Fabric VenturesRemote
Senior Security Engineer
United States of America
Full Time
2 weeks ago
Visa Sponsor
Key skills
Information SecuritySOC II Type 2 ComplianceISO 27001 ComplianceIdentity and Access Management (IAM)Endpoint SecurityAWSGoogle Cloud Platform (GCP)PythonGoBashSSO/IdP PlatformsOktaGoogle WorkspaceEntraMobile Device Management (MDM)Endpoint Detection and Response (EDR)LoggingSecurity Information and Event Management (SIEM)Security AutomationSecurity Policy ManagementRisk ManagementCalmness Under PressureAIMLGCPIAMSSOSaaSLeadershipCommunication
About this role
Fabric Ventures is committed to supporting the growth of the NEAR ecosystem, which includes NEAR AI and NEAR Protocol. They are seeking a Senior IT Security Engineer to lead their information security program, focusing on security architecture, compliance, and incident response.
Responsibilities:
- Lead the information security program across NEAR Foundation, with a dotted line into NEAR Intents’ security leadership on shared work
- Drive SOC II Type 2 and ISO 27001 readiness and ongoing compliance at NEAR AI: control design, evidence collection, auditor liaison, and remediation
- Support the needs and operation of the NEAR Security Committee (NSC)
- Run logging, monitoring, and alerting; lead investigation and response for security incidents
- Run vulnerability management, third-party risk reviews, and security awareness across the organization
- Own the security architecture and hardening of our identity, access, and endpoint stack (SSO/MFA, MDM, EDR, conditional access, privileged access) — partnering with the IT Director and IT Operations team on day-to-day operations
- Engineer security and compliance automation across our SaaS estate — evidence collection, control monitoring, access reviews, and workflows that tighten controls and reduce manual work
- Be the senior technical escalation point for complex security issues across the organization
- Lead security tooling rollouts and security vendor selection; provide deep security input into the broader IT roadmap and technical due diligence
- Help maintain a secure cloud footprint (AWS / GCP) — baseline configuration, secrets management, and posture monitoring — in partnership with infrastructure and product teams
- Maintain the security policy library; ensure policies are accurate, enforced, and updated as we evolve
Requirements:
- 7+ years in information security with strong IT engineering depth, including meaningful time as a senior IC owning programs end-to-end
- Demonstrated ownership of SOC II Type 2 and ideally ISO 27001 readiness and audit cycles in a fast-moving environment
- Deep hands-on experience across IAM, endpoint, and at least one cloud (AWS or GCP)
- Comfortable scripting (Python, Go, or Bash) and automating IT and security workflows
- Practical experience with SSO/IdP platforms (Okta, Google Workspace, Entra), MDM/EDR tooling, and modern logging/SIEM stacks
- Strong written communication — clear policy, clean post-incident reviews, credible audit narratives
- Pragmatic about risk and process; calm under pressure; bias to action
- Crypto or AI/ML exposure is a plus