Security Engineer

What You'll Do

The Security Engineer plays a vital role in protecting the organization’s assets and enabling secure business operations. This position directly contributes to the resilience and trustworthiness of our technology environment. The Security Engineer will focus on implementing and maintaining security controls across identity, access, endpoint, and cloud environments. This is an operational role emphasizing system hardening, vulnerability management, and incident response support to strengthen the organization’s security posture. 

Key Responsibilities 

• Implement and enforce MFA, JIT, Conditional Access (CA), and RBAC policies. 

• Perform quarterly access reviews and cleanup of Entra objects. 

• Review and remediate shared vendor accounts and privileged roles. 

• Assist in documenting incident response (IR) processes and workflows. 

• Support ransomware tabletop exercises and IR playbook development. 

• Conduct device discovery and asset hardening. 

• Implement endpoint visibility and detection enhancements. 

• Support Intune enrollment and sensor deployment. 

• Harden APIs and cloud configurations 

• Perform access reviews and remediation. 

• Validate critical applications and SaaS integrations. 

• Collaborate with IT, DevOps, and business teams to ensure secure integration of new technologies. 

• Stay up to date with current security trends, emerging threats, and industry best practices. 

• Other duties as required to support the organization’s security posture. 

Required Skills & Experience 

• Knowledge of IAM technologies (Entra ID/Azure AD, RBAC, MFA). 

• Experience with endpoint management tools (Intune, EDR solutions). 

• Familiarity with email security protocols (DKIM, SPF, DMARC). 

• Hands-on experience with vulnerability scanning and remediation. 

• Understanding of incident response frameworks and backup strategies. 

• Knowledge of cloud security principles (Azure preferred). 

• Demonstrated commitment to continuous learning and awareness of evolving security threats. 

• Administer and support email security. 

• Strong analytical and problem-solving skills, especially in incident response and troubleshooting complex issues. 

• Ability to collaborate with cross-functional teams and communicate effectively with both technical and non-technical stakeholders. 

• Familiarity with regulatory frameworks (GDPR, HIPAA, PCI-DSS) as applicable. 

• Excellent documentation and communication skills. 

Preferred Qualifications 

• Certifications: CompTIA Security+, Microsoft SC-900 (Security, Compliance, Identity Fundamentals), Azure Security Engineer Associate. 

• Experience with security awareness platforms (KnowBe4). 

• Exposure to cloud environments (Azure, AWS). 

• Active participation in the security community, including attending or presenting at conferences such as BSides or similar industry events. 

• Engagement with professional security networks and willingness to share knowledge through presentations or community involvement. 

Soft Skills 

• Strong analytical and problem-solving skills. 

• Ability to collaborate with cross-functional teams. 

• Excellent documentation and communication skills. 

• Engagement with professional security networks and willingness to share knowledge through presentations or community involvement. 

Benefits and Incentives

• Competitive Base and Incentive Plan
• Stock Options
• Health and Welfare Plans*
• Life and Disability Plans*
• Retirement Plan*
• Unlimited Flexible Paid Time Off, including your birthday off!
• Collaborative Team Culture

* Benefits for international employees, outside the US, vary by country. 

Nerdio is committed to a diverse and inclusive workplace. Nerdio is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.