Security engineer
Loc: San Jose, CA Onsite
Dur: long term
Key Responsibilities
• Perform information security due diligence for M&A transactions
• Assess and document security risks across acquired or merging environments
• Review, secure, and integrate corporate network and identity infrastructures
• Execute hands-on security tasks related to:
o Active Directory (domains, forests, trusts, GPOs, migrations)
o DNS architecture, security, and remediation
o Linux and macOS system security hardening
• Evaluate and deploy Endpoint Detection & Response (EDR) solutions
• Assess backup and disaster recovery (DR) capabilities and gaps
• Review and secure public-facing and internal websites, including TLS, WAFs, and configuration
• Conduct and manage vulnerability management programs (scanning, prioritization, remediation tracking)
• Implement and align security controls with CIS Controls
• Design and enforce Data Loss Prevention (DLP) strategies
• Secure Microsoft 365 / Office 365 environments (identity, email, data, and collaboration security)
• Assess and improve cloud security posture (AWS, Azure, Google Cloud Platform, or hybrid environments)
• Collaborate with IT, infrastructure, cloud, legal, and compliance teams
• Produce clear risk assessments, remediation plans, and executive-ready documentation
• Support security incident response related to M&A activities
Required Skills & Experience
• 10+ years of experience in Information Security, Infrastructure and Network Security
• Strong hands-on experience securing enterprise environments across:
o Windows, Linux, and macOS
o Active Directory and enterprise identity platforms
o DNS and network services
o Securing external facing web applications
• Proven experience with:
o EDR/XDR tools
o Vulnerability scanning and remediation workflows
o Backup and disaster recovery strategies
• Solid understanding of:
o Identity and Access Management (IAM)
o Zero Trust and least-privilege principles
o Enterprise security architectures
• Experience supporting M&A projects, including due diligence, integration, and carve-outs
• Ability to assess risk quickly in complex, time-sensitive environments
Preferred Qualifications
• Experience with Azure AD / Entra ID, Intune, and hybrid identity
• Strong knowledge of Office 365 security (Defender, Purview, Conditional Access, DLP)
• Experience with cloud security controls and CSP-native security tools
• Familiarity with security frameworks (CIS, NIST, ISO 27001)
• Security certifications such as CISSP, CISM, CCSP, or Microsoft security certifications
• Consulting or contractor experience in fast-paced M&A environments
Soft Skills
• Strong analytical and problem-solving skills
• Ability to work independently with minimal supervision
• Excellent communication skills with technical and non-technical stakeholders
• Comfortable operating under aggressive M&A timelines
• Strong documentation and reporting skills
Never miss an opportunity! Create an alert based on the job you applied for.
