Senior Endpoint Security Engineer, CrowdStrike Falcon
AIG
Cyber SecurityLinuxMacOSPython
Cloud Cybersecurity Engineer
Tanium
full-time
Posted on:
Location Type: Hybrid
Location: Addison • California, North Carolina, Texas, Washington • 🇺🇸 United States
Visit company websiteSalary
💰 $100,000 - $295,000 per year
Job Level
Mid-LevelSenior
Tech Stack
AWSAzureCloudGoJavaScriptKubernetesPythonTerraform
About the role
- Collaborate with Detection, Security, and Software Engineers to build, operate, and defend Tanium Cloud's Identity and Access Management (IAM)
- Operate Identity and Access Management (IAM) in Azure, AWS, and Kubernetes using Tanium Cloud’s infrastructure-as-code and policy-as-code.
- Contribute to the implementation of Tanium Cloud’s IAM strategy and controls in collaboration with Security and Software Engineering teams to enable just-in-time and just-enough access.
- Assess the effectiveness and appropriateness of existing policies and permissions and make recommendations to continuously improve Tanium Cloud’s IAM controls.
- Author, test, deploy, and audit the efficacy of AWS IAM policies and Azure Conditional Access Policies tailored to Tanium Cloud to implement strong security controls.
- Support Tanium employees needing assistance with access to Tanium Cloud’s environment.
- Stay up to date with the latest IAM security threats, vulnerabilities, and industry trends to proactively enhance security prevention and detection measures.
- Build, cultivate, and maintain positive relationships with internal customers to identify and facilitate solutions to increase the impact of the team's work.
Requirements
- Bachelor's degree or equivalent experience
- Cloud Security, IT Security, or related technical field preferred
- 3+ years of experience working in security focused roles
- 1+ year of experience with AWS, Azure, or Kubernetes
- Knowledge of cloud-based Identity and Access Management concepts, including AWS Organizations, AWS IAM, AWS Service Control Policies, Azure Entra ID (Entra and Subscription Level RBAC), Azure MyApps, and Azure Policies.
- Hands-on experience using infrastructure-as-code (e.g. Terraform, CloudFormation)
- Familiarity with SAML2, OAuth2, and OIDC for Single Sign On (SSO) with federated identity access brokers (i.e. MyApps, Cognito, KeyCloak).
- Excellent collaboration and communication skills to support the design and implementation of new IAM constructs.
- Experience with modern software development and automation tools like Git and Github Actions
- Experience in at least one modern programming language (e.g., Python, Go, JS, etc.)
Benefits
- medical, dental and vision plan
- family planning benefits
- health savings account
- flexible spending account
- transportation savings account
- 401(k) retirement savings plan with company match
- life, accident and disability coverage
- business travel accident insurance
- employee assistance programs
- disability insurance
- other well-being benefits
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
Identity and Access Management (IAM)AWS IAMAzure Conditional Access Policiesinfrastructure-as-codeTerraformCloudFormationSAML2OAuth2OIDCprogramming languages
Soft skills
collaborationcommunicationrelationship buildingproblem solvingteamwork
Certifications
Bachelor's degreeCloud Security certificationIT Security certification
