Senior Enterprise Security Engineer
Life360 · United States · 2 wk ago
RemoteRemoteInformation Technology$152k–$224k/yrFull-time
About the role
The Senior Enterprise Security Engineer will be responsible for designing, deploying, and operating the preventative controls that reduce the attack surface before anything reaches Detection & Response. They will partner closely with IT Engineering, GRC, and the broader security team.
Responsibilities
- Develop systems and tools that improve the security posture of Life360's DLP, device hardening, SaaS, and zero trust layers
- Execute security strategy and policy for Life360-built services and SaaS applications
- Review and provide architectural guidance on infrastructure systems, fleet management, and automation
- Own EDR agent deployment health and coverage across the endpoint fleet, ensuring CrowdStrike Falcon agents are installed, current, and correctly configured on every managed device; identify and close coverage gaps in partnership with IT and D&R
- Partner with D&R on log source enablement, ensuring corporate systems (Kandji, Intune, Slack, Box, Google Workspace) emit the telemetry D&R needs for detection and investigation, without owning the detection logic itself
- Build and operate agent-assisted workflows that take action across endpoint, SaaS, and awareness domains — directing AI more than doing the work by hand, with appropriate guardrails on anything that touches sensitive data or production systems
- Automate the boring parts using Python, Tray.io, Lambda, and AI agents to eliminate manual toil across endpoint, SaaS, and corporate security workflows
- Engineer controls that satisfy SOC 2 and privacy requirements across device and SaaS layers, partnering with GRC on evidence collection and audit readiness
- Own the security awareness program end-to-end, including developing and delivering training, running phishing simulations, tracking and reporting metrics, and continuously improving the program to drive measurable behavior change
Requirements
- 5+ years in security engineering with deep hands-on ownership of endpoint security (Kandji/Intune/Jamf/CrowdStrike), SaaS security, or DLP
- Hands-on AWS security experience, including IAM policies, CloudTrail
- Advanced knowledge of operating systems with core competency in two or more of: device hardening (macOS, Windows), SaaS security, DLP, or assurance and validation
- Experience securing corporate email infrastructure, including SPF, DKIM, DMARC, and anti-phishing controls in Google Workspace or equivalent
- Experience designing and operating zero trust access controls, including device trust signals, conditional access, and contextual access policies
- Proven track record driving the implementation of preventative controls
- Experience managing EDR fleet health at scale, including agent deployment, version currency, policy compliance, and coverage gap remediation (CrowdStrike Falcon preferred)
- Freshman-level fluency in AI. You use Claude, Cursor, Claude Code, or equivalent as a daily driver; you know when to trust an LLM output and when not to; you've shipped automations or agents that actually work in production
- Comfortable building with APIs and MCP, not just configuring GUIs
- Clear, direct communicator who pushes back on risk and drives alignment with IT, Engineering, and leadership
- Strong collaborator who prioritizes ruthlessly and operates independently under minimal supervision
- Bias for engineering over ticketing; zero-trust mindset grounded in pragmatism
- Bachelor’s degree or equivalent
Qualifications
- Fluent AI user. You use Claude, Cursor, Claude Code, or equivalent as a daily driver; you know when to trust an LLM output and when not to; you've shipped automations or agents that actually work in production
- Comfortable building with APIs and MCP, not just configuring GUIs
- Clear, direct communicator who pushes back on risk and drives alignment with IT, Engineering, and leadership
- Strong collaborator who prioritizes ruthlessly and operates independently under minimal supervision
- Bias for engineering over ticketing; zero-trust mindset grounded in pragmatism
- Bachelor’s degree or equivalent
Skills
- AI-native daily use: You use AI tools for real, substantive work — analysis, drafting, automation, code, investigations, evidence gathering
- Judgment and ownership: AI-generated work gets the same scrutiny you'd give any human-produced artifact. You're accountable for everything you ship
- Domain-specific judgment: You know where AI is the wrong tool. Sensitive data handling, attacker-controlled inputs, agents with production access, and privileged identity changes all need careful guardrails — and you can articulate where AI helps, where it hurts, and where it needs a human in the loop
- Leverage: When AI is working well, you take on problems that would otherwise require a larger team. We hire people who use that leverage to ship better outcomes, not just faster ones
- Continuous learning: The tooling moves fast. You stay current, share what works with the team, and speak up when something would meaningfully change how we operate
Benefits
- Competitive pay and benefits
- Mental Wellness Program & Employee Assistance Program (EAP) for mental well-being
- Flexible PTO, 13 company-wide days off throughout the year
- Winter and Summer Weeklong Synchronized Company Shutdowns
- Learning & Development programs
- Equipment, tools, and reimbursement support for a productive remote environment
- Free Life360 Platinum Membership for your preferred circle
- Free Tile Products