Jobs · Information Technology

Senior Cybersecurity Engineer

Campminder · Boulder, CO · 2 days ago
RemoteRemoteInformation Technology$180k–$198k/yrFull-time

Ideal Start Timeline

August 2026

Role Status

Exempt

Compensation

Our target hiring range is $180,000-$198,000 plus participation in our Annual Bonus Program with eligibility for $12,000 bonus. Actual compensation will be commensurate with experience and skills.

Campminder's Flexible Working Location

  • Employees have the option to work 100% remotely within the United States or their choice of days at home and at our office in Boulder, Colorado.
  • We host a variety of all-company hybrid meetings and social events.
  • We require anybody working remotely to have a very reliable, high-speed internet connection.

Reasons for Choosing Campminder

  • Stable, profitable, and loyal customer base (growing).
  • Builds software for summer camps, enabling meaningful experiences for kids.
  • Works on interesting, ambitious projects creating real value for clients.
  • Team members feel their work has an impact on the organization's purpose.
  • Work/life balance supported with flexibility in remote work.
  • Proud of an "AI-Enabled" approach in solutions.
  • Recognized as one of the 50 Best Places to Work for 8 consecutive years.

Role's Mission & Overview

You'll own how we protect Campminder's data end to end: architecting and hardening our security infrastructure, carrying our PCI and SOC2 programs through every audit, and setting the roadmap that keeps us ahead of real threats. You'll be the person the engineering org comes to on security and the one who defines what good looks like at Campminder.

Responsibilities

  • Manage identity and access infrastructure, including Azure conditional access, Okta SSO, and Auth0, keeping MFA and zero-trust enforced across production and internal apps.
  • Configure, tune, and harden WAF rules across our web applications.
  • Own vulnerability scanning and remediation using tools like Mondoo and SecurityMetrics, and administer EDR, DLP, and SIEM/XDR tooling across servers and endpoints.
  • Manage secrets and credentials in build pipelines, including vault-based storage, rotation, and least-privilege service accounts.
  • Execute PCI technical controls: SAQ completion, quarterly ASV scans, and disaster recovery implementation.
  • Harden containerized and cloud-native environments, including image scanning and Kubernetes configuration.
  • Coordinate pen testing engagements and drive remediation against SLA timelines.
  • Run security awareness training programs (KnowBe4, Security Journey) and maintain AI usage oversight, including approved tooling, code-gen governance, and supply-chain monitoring for AI-assisted development.

Qualifications

  • 5+ years in security engineering or DevSecOps, with hands-on ownership of both pipeline-level and infrastructure-level security.
  • Experience configuring IAM and SSO platforms (Okta, Auth0) alongside cloud-native identity controls like Azure conditional access.
  • Comfort embedding security directly into CI/CD workflows: SAST/DAST/SCA tooling, secrets management, and policy-as-code.
  • A track record hardening containerized and cloud-native environments, including Kubernetes and image scanning.
  • Experience executing PCI or similar compliance technical controls (scans, SAQs, evidence prep); program ownership isn't required, but you know how to translate auditor requirements into engineering work.
  • Familiarity administering SIEM/XDR and EDR/DLP tooling.
  • The judgment to triage real vulnerabilities over theoretical ones, and to know when to escalate versus fix directly.
  • Experience running or supporting security awareness and training programs.
  • Exposure to AI tooling governance, such as MCP inventories, code-gen release gating, or supply-chain monitoring for AI-assisted development.

Skills

  • Security engineering or DevSecOps experience.
  • Hands-on experience with IAM and SSO platforms (Okta, Auth0).
  • Experience with cloud-native identity controls like Azure conditional access.
  • Experience integrating security scanning tools into CI/CD pipelines.
  • Experience managing secrets and credentials in build pipelines.
  • Experience executing PCI or similar compliance technical controls.
  • Familiarity with SIEM/XDR and EDR/DLP tooling.
  • Experience running or supporting security awareness and training programs.
  • Exposure to AI tooling governance.

Benefits

  • Robust medical, dental, and vision coverage options with generous employer contributions, plus a $500 employer HSA contribution for HSA-compatible plans.
  • Ability to choose where you work - remotely, in the office, or a mix!
  • A variety of resources to support mental health and emotional well-being.
  • 12 weeks of 100% paid parental leave for all new parents, including via adoption, surrogacy, and foster care.
  • 401(k) with 4% company matching.
  • Trust-Based (flexible) PTO (and yes, we use it!)
  • $900/year wellness allowance.
  • Company-paid subscriptions, training, and support for using AI professionally and personally.

Interview Process

  • 45 min - interview with People & Culture
  • 60 min - interview with Hiring Manager
  • 60 min - interview with future colleagues on the Technology Team

About Campminder

Camps trust Campminder to keep their data safe, and that trust is what lets them focus on running a great summer. We build software for summer camps, an industry that enables meaningful experiences for kids. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's purpose. We work on interesting, ambitious projects that create real value for our clients. We know our team members feel their work has an impact on the organization's

Similar jobs

Senior Cybersecurity Engineer

Smithfield FoodsSmithfield, VA· 3 days ago
Information Technology$105k–$140k/yrapply on smithfieldfoods.wd1.myworkdayjobs.com