Security Engineer

📋 Description

• • Own the end-to-end vulnerability management program for a fleet of 10,000+ connected vehicles and a rapidly growing SaaS platform that serves hundreds of school districts nationwide. You will design repeatable workflows that scan, triage, and remediate vulnerabilities across cloud, on-prem, and edge environments, ensuring that every bus route and every line of code is protected.
• • Build and maintain automations that turn manual security tasks into lights-out processes. Using Python, Bash, or PowerShell you will create bots that ingest threat-intel feeds, correlate events in our SIEM, open Jira tickets, and even trigger patch deployments—freeing the team to focus on strategic initiatives instead of repetitive clicks.
• • Lead the implementation of SOC 2 Type II compliance from gap analysis through audit day. You will map controls to Trust Services Criteria, draft policies that are actually readable, and stand up evidence-collection pipelines so that compliance becomes a by-product of doing things right, not a last-minute scramble.
• • Translate SOX requirements into technical controls inside NetSuite, Expensify, and other financial systems. You will configure role-based access, segregation-of-duties rules, and automated attestation workflows that satisfy auditors while keeping Finance productive.
• • Serve as the first responder during security incidents—whether it’s a suspicious login at 2 a.m. or a potential firmware compromise on an electric bus. You will coordinate cross-functional war rooms, preserve forensic artifacts, run root-cause analysis, and publish post-mortems that make us stronger every time.
• • Partner with IT and Engineering to enforce least-privilege access across AWS, G-Suite, Okta, and our custom driver app. You will design DLP policies that protect student data without slowing drivers down, and you will champion a Zero-Trust mindset across the company.
• • Conduct red-team-style penetration tests against our APIs, mobile apps, and vehicle telematics units. You will simulate real-world attack chains—from phishing a school admin to pivoting into the charger network—and then work with Engineering to close the gaps you find.
• • Launch AI-driven initiatives that give the Security & IT teams superpowers. Think anomaly-detection models that flag risky driver behavior or NLP bots that auto-classify support tickets for faster triage.
• • Continuously evaluate and integrate new security technologies. Whether it’s an open-source tool or a bleeding-edge EDR platform, you will run proof-of-concepts, build business cases, and roll out solutions that scale with our Series E growth trajectory.
• • Document everything in a way that non-security humans actually understand. Your runbooks, architecture diagrams, and policy wiki pages will become the single source of truth for auditors, engineers, and future teammates alike.