Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Nexthink

Senior Corporate Security Engineer

Nexthink

. Identity-Centric Security Architecture: Contribute to the design and support the implementation of passwordless authentication and Zero Trust principles.

Posted 4/22/2026full-timeRemote • 🇩🇪 GermanySeniorWebsite

Tech Stack

Tools & technologies
AzureCloudJamfLinuxMacOSPythonTerraform

About the role

Key responsibilities & impact
  • Identity-Centric Security Architecture: Contribute to the design and support the implementation of passwordless authentication and Zero Trust principles.
  • Manage secure provisioning and lifecycle management, ensuring least-privilege access across all business systems.
  • Partner with HR and IT to streamline onboarding/offboarding workflows, ensuring timely access revocation and auditability.
  • Endpoint & Infrastructure Security: Define and enforce security baselines for our diverse fleet of endpoints (Windows, macOS) and mobile devices via MDM (Intune/Jamf).
  • Manage and tune EDR/XDR solutions to ensure high-fidelity detection on workstations and servers (Windows, Linux, macOS).
  • Secure the corporate Azure footprint, ensuring proper configuration of subscriptions, networking, and resources distinct from our production product environment.
  • Proactively identify and mitigate security risks in our corporate environment, conducting regular security assessments and vulnerability scans.
  • Coordinate vulnerability management and patch management.
  • Collaborate with IT to automate endpoint compliance checks and remediation workflows.
  • Security Engineering: Support the development and maintenance of Infrastructure-as-Code.
  • Ensure hardening and compliance of endpoints and servers.
  • SaaS Security & Integration: Assess and secure third-party SaaS integrations (e.g., Salesforce apps, browser extensions, productivity tools) to prevent data leakage and over-privileged access.
  • Collaborate with Legal and Compliance to vet new vendors and tools.
  • Configure and maintain CASB and DLP policies to safeguard sensitive corporate data without hindering productivity.
  • Detection, Response & Automation: Lead incident response activities for corporate security events (phishing, malware, lost devices).
  • Develop automation scripts (Python/PowerShell) and workflows (SOAR) to automate manual security tasks, evidence collection, and response actions.
  • Proactively hunt for threats within the corporate network and identity providers.
  • Develop incident response playbooks including technology specific procedures and forensics collection.
  • Audits and Compliance: Design and implement security controls to safeguard corporate resources, including endpoints, data storage, networking, computing and identity and access management.
  • Support and automate evidence collection for audits.
  • Culture & Collaboration: Act as the primary security liaison to the IT Department and business teams, helping them build security into their operations (DevSecOps for IT).
  • Design and deliver technical security training and awareness campaigns for engineering and business teams.

Requirements

What you’ll need
  • 5-8 years of hands-on experience in Corporate Security, IT Security Engineering, or a SOC role in a cloud-first environment.
  • Endpoint Mastery: Experience hardening operating systems (macOS/Windows) and managing security via MDM/UEM tools.
  • Vulnerability management: Proven experience in helping IT and business teams patching systems and infrastructures.
  • Coding Skills: Proficiency in Python and Terraform for automating APIs and security workflows.
  • Security Ops: Proven experience with EDR tools and SIEM log analysis.
  • Communication: Fluent in English with the ability to explain complex risks to non-technical stakeholders.
  • Proven ability to influence and drive security best practices across non-security teams.
  • Experience with security awareness training platforms and phishing simulation tools.

Benefits

Comp & perks
  • 💼 Permanent Contract and a competitive compensation package
  • 🏖️ Flexible Hours and unlimited vacation (employees have unlimited paid time off on top of the 30 days of holidays we offer) plus 3 company-paid volunteer days.
  • 🏡 100% remote work with occasional travels to meet with colleagues and customers
  • 📚 Free access to professional training platforms to explore your interests and enhance your skills.
  • 🍼 16 weeks of fully paid leave for primary caregivers, extendable up to 8 additional months unpaid, and 6 weeks of fully paid leave for secondary caregivers.
  • 🏥 Feel protected with 24/7 accident insurance coverage for any accidents at work or during free time.
  • 📣 Bonuses for referring successful hires after three months of continuous employment.

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
passwordless authenticationZero Trust principlessecure provisioninglifecycle managementendpoint securityEDRXDRInfrastructure-as-CodePythonTerraform
Soft Skills
communicationinfluencecollaborationsecurity trainingrisk explanation