Security engineer, enterprise security
Job Description
WRITER is seeking an experienced Enterprise Security Engineer to lead their corporate infrastructure security initiatives. This role combines hands-on technical expertise with strategic security implementation, focusing on protecting the company's workforce while enabling business growth.
The position requires deep expertise in identity management, endpoint security, and zero trust frameworks. You'll be responsible for architecting and implementing security solutions that scale with the company's growth, including SSO, MFA, endpoint protection, and mobile device management. The role involves significant automation work using Python and PowerShell to streamline security processes and reduce manual operations.
As the lead for enterprise security, you'll collaborate across teams including Cloud/Infrastructure, GRC, Detection & Response, and Software Security Engineering. You'll own the employee identity management lifecycle, endpoint protection strategy, and SaaS security implementations. The ideal candidate brings 8+ years of enterprise security engineering experience and a proven track record of implementing identity solutions at scale.
The role offers a comprehensive benefits package including medical, dental, and vision coverage, generous PTO, parental leave, and various stipends for professional development and wellness. Based in San Francisco with a hybrid work arrangement, this position provides an opportunity to shape the security architecture of a growing AI-powered writing platform while working with cutting-edge technologies.
Key technical requirements include expertise in SAML, OAuth, OIDC, and experience with major security platforms like Okta, Azure AD, and CrowdStrike. The role demands both technical depth and the ability to drive security initiatives that accelerate business growth while maintaining robust protection against threats.
Responsibilities For Security engineer, enterprise security
- Lead employee identity management (SSO, MFA, IGA, PAM)
- Manage endpoint protection (EDR, AV, DLP)
- Implement device trust and endpoint zero trust
- Handle mobile device management (MDM)
- Secure SaaS application security
- Manage vendor/partner access
- Automate IAM processes for user lifecycle management
- Design and implement enterprise-wide identity and authentication solutions
- Build and maintain endpoint security architecture
- Investigate endpoint security incidents
- Design and operate MDM for iOS, Android, and corporate devices
- Evaluate and secure third-party SaaS applications
- Implement Zero Trust security frameworks
- Automate security processes with Python, PowerShell
Requirements For Security engineer, enterprise security
- 8+ years in enterprise security engineering
- 5+ years implementing identity solutions at scale
- Deep expertise with Okta, Ping, Azure AD, CrowdStrike, SentinelOne, CyberArk
- Strong scripting skills (Python, PowerShell)
- Expert in SAML, OAuth, OIDC
- Experience with EDR platforms, MDM solutions
- Familiarity with SOC2, ISO 27001, GDPR, HIPAA
- Proven track record of automation with measurable process improvements
- History of cutting manual processes by 50%+ through automation
Benefits For Security engineer, enterprise security
- Generous PTO and company holidays
- Medical, dental, and vision coverage
- Paid parental leave (12 weeks)
- Fertility and family planning support
- Early-detection cancer testing
- Flexible spending account and dependent FSA options
- Health savings account with company contribution
- Home office setup, cell phone, internet stipend
- Wellness stipend
- Learning and development stipend
- Company-wide off-sites
- Competitive compensation
- Company stock options
- 401k
