Security Engineer
Sensiba LLP · California, United States · 4 days ago
RemoteRemoteInformation Technology$97k–$145k/yrFull-time
About the role
The Security Engineer will play a critical role in building, maturing, and operating Sensiba's cybersecurity program. This is a unique opportunity for a hands-on security professional who enjoys building solutions, creating standards, and owning outcomes.
Responsibilities
- Lead the final phase of Sensiba's Zero Trust transformation and endpoint security modernization.
- Develop, document, and maintain enterprise security standards and configuration baselines.
- Establish scalable security practices that support long-term growth and compliance.
- Manage and optimize Microsoft Sentinel for monitoring, detection, and response activities.
- Develop and tune detection rules, alerts, investigations, and automated response workflows.
- Lead security investigations, incident response efforts, and proactive threat hunting activities.
- Own Defender XDR, Defender for Endpoint, and Defender for Cloud administration and security posture management.
- Monitor and remediate vulnerabilities across user devices and cloud environments.
- Partner with Infrastructure teams to strengthen security throughout our Azure migration journey.
- Manage Microsoft Purview Data Loss Prevention (DLP) policies and information protection programs.
- Administer and refine sensitivity labels and data governance controls.
- Design and maintain Conditional Access policies and identity protection strategies.
- Support Sensiba's annual SOC 2 Type II audit process by producing technical evidence and validating controls.
- Develop security dashboards, metrics, and reporting for leadership.
- Partner with auditors and internal stakeholders to ensure continued compliance and risk management.
- Collaborate closely with Infrastructure, IT Operations, and Compliance teams.
- Share knowledge and mentor team members interested in developing security expertise.
Requirements
- Bachelor's degree in Information Security, Computer Science, Information Systems, or a related discipline, or equivalent experience.
- 5+ years of hands-on Security Engineering experience within Microsoft environments.
- Strong experience with Microsoft Sentinel, including detection engineering and log analysis.
- Experience administering Microsoft Sentinel, including detection engineering and log analysis.
- Strong experience with Microsoft Defender technologies and enterprise vulnerability management programs.
- Experience implementing Zero Trust security controls, including Intune and Conditional Access.
- Proficiency with PowerShell scripting and automation.
- Experience supporting SOC 2 Type II audits and compliance programs.
- Demonstrated ability to develop security standards, policies, automations, and operational processes.
Preferred Qualifications
- Experience with Microsoft Purview, Endpoint DLP, and Sensitivity Labels.
- Experience optimizing Sentinel logging, retention, and cost management.
- Experience securing Azure cloud environments.
- Knowledge of Identity Governance and Privileged Identity Management.
- Experience with threat hunting methodologies and MITRE ATT&CK frameworks.
- SC-200, AZ-500, or similar security certifications.
- Experience mentoring junior engineers.
- Experience in financial services, professional services, accounting, or another regulated industry.
Skills, Knowledge and Expertise
- Bachelor's degree in Information Security, Computer Science, Information Systems, or a related discipline, or equivalent experience.
- 5+ years of hands-on Security Engineering experience within Microsoft environments.
- Experience administering Microsoft Sentinel, including detection engineering and log analysis.
- Strong experience with Microsoft Defender technologies and enterprise vulnerability management programs.
- Experience implementing Zero Trust security controls, including Intune and Conditional Access.
- Proficiency with PowerShell scripting and automation.
- Experience supporting SOC 2 Type II audits and compliance programs.
- Demonstrated ability to develop security standards, policies, automations, and operational processes.
Benefits
- Comprehensive Health Coverage – Medical, dental, and vision.
- Retirement & Financial Planning Support – 401(k) with match, financial wellness programs.
- Generous Paid Time Off – Vacation, sick time, holidays, parental leave and volunteer days.
- Flexible Work Arrangements – Hybrid or remote options, flexible hours.
- Performance-Based Bonus – Recognition for your contributions through discretionary bonuses.
- Professional Development Opportunities – Tuition reimbursement, certifications, mentorship.
- Career Growth & Internal Mobility – Clear paths for advancement and role transitions.
- Inclusive & Supportive Culture – DEI initiatives, employee resource groups, wellness programs.