Find The RightJob.
Senior Security Engineer
As BWE’s Senior Security Engineer, your role is central to protecting our environment and advancing our security posture. You will serve as a key technical partner to the Director of Security, translating strategic security initiatives into structured, hands-on implementation across identity, Azure, endpoint, and compliance domains. We depend on you to bring strong configuration expertise, critical thinking, and the ability to build standards and operational clarity in BWE’s growing Microsoft and Apple-centric environment.
Responsibilities:
Initiative Execution & Technical Leadership
- Partner directly with the Director of Security to execute BWE’s security roadmap initiatives.
- Break down strategic objectives into actionable engineering tasks.
- Identify risks, blockers, and configuration gaps across BWE’s environment.
- Propose structured, risk-based solutions aligned with BWE’s business priorities.
Identity and Access Governance
- Design and implement access governance standards across BWE’s environment.
- Review and rationalize roles, security groups, and privileged access.
- Secure app registrations and service principals.
- Implement least privilege and Conditional Access policies.
- Support lifecycle automation for joiner, mover, and leaver processes.
Azure and Microsoft Security
- Assess and improve BWE’s Azure security posture.
- Harden RBAC role assignments and resource access.
- Configure and tune Microsoft identity, endpoint, and cloud security tools.
- Evaluate current tool configurations and implement improvements aligned with security best practices.
Apple, macOS and iOS Security
- Strengthen mobile device management configuration and compliance policies for Apple devices.
- Align Apple device management with identity and access controls.
- Improve monitoring, logging, and endpoint visibility across macOS and iOS.
Security Tool Configuration and Optimization
- Configure and tune enterprise security tools to align with BWE’s risk and compliance requirements.
- Develop configuration baselines and technical implementation standards.
- Reduce alert noise through intelligent tuning.
- Validate control effectiveness through testing and review.
Standards, Documentation and Communication
- Author technical standards and implementation guides for BWE’s security environment.
- Document control ownership and lifecycle management.
- Translate complex technical risks into clear communication for stakeholders.
- Support audit readiness through structured documentation.
Preferred Qualifications:
- 7+ years in cybersecurity engineering or security architecture.
- Strong hands-on experience with Microsoft Entra ID, Azure AD, and Active Directory in hybrid environments.
- Experience securing Azure environments and implementing RBAC.
- Experience configuring Conditional Access and MFA.
- Experience with Microsoft endpoint and cloud security tools.
- Experience securing macOS and iOS using a mobile device management platform.
- Demonstrated experience configuring and optimizing enterprise security tools.
- Experience building technical standards and structured processes.
- Strong analytical and critical thinking ability.
- Strong written and verbal communication skills.
- Experience supporting SOC 2 or regulated environments.
- Ability to connect security decisions to business outcomes and communicate risk in terms that resonate with non-technical stakeholders.
- Relevant security certifications strongly valued, including CISSP, Microsoft certifications such as SC-200 or AZ-500, GIAC certifications such as GSEC or GCIH, or Jamf 200.
What Success Looks Like:
In this role, you will have a direct and visible impact on BWE’s security maturity. Within your first year, you will have:
- Established a functioning identity governance model that brings structure and visibility to access across the organization.
- Meaningfully reduced privileged sprawl and undocumented access, making BWE’s environment cleaner and more auditable.
- Delivered hardened Azure and endpoint configurations that reflect current security best practices.
- Built clear, reusable technical standards that the team can rely on and build from.
- Improved audit readiness, reducing friction during compliance reviews.
- Accelerated execution of security initiatives by bringing engineering rigor and follow-through to the team.
We encourage you to explore the career opportunities we have available here at BWE!
We encourage you to explore the career opportunities we have available here at BWE!
Similar jobs
Senior Engagement Manager, AWS Professional Services
Amazon Web Services
Atlanta, United States
1 minute ago
Sr. FPGA Modem and Physical Layer Development Engineer, Amazon Leo
Amazon.com
San Diego, United States
7 days ago
Sr Manager, Software Development, Amazon Foundational Security Services
Amazon.com
Herndon, United States
7 days ago
Senior Security Assurance Specialist
Vanguard
Malvern, United States
7 days ago
Senior FPGA Engineer, LEO Payload FPGA
Amazon.com
Sunnyvale, United States
7 days ago
Senior Data and AI Engineer
ECS
Remote, United States
7 days ago
Critical Infrastructure Electrical Engineer (Field Engineer), ADC Field Engineering
Amazon.com
Jessup, United States
8 days ago
© 2026 Qureos. All rights reserved.