Senior Information Security Engineer
RESPONSIBILITIES
REQUIREMENTS
- Configure, integrate, and administer corporate IAM/SSO platforms (Okta / Google Workspace / Entra ID), including end-to-end SSO and MFA across all company systems
- Own the offboarding access revocation process — make it strict, fast, and auditable
- Deploy an MDM system from scratch and administer baseline security policies (disk encryption, passwords, OS updates) across macOS and Windows
- Implement and support secure remote access tools (Tailscale, Cloudflare Access, or equivalents); isolate internal resources and eliminate publicly exposed ports
- Set up centralized collection of critical security logs from cloud platforms and key IT services; configure alerts for brute-force attempts, MFA resets, and suspicious admin activity
- Write practical regulations, runbooks, and incident response procedures based on the configurations you implement
- Act as the first line of incident response — lock compromised accounts, remote-wipe lost devices, drive technical containment
REQUIREMENTS
- 3–5+ years of experience as a SecOps Engineer or Security Engineer
- Hands-on experience configuring and administering IDP platforms (Okta, Google Workspace, Entra ID) and integrating applications via SAML 2.0 / OIDC
- Experience deploying and managing MDM systems and building compliance baselines for macOS and Windows
- Solid understanding of network security and hands-on experience with Zero Trust solutions
- Basic task automation skills (Bash, Python, PowerShell) and the ability to read Terraform for auditing cloud changes
- English sufficient to read technical documentation freely and communicate with international vendor support
- Experience building a baseline technical security perimeter from scratch as the sole dedicated specialist is a plus
- Basic understanding of Kubernetes security (RBAC, network policies) is a plus