Key skills
Security-focused software engineeringIdentity GovernanceAdministrationRisk identificationPythonGolangTerraformOktaAIGenerative AIAzurePulumiSAMLSaaSSalesforceWorkday
About this role
Harvey is transforming how legal and professional services operate with their innovative AI capabilities. The Corporate Security Engineer will ensure the security and compliance of IT and business systems while supporting the implementation of security programs that balance risk with user experience.
Responsibilities:
- Support implementation of our Identity Governance and Administration (IGA) application to ensure that employees can seamlessly gain the appropriate level of access for their role and we can efficiently meet compliance objectives for access approvals and revocation of access upon separation
- Evolve our corporate device trust program to ensure only compliant devices can access corporate and production systems
- Support endpoint security efforts including security policies, controls, and vulnerability management
- Partner with our IT & Business Systems team and provide security expertise and oversight over the implementation and operations of SaaS applications and business systems
- Partner with the Security Detection & Response team to ensure visibility into corporate systems including development of scripts and integrations as needed
- Partner with the Trust & Compliance team to streamline or automate evidence collection to support internal and independent audits
Requirements:
- Demonstrated experience deploying new IT systems and processes across the organization with high user satisfaction
- Demonstrated ability to identify risks and vulnerabilities in IT and business systems and to work cross-functionally throughout the company to balance risk with company priorities and effectively communicate risk to stakeholders
- Understanding of and ability to debug IT systems, including X.509, SAML, SCIM
- Familiarity with endpoint engineering for macOS and Windows
- Software Engineering and DevOps experience with proficiency in python and/or golang as well as familiarity with Terraform and/or Pulumi
- 4+ years of experience in security-focused software engineering, corporate engineering, IT, and/or program management
- Experience with Okta, Salesforce, NetSuite, Workday, Microsoft Entra/Azure/InTune, JAMF, and/or ConductorOne is a plus
- Experience with generative AI or the legal field is not required