Senior Security Engineer - Corporate Information Security
At GuidePoint, you'll work alongside the best and brightest in the industry—innovative security engineers, architects, and thought leaders who are defining the future of cyber defense.
This highly technical position demands strong hands-on expertise, sound judgment in dynamic situations, and the ability to operate across multiple domains of security. We are seeking candidates with deep expertise in two or more of the following areas: cloud and network architecture, identity and access management, automation, threat detection, incident response and data protection. This is a high-impact role for someone who combines technical depth with a proactive, solutions-oriented mindset.
The Senior Security Engineer is expected to cultivate a good relationship with engineering and IT teams to harden our environment, automate defenses, and enable secure service delivery at scale.
This position is 100% remote, and the Senior Security Engineer must be self-directed, able to work both individually and as part of a multifunctional team and possess the necessary written and verbal communication skills to interact effectively with team members, IT, and other internal customers.
Key Responsibilities
Architect and implement security controls across cloud platforms, endpoints, and SaaS applications.
Implement and monitor data protection technologies including DLP, Labeling, Scanning, etc. across SaaS and Cloud.
Define and enforce trust boundaries across cloud networks, applications, and endpoints — with a focus on segmentation, identity isolation, and minimal privilege.
Lead the collaboration with IT on the design and monitoring of comprehensive Identity and Access Management (IAM) programs, including role-based access control Identity federation, SSO, SAML, OIDC, and SCIM integrations.
Drive automation for security processes and control enforcement using Python and modern infrastructure-as-code tools.
Support threat hunting, event triage and incident response by analyzing security events and telemetry from detection tools.
Define and implement secure configuration baselines for cloud services, endpoints, and user environments.
Contribute to security architecture reviews and support secure-by-design patterns for new systems.
Support audit readiness, compliance assessments (e.g., SOC 2, ISO 27001), and risk management activities.
Document playbooks, configurations, architecture diagrams, and process flows.
Mentor peers and cross-functional teams on security risks, best practices, and secure architecture principles.
Required Qualifications
8+ years of experience in security engineering, with strong emphasis on endpoint, cloud-native and SaaS environments.
In-depth knowledge of operating systems including Linux, Windows, Mac and network protocols TCP/IP, DNS, SMTP, HTTP/S and SSH.
Experience with IAM, including federated identity, RBAC, lifecycle management, and cloud-native policy design.
Familiarity with identity protocols and standards including SAML, OIDC, OAuth2, and SCIM.
Proven track record implementing data protection controls in production.
Solid understanding of cloud security architecture, network segmentation, endpoint hardening, and service exposure minimization.
Hands-on experience with EDR, SIEM vulnerability management, and cloud security posture management (CSPM).
Demonstrated experience supporting incident detection, event triage, investigation, and response workflows.
Strong understanding of modern security frameworks (NIST, CIS Controls, ISO 27001, SOC 2).
Excellent communication and collaboration skills, including the ability to work across functions and communicate risks effectively.
Preferred Qualifications
Bachelor’s or advanced degree, optimally in technology or business.
Good Python development skills and experience automating security tasks and controls.
One or more active security certifications (e.g., CISSP, GIAC, AWS Security Specialty, Azure Security Engineer).
Senior Security Engineer - Corporate Information Security
At GuidePoint, you'll work alongside the best and brightest in the industry—innovative security engineers, architects, and thought leaders who are defining the future of cyber defense.
This highly technical position demands strong hands-on expertise, sound judgment in dynamic situations, and the ability to operate across multiple domains of security. We are seeking candidates with deep expertise in two or more of the following areas: cloud and network architecture, identity and access management, automation, threat detection, incident response and data protection. This is a high-impact role for someone who combines technical depth with a proactive, solutions-oriented mindset.
The Senior Security Engineer is expected to cultivate a good relationship with engineering and IT teams to harden our environment, automate defenses, and enable secure service delivery at scale.
This position is 100% remote, and the Senior Security Engineer must be self-directed, able to work both individually and as part of a multifunctional team and possess the necessary written and verbal communication skills to interact effectively with team members, IT, and other internal customers.
Key Responsibilities
Architect and implement security controls across cloud platforms, endpoints, and SaaS applications.
Implement and monitor data protection technologies including DLP, Labeling, Scanning, etc. across SaaS and Cloud.
Define and enforce trust boundaries across cloud networks, applications, and endpoints — with a focus on segmentation, identity isolation, and minimal privilege.
Lead the collaboration with IT on the design and monitoring of comprehensive Identity and Access Management (IAM) programs, including role-based access control Identity federation, SSO, SAML, OIDC, and SCIM integrations.
Drive automation for security processes and control enforcement using Python and modern infrastructure-as-code tools.
Support threat hunting, event triage and incident response by analyzing security events and telemetry from detection tools.
Define and implement secure configuration baselines for cloud services, endpoints, and user environments.
Contribute to security architecture reviews and support secure-by-design patterns for new systems.
Support audit readiness, compliance assessments (e.g., SOC 2, ISO 27001), and risk management activities.
Document playbooks, configurations, architecture diagrams, and process flows.
Mentor peers and cross-functional teams on security risks, best practices, and secure architecture principles.
Required Qualifications
8+ years of experience in security engineering, with strong emphasis on endpoint, cloud-native and SaaS environments.
In-depth knowledge of operating systems including Linux, Windows, Mac and network protocols TCP/IP, DNS, SMTP, HTTP/S and SSH.
Experience with IAM, including federated identity, RBAC, lifecycle management, and cloud-native policy design.
Familiarity with identity protocols and standards including SAML, OIDC, OAuth2, and SCIM.
Proven track record implementing data protection controls in production.
Solid understanding of cloud security architecture, network segmentation, endpoint hardening, and service exposure minimization.
Hands-on experience with EDR, SIEM vulnerability management, and cloud security posture management (CSPM).
Demonstrated experience supporting incident detection, event triage, investigation, and response workflows.
Strong understanding of modern security frameworks (NIST, CIS Controls, ISO 27001, SOC 2).
Excellent communication and collaboration skills, including the ability to work across functions and communicate risks effectively.
Preferred Qualifications
Bachelor’s or advanced degree, optimally in technology or business.
Good Python development skills and experience automating security tasks and controls.
One or more active security certifications (e.g., CISSP, GIAC, AWS Security Specialty, Azure Security Engineer).