Senior Security Engineer, Enterprise Security

As a Senior Security Engineer on the Enterprise Security team, you'll protect Braze employees, their assets, and work locations using various tools and technologies. Your responsibilities include investigating malware and advanced threats, implementing DLP in a variety of solutions, securing SAAS applications, hardening internal configurations, proposing security architecture enhancements, and developing alerts & reports.

In this role you will build, maintain, and document essential security infrastructure operating at the center of cloud operations, product, app security, and system architecture. That includes developing and enforcing policies, collaborating with other business units to enhance SIEM capabilities, and reviewing business partner technologies for security improvements.

This role allows for collaboration with technical stakeholders to further expand upon DLP, Integrations management & 3rd party Saas application review, Shadow AI, IAM, SSO, and vulnerability remediation. Take charge of securing communications, facilitating compliance, and deploying automation. You'll operate independently and collaboratively to implement protective systems and mentor junior associates in security concepts.

As a senior team member, you'll help build functionality for a high-scale, growing customer base, collaborate with diverse security professionals, address unique security challenges, participate in on-call rotations, and respond to critical incidents.

On-call rotation and working with Security and Engineering resources to help respond to critical incidents and escalations is an active part of this role.

Qualifications:

• 5+ years of Security Engineering experience with a strong focus on enterprise security, network security, endpoint security
• 3+ years of experience working in a corporate security organization/environment with hands on, technical, user facing implementation
• Prior experience working as a technical authority in a team environment
• A self-starter with great communication and organizational skills
• Professional experience with the modern tech stack and protecting SaaS applications. Direct technical and hands on experience with securing Email, Mac endpoints, IAM, Crowdstrike EDR, Enterprise networking security (both endpoint and infra), and forensics
• Experience conducting end-to-end security reviews of SaaS applications, data flow analysis, Technical architecture, authentication and authorization controls, and contractual security requirements, to ensure third-party tools meet organizational security standards
• Experience leading the design, implementation, and continuous tuning of Data Loss Prevention (DLP) programs across endpoints, networks, and cloud environments, including policy development, incident triage, data classification alignment, and cross-functional collaboration to prevent unauthorized exfiltration of sensitive data. 

Bonus:

• Cloud security experience
• Technical Security Certifications that delve deeper than high level concepts

#LI-Hybrid