This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description As a Senior Security Engineer I at Aledade, you will play a central role in enhancing the security posture of our enterprise, cloud-native environments, and applications. We are seeking a dedicated professional with in-depth knowledge of security principles, standards, and best practices to help safeguard our systems and support our security compliance initiatives. In this role, you will work to design, implement, and maintain robust security solutions across diverse platforms and technologies. You will collaborate closely with various teams to ensure alignment between security solutions and organizational requirements, enabling secure operations across the enterprise. Your ability to partner cross-functionally will be key to driving impactful security outcomes and strengthening our digital landscape. Your expertise will be crucial as we continue to mature our security capabilities and maintain our commitment to protecting critical systems and data. Primary Duties - Working cross-functionally to design, build, and operate solutions that improve and mature our security capabilities. - Leveraging data to understand trends, metrics, and opportunities to improve our security posture, researching options, and then making recommendations as options to secure those opportunities with stakeholders. - Leading and enhancing incident/issues response efforts, spearheading analysis, containment, and mitigation strategies in a cross-functional environment to ensure effective resolution and remediation of security incidents/issues. - Helping craft and refine security documentation pertinent to our Security Program, such as policies, standards, baselines, and standard operating procedures. Qualifications - BS / BTech (or higher) in Computer Science, Information Technology, Cybersecurity or a related field, 6 years security domain experience without degree. - 4+ years combined experience as a security engineer in an enterprise environment (preferably cloud) across multiple disciplines. - 3+ years of relevant work experience in security posture management. - 2+ years of experience acting as a trusted technical decision-maker in a team setting, solving for short-term and long-term business value. Requirements - Identity & Access Management experience with Identity & Access Management (IaM) systems and practices. - In-depth knowledge of authentication protocols, authorization mechanisms, and directory services. - Strong proficiency implementing IaM solutions within very complex environments. - Familiarity with regulatory compliance and security standards. - Experience generating automated metrics to measure service and program effectiveness and consistency. - Strong communication skills, both written and verbal, with the capability to articulate complex security issues to a diverse audience. - Experience with tools strongly preferred: Federated Identity - Okta/Entra ID/Ping Identity, IGA - Sailpoint/Saviynt/Omada, Cloud Platforms - AWS/Azure/GCP, Automation: Python, Terraform, Powershell. Physical Requirements - Sitting for prolonged periods of time. - Extensive use of computers and keyboard. - Occasional walking and lifting may be required. Benefits - Flexible work schedules and the ability to work remotely are available for many roles. - Health, dental and vision insurance paid up to 80% for employees, dependents and domestic partners. - Robust time-off plan (21 days of PTO in your first year). - Two paid volunteer days and 11 paid holidays. - 12 weeks paid parental leave for all new parents. - Six weeks paid sabbatical after six years of service. - Educational Assistant Program and Clinical Employee Reimbursement Program. - 401(k) with up to 4% match. - Stock options. - And much more!

• Collaborate with internal and external stakeholders to ensure secure data gathering, processing and management. • Analyze SQL statements, identify and help resolve potential performance issues for optimized database operations. • Designing secure network architectures, conducting penetration testing, managing security tools (e.g., SIEM, IDS/IPS), and establishing security policies. • Working with DevOps, IT, and software teams to integrate security into the development lifecycle (DevSecOps). • Deep knowledge of network protocols, operating systems (Linux/Windows), cloud security (AWS/Azure/GCP), and scripting/programming languages (Python, Bash). • Implement and uphold cloud data security technologies and best practices. • Operate independently, demonstrating proactive problem-solving skills and attention to detail. • Effectively communicate complex technical concepts through strong written and verbal skills. - Regularly report progress and security concerns to the Head of Security Engineering.

• Working cross-functionally to design, build, and operate solutions that improve and mature our security capabilities • Leveraging data to understand trends, metrics, and opportunities to improve our security posture, researching options, and then making recommendations as options to secure those opportunities with stakeholders • Leading and enhancing incident / issues response efforts, spearheading analysis, containment, and mitigation strategies in a cross-functional environment to ensure effective resolution and remediation of security incidents / issues • Helping craft and refine security documentation pertinent to our Security Program, such as policies, standards, baselines, and standard operating procedures

• Participate in building a comprehensive compliance program, ensuring Airbnb meets requirements for compliance frameworks such as PCI. • Address security posture-related questionnaires to support ongoing compliance initiatives. • Collaborate with external and internal auditors to assist with the Test of Design and Test of Effectiveness processes. • Collaborate with stakeholders to understand operational needs and deliver realistic, risk-based recommendations for remediation. • Monitor remediation activities and build metrics and reports on testing/remediation results