Requirements

5+ years of experience in corporate/enterprise security, IT security, or endpoint security engineering
Deep hands-on expertise with:
- MDM platforms: JAMF, Kandji, Intune, or similar for macOS/iOS fleet management
- EDR/XDR solutions: CrowdStrike, SentinelOne, Microsoft Defender, or similar
- Identity & Access Management: Okta, Azure AD/Entra ID, or similar SSO/IAM platforms
- Authentication protocols: SAML, OAuth, OIDC, SCIM
- Zero Trust architecture: Device trust, conditional access, identity verification, and least-privilege access models
Strong scripting/automation skills: Python, Go, Bash for security automation and tooling
Cloud security knowledge: Hands-on experience with AWS, GCP, or Azure
macOS security expertise: Deep understanding of macOS security architecture, hardening, and management
Proven ability to independently manage projects, navigate ambiguity, and drive initiatives to completion
Collaboration skills: Ability to work cross-functionally, influence without authority, and translate security requirements for non-technical stakeholders
Security-first mindset with practical knowledge of zero-trust principles, defense-in-depth, and risk-based security

Nice to Haves

Crypto/Web3 or fintech experience: Prior work at crypto exchanges, wallets, DeFi protocols, or fintech startups
Detection engineering background: Experience with SIEM, log analysis, threat hunting, or SOC operations
Modern threat landscape knowledge: Understanding of adversary tactics, techniques, and procedures (TTPs) including social engineering, phishing, and insider threats
Security compliance experience: Familiarity with SOC 2, ISO 27001, or similar frameworks
BYOD security models: Experience securing contractor and vendor access in distributed environments