Ramp

Senior Security Analyst, Enterprise Security

Ramp

full-time

Posted on:

Origin:  • 🇺🇸 United States • New York

Visit company website
AI Apply
Manual Apply

Salary

💰 $160,400 - $220,600 per year

Job Level

Senior

Tech Stack

CloudMacOS

About the role

  • Harden Core Programs: Evaluate and uplift Insider Risk and DLP coverage; tune detections, policies, and workflows end‑to‑end.
  • Secure SaaS at Scale: Use SSPM/CASB and configuration baselines to remediate misconfigurations, remove stale access/admins, enforce key rotation, and gate risky app/OAuth scopes.
  • Operate Sovereign SaaS: Maintain strict access and monitoring for sovereign Google Workspace and Okta tenants; ensure controls map to NIST 800‑53/800‑171 and FedRAMP‑aligned requirements.
  • Modernize Identity & Access: Enforce phishing‑resistant MFA, device‑aware access, least privilege/JIT, SCIM life‑cycle, and strong break‑glass patterns.
  • Endpoint & Network Defense: Keep macOS/Windows hardened at scale (EDR, disk encryption, MDM), ensure patch SLAs, and apply ZTNA/SSE (e.g., Cloudflare WARP) policies.
  • Continuous Improvement: Define metrics (coverage, policy efficacy, MTTD/MTTR, configuration drift), run control health reviews, and close gaps across corporate and sovereign environments.
  • Partner & Ship: Work with IT to validate endpoint agents and patching; document risks, decisions, and runbooks succinctly.

Requirements

  • 3+ years in enterprise/corporate security engineering or operations.
  • U.S. citizenship is required for this role.
  • Proven delivery hardening Insider Risk, DLP, SaaS posture, and endpoint controls.
  • Hands‑on Okta administration and Google Workspace security configuration.
  • Experience with EDR/MDM, SSPM/CASB, DSPM, and ZTNA/SSE; macOS/Windows hardening at scale.
  • Solid grasp of IAM and control mapping in FedRAMP‑aligned environments; familiarity with NIST 800‑53/171.
  • Ability to identify gaps, design remediations, automate where possible, and drive adoption across teams.
  • Clear, concise communicator who writes crisp docs and runbooks.