Personalized mental health treatment for teens, young adults & families in crisis.
Senior Corporate Security Engineer
Location
United States
Posted
2 days ago
Salary
$180K - $240K / year
Seniority
Senior
Job Description
Senior Corporate Security Engineer
Charlie Health
• The Senior Corporate Security Engineer role is responsible for designing, building and operating the technical security systems and controls that protect Charlie Health’s corporate environment, workforce systems, endpoints, SaaS platforms, cloud-connected services and internal operations. • Engineer scalable security solutions for identity, endpoints, SaaS platforms, cloud-connected services, collaboration tools and internal systems • Partner with IT Engineering to embed secure-by-design practices into enterprise systems, integrations and infrastructure • Establish control patterns that improve security posture, operational efficiency, auditability and resilience • Design and improve identity and access controls across workforce systems, SaaS applications and privileged access workflows • Implement and mature controls for MFA, conditional access, device trust, role-based access, least privilege, service accounts and lifecycle automation • Help advance Charlie Health’s Zero Trust strategy through identity-centric control design, continuous verification and measurable trust signals • Engineer and improve security controls across Mac, Windows, mobile and BYOD environments • Support investigation and response for identity, endpoint, SaaS, email, cloud, data exposure and corporate security events
Job Requirements
- 5+ years of experience in security engineering, corporate security, infrastructure security, enterprise security, IT security, cloud security or a related technical discipline
- Deep hands-on experience designing, building and operating technical security controls in enterprise environments
- Experience securing identity, endpoints, SaaS platforms, collaboration tools, cloud-connected services and internal systems
- Strong experience with identity and access management concepts, including MFA, conditional access, privileged access, lifecycle automation, service accounts and least privilege
- Experience working with security tools such as MDR platforms, EDR, SIEM, cloud security tools, endpoint management tools, vulnerability management tools or DLP systems
- Experience with security platforms and telemetry sources such as Expel MDR, SentinelOne, Wiz, CloudTrail, Sumo Logic or similar tools
- Experience with endpoint security, MDM, secure configuration management and vulnerability remediation across Mac, Windows or mobile environments
- Experience using scripting, APIs or automation tools such as Python, Bash, PowerShell, Workato, Terraform, REST APIs, webhooks or JSON
- Familiarity with detection engineering, alert tuning, incident response workflows and security operations processes
- Strong understanding of Zero Trust principles, identity-centric security, least privilege, device trust and secure system design
- Ability to work cross-functionally with IT, Security, Engineering, Compliance and business stakeholders
- Strong documentation, ownership, judgment and ability to operate independently in ambiguous environments.
Benefits
- Health insurance
- 401(k) matching
- Flexible work hours
- Paid time off
- Remote work options
- Professional development opportunities
- Stock options
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
• Network security engineer for operational support • Help take the security to the next level in a proactive stance • Work on federal IT infrastructure • Collaborate with identity, cybersecurity, and network operations teams
• Provides technical leadership and is responsible for determining the direction for the IT architecture, standards, design and implementation approaches for the company’s application systems • Creates, evaluates and implements plans and design proposals for high impact IT solutions • Lead security architecture, design and management oversight of endpoints and servers • Lead security projects by designing, researching, proposing and implementation of new endpoint and server security controls • Provide endpoint and server security consultation and oversight for customer connections and/or merger and acquisitions • Conduct security architecture reviews of existing and proposed systems, identifying vulnerabilities and recommending appropriate controls and mitigation strategies
Information Systems Security Officer
Paragone Solutions, Inc.Paragone is an Economically Disadvantaged Woman Owned Small Business (EDWOSB).
• Write security control implementation statements, specifically documenting Microsoft 365 implementation. • Perform security scans, review scan results, and provide application architecture consultation. • Protect the organization's information and information systems from unauthorized access, use, disclosure, disruption, modification, perusal, inspection, recording and destruction. • Manage security initiatives for cloud-based environments, with a strong emphasis on Microsoft Azure, O365, and Intune. • Conduct and maintain vulnerability scanning on networks; systems and applications. • Produce actionable; risk-based reports on security assessment results. • Assist with vulnerability remediation when necessary. • Continuously improve risk models; metrics; reports; processes; and activities. • Provide information security solutions compliant with the Risk Management Framework (RMF). • Collaborate with the customer security organization to ensure RMF processes are followed, policy is translated to operational procedures, proper tools are leveraged and verification that security policy and procedures are enforced.
Security Engineer
Soteria - Security Solutions & AdvisoryTailored Security Solutions Managed Detection and Response
• Communicate with prospective and existing clients to understand their security needs and develop engagement plans to satisfy their requirements. • Lead and perform cloud and infrastructure technical security assessments (Microsoft 365, Microsoft Azure, Google Workspace, AWS, Active Directory, etc.) • Translate organizational security documentation into operational practices. • Perform hands-on keyboard remediation activities in response to security-focused assessments. • Develop detailed reports with actionable recommendations to address security gaps and ensure remediation efforts align with organization needs and service level objectives. • Understand and apply security framework controls aligning to industry frameworks such as NIST, CIS, ISO, or MITRE ATT&CK. • Design, evaluate, and implement secure network architectures. • Provide assessments of emerging technology to facilitate solutions and recommendations for future architectural requirements that are cost effective and reduce risk while enhancing security. • Document and present findings and recommendations to clients, including C-Suite and board-level executives, in a professional manner. • Maintain relationships with clients post-assessment in order to assist and advise as they continue to build and improve their security. • Create, collaborate, and/or assist in maintaining internal tooling to enhance or assist in performing duties, as appropriate. • Train and mentor other employees in order to build the company's overall capacity and capability. • Perform business development tasks from the initial call with a referral or repeat client, through the proposal stage, and finally, to contract execution.
