security Engineer will manage user access reviews, gather evidence for compliance testing, and oversee privileged access management while responding to security alerts and running a security awareness program.

Key responsibilities

• Run recurring user access reviews and coordinate with system owners to certify access and remove unnecessary entitlements
• Gather and validate evidence for compliance testing and audits, ensuring adherence to established procedures
• Administer the privileged access management program, focusing on endpoint privilege management and just-in-time access

Required qualifications

• 3-5 years of experience in security operations or identity/access administration
• Hands-on experience with privileged access management, particularly in endpoint privilege management
• Solid understanding of identity and access management concepts, including least privilege and role-based access control
• Familiarity with compliance frameworks such as SOC 1, SOC 2, and SOX
• Experience administering or supporting a security awareness or phishing simulation platform