Coterie Insurance is a company that helps insurance professionals unlock untapped revenue in the small commercial space through an innovative quoting platform. They are seeking a Security Engineer to contribute to identity, access, and security operations programs, including managing access reviews, compliance evidence collection, and security awareness programs.
Responsibilities:
- Run Coterie’s recurring user access reviews under the direction of the Principal Security Architect, coordinating with system owners to certify access and remove stale or over-provisioned entitlements across our environments
- Gather, organize, and validate evidence to support compliance testing and audits, following established procedures to build evidence packets that trace access and changes from request through approval
- Administer our privileged access management program with oversight, focusing on endpoint privilege management, operating local administrator elevation, least-privilege policies, and just-in-time access on endpoints within approved guardrails
- Support time-bound, approved, and reviewed privileged access through Azure Privileged Identity Management (PIM), including role assignments and periodic recertification of privileged identities
- Triage and respond to security operations alerts from our SIEM and endpoint tooling under the guidance of senior engineers, escalating, documenting, and helping close out incidents
- Run the day-to-day administration of our security awareness program, including building, scheduling, and reporting on phishing simulations and assigning follow-up training
- Follow and maintain the procedures, standards, and documentation the team has established for access reviews, privileged access, and related security operations workflows
- Utilize a risk-based approach to your day-to-day work and surface pain points and recommend continuous-improvement ideas for these programs and processes
- Partner with IT operations, engineering, and compliance teams to help close access and process gaps and mature Coterie’s security posture
- Take on other security operations tasks that support the team, such as detection tuning, vulnerability remediation tracking, and tooling evaluations, as directed and as priorities shift
Requirements:
- 3–5 years of experience in security operations, identity/access administration, or a related technical role
- Experience with cloud-native enterprise services
- Solid understanding of identity and access management concepts, including authentication, authorization, least privilege, and role-based access control
- Hands-on experience with privileged access management, with specific experience in endpoint privilege management (managing local administrator rights and elevation)
- Experience running or supporting access reviews and access certifications, and removing unneeded access
- Familiarity with compliance frameworks (e.g., SOC 1, SOC 2, SOX) and supporting the collection of audit evidence
- Comfortable triaging alerts from a SIEM or endpoint security tooling and following documented response procedures
- Experience administering or supporting a security awareness or phishing simulation platform
- Comfortable operating established programs and processes under direction, while contributing ideas to improve them
- Self-motivated, detail-oriented, organized, and able to manage recurring deadlines across multiple workstreams
- Exceptional written and verbal communication, with the ability to document processes clearly
- Experience with Azure Privileged Identity Management (PIM) and Azure RBAC
- Experience with an endpoint privilege management solution (e.g., CyberArk EPM, Admin By Request, BeyondTrust)
- Experience administering Okta and Microsoft 365 / Entra ID
- Familiarity with Microsoft Sentinel (or another SIEM) and basic KQL
- Experience with a security awareness platform
- Security certifications (e.g., Security+, SC-900, SC-300, CySA+) or cloud certifications (e.g., AZ-500)