Key skills
AWSAzureCloudGoogle Cloud PlatformGoGCPGoogle CloudIAMMentoringCollaborationSalesCloud Security
About this role
Role Overview
- You will own small-to-medium engineering projects end-to-end, configure and operate control sets without direct oversight, and partner closely with Senior and Principal engineers on the larger initiatives that cross multiple domains.
- You’re the engineer who can pick up a control implementation, deliver it, document it, and hand it off cleanly to operations.
- You’ll start to grow real depth in a domain you care about — identity, endpoint, vulnerability, cloud security, or logging — and you’ll be a working partner to Associate engineers on day-to-day execution.
- Project ownership: Take small-to-medium engineering projects end-to-end — scoping, design partnership with a Senior, build, test, deploy, document, and hand off to operations. Deliver them on time without surprises.
- Control implementation and operation: Configure and operate security controls across identity, network, cloud, endpoint, logging/monitoring, encryption/key management, and vulnerability management. Execute against approved patterns and standards.
- Develop deepening expertise in at least one control domain (e.g., endpoint, identity, vulnerability management, cloud security, IAM, monitoring). Become a real go-to on that domain for the team.
- Run vulnerability and patch workflows — scan, prioritize, remediate, validate. Track remediation against SLA and close the loop.
- Participate in change reviews, assess security impact for in-scope systems, implement approved changes, and validate post-change posture.
- Produce clean operational documentation — runbooks, change records, evidence artifacts — that holds up under audit and peer review.
- Partner with the SOC and Detection Engineering on logging coverage, telemetry quality, and the engineering pieces of response (access tooling, isolation capabilities, evidence capture).
- Pair with Associate engineers on day-to-day execution. Review their tickets, walk them through the toolset, and grow them toward independence.
- Contribute scripts and automation to reduce manual toil (validation checks, evidence collection, repeatable deployments) under the guidance of Senior+ engineers.
Requirements
- 3+ years in security engineering, cloud engineering, or security operations with hands-on responsibility for implementing controls.
- Strong fundamentals in at least one of: identity and access management, network segmentation, vulnerability management, cloud security, endpoint security, centralized logging.
- Experience with at least one major cloud platform (Azure, AWS, GCP) in an engineering capacity.
- Comfortable executing vulnerability and patch workflows (scan, prioritize, remediate, validate).
- Ability to write clear operational documentation — runbooks, evidence artifacts, change records.
- Strong collaboration skills across Security, IT, and delivery teams.
- Comfortable mentoring Associate Engineers on day-to-day work****
Tech Stack
- AWS
- Azure
- Cloud
- Google Cloud Platform
Benefits
- Medical, Dental, and Vision Insurance on the first day of employment
- Flexible Spending Account and Dependent Care Account
- 401k with Profit Sharing
- 9+ holidays and discretionary time off structure
- Parental Leave – coverage for both primary and secondary caregivers
- Tuition Assistance Program and CPA support program with cash incentive upon completion
- Discretionary incentive compensation based on firm, group and individual performance
- Incentive compensation related to origination of new client sales
- Top rated wellness program
- Flexible working environment including remote and hybrid options