Security Engineer - Charlotte, NC / Oakland, CA (Onsite)

• Work in a cloud-native environment leveraging containerized workloads, serverless architecture, and automated CI/CD pipelines to manage IaaS
• Perform scripting and coding to build security tooling and automate repetitive tasks
• Use Terraform to deploy security baseline controls, conduct code reviews, and recommend security improvements
• Build and deploy custom security tooling to detect, report, and remediate infrastructure vulnerabilities
• Integrate log feeds into SIEM platforms (e.g., Splunk) and enable detective controls for critical security events
• Participate in on-call support and serve as a Security System SRE on a rotational basis
• Collaborate with engineering and operations teams to address security gaps
• Identify and remediate security vulnerabilities and incidents

What We Expect

• BS degree or equivalent with 8+ years of experience in enterprise identity and security engineering
• Strong expertise in IAM technologies: SAML, OAuth/OAuth2, OpenID Connect, MFA, SSO, OIDC, encryption, session management
• Hands-on experience with IAM products such as Okta, Ping Identity, SailPoint, Active Directory, LDAP
• Strong understanding of cloud security across Google Cloud Platform, AWS, and Azure (compute, serverless, firewalls, IAM, network controls, egress controls)
• Experience building scalable, well-instrumented cloud security solutions
• Proficiency with JSON, YAML, XML
• Programming/scripting experience with Python, Go, Terraform, Google Cloud Platform CLI, and API integrations
• Experience integrating security into CI/CD pipelines using tools like Jenkins, GitHub Enterprise, Artifactory, CircleCI
• Strong communication skills to collaborate with cross-functional stakeholders and guide security architecture decisions