Senior Security Engineer

Job summary

Columbia
Engineering

Work model

Remote first
Only United States
2 weeks ago
Job description

Role Summary

The Senior Information Security Engineer is responsible for designing, implementing, and maintaining enterprise‑level security solutions while providing technical leadership across the organization. This role supports global cybersecurity initiatives, leads incident response activities, and ensures alignment with internal and external compliance requirements. The position requires deep technical expertise, strong communication skills, and the ability to operate effectively in a fast‑paced environment.

What You Will Do

  • Design, implement, and administer enterprise information security solutions.
  • Serve as a Tier‑3 escalation point for monitoring and responding to security incidents.
  • Implement controls and processes to meet internal and customer audit requirements.
  • Develop internal and customer‑facing security standards, policies, and procedures.
  • Execute incident response activities in accordance with the Ensono Incident Response Plan.
  • Evaluate, test, and deploy security application upgrades and patches.
  • Deliver consultative expertise on emerging threats, vulnerabilities, and risk mitigation strategies.
  • Document project plans, including timelines, milestones, and deliverables.
  • Mentor new and existing members of the security organization.
  • Provide recommendations and contribute to the development of security product roadmaps.
  • Partner with product owners to ensure alignment between solutions and security product offerings.

What You Will Need

  • 5 -10 years of full‑time experience in information security roles.
  • Experience with security deployment using Azure Cloud.
  • Background in Security‑as‑a‑Service (SaaS) implementations.
  • Strong knowledge of digital forensics or penetration testing methodologies.
  • Experience with file integrity monitoring solutions.
  • Proficiency with vulnerability scanning tools and risk evaluation processes.
  • Experience with password vaulting technologies for secure credential storage.
  • Hands‑on experience implementing and maintaining security frameworks such as PCI‑DSS, SSAE SOC1/SOC2, GDPR, HIPAA, IRS Pub 1075, NIST, and ISO 27001.
  • Experience conducting security incident response in large enterprise environments.
  • Expertise in deploying and maintaining anti‑malware technologies.
  • Familiarity with security auditing and forensic analysis tools.
  • Experience implementing SIEM platforms.

Preferred Tools and Technologies

MS Sentinel, Splunk, Microsoft Defender, Trend Micro, Trellix, Carbon Black, Tenable, Rapid7, Varonis, Microsoft Purview, Azure Cloud.

Education and Certifications

  • Security certifications such as CISSP, CISA, CISM, CEH, or SANS GIAC.
  • Bachelor's degree in Information Security or equivalent professional experience.

Why Ensono?

Ensono is a place to make better happen -- for our clients and for your career. We are a client-facing business, but we do encourage clients to allow us to work remotely most of the time.

Benefits

  • Unlimited Paid Days Off
  • Three health plan options
  • 401k with company match
  • Eligibility for dental, vision, short and long-term disability, life and AD&D coverage, and flexible spending accounts
  • Family Forming Benefit including fertility coverage and adoption/surrogacy reimbursement
  • Paid childbearing and paternal leave
  • Education Reimbursement, Student Loan Assistance or 529 College Funding
  • Sabbatical leave
  • Wellness program
  • Flexible work schedule

Compensation

As of the date of this posting, a good faith estimate of the current pay scale for this role is $112,000 to $130,000 annually based on a full-time schedule. In addition to base salary, other compensation programs include an annual bonus plan and an equity grant under our Associate Equity Appreciation Program.