Startup Jobs
Post a Job
ShipBob, Inc.

Staff Security Engineer

Remote

AI overview

Design and implement robust access control solutions for cloud-based applications while collaborating in a high-performance culture that prioritizes security and proactive innovation.

As a member of the ShipBob Team, you will... 

  • Grow with an Ownership Mindset: We champion continuous learning and proactive innovation. Team members are encouraged to identify challenges and take ownership of initiatives that drive merchant, company and personal growth. By tackling complex problems and exploring creative solutions, you won’t just follow a playbook, you’ll be actively building the future of ShipBob.
  • Collaborate with Peers and Leaders Alike: ShipBob values collaboration and support, where team members and leaders alike are committed to helping each other succeed. We all set high standards and understand the importance of transparency at all levels. We’ve created an environment where trust, open communication, and mutual respect motivate our teams to reach new heights.
  • Experience a High-Performance Culture and Clear Purpose: Our commitment to delivering results creates a goal-driven, high-performance culture where everyone is empowered to contribute to our mission with a clear understanding of their direct impact and accountability. We measure success in tangible ways, allowing each team member to see the positive outcomes of their work and celebrate shared victories.

Location: Remote-India

Role Description: 

As a Staff Security Engineer (Access Control & Identity Access Management), you will design, implement, and maintain access control policies and systems for our cloud-based applications and infrastructure. You will also work closely with other security engineers, developers, and operations teams to ensure that our environment is secure and compliant with industry standards and best practices. You will play a pivotal role in identifying and analyzing cyber threat tactics, techniques, and procedures ensuring proactive detection capabilities to aid the global threat detection and response mission. You will use your expertise in security technologies, access control, threat detection, and incident response methodologies to ensure the confidentiality, integrity, and availability of our critical data and systems. This role reports to the VP, Information Tech & Security. 

What you’ll do: 

  • Design and implement access control solutions for cloud-based applications and infrastructure using tools such as Azure AD, M365, Google Workspace, Salesforce, etc. 
  • Monitor and audit access control activities and events for anomalies. 
  • Develop and enforce access control policies and standards based on the principle of least privilege and role-based access control. 
  • Develop and automate security workflows, playbooks, and tools to improve efficiency and effectiveness of security operations. 
  • Develop relevant policies, procedures, and guidelines for access control and ensure compliance with, and support audits for, various standards, including but not limited to ISO270001 and SOC2. 
  • Design and configure Azure Active Directory (AAD) for effective access management to be used within Azure and leveraged in other applications such as Retool and SSMS. 
  • Research and evaluate emerging threats and security technologies and provide recommendations for enhancing our security posture. 
  • Collaborate with other security team members and stakeholders across the organization to share knowledge and best practices. 
  • Work closely with all teams to continuously provide technology requirements and use cases for enabling technologies including but not limited to SIEM, SOAR, Case Management, GRC, EDR, Intrusion Detection Systems, Web Proxy/Content Filtering, Active Directory, and PKI. 
  • Proactively search for, identify, and analyze new and existing techniques to detect advanced and targeted threats. 
  • Participate in risk assessments and implement controls to mitigate identified risks. 
  • Additional duties and responsibilities as necessary. 

What you’ll bring to the table: 

  • 6+ years of hands-on work experience with security architecture and engineering in a cyber security operations program. 
  • 4+ years of experience in an access control security engineering or related role. 
  • Sound knowledge and experience with access control frameworks and tools, such as IAM, RBAC, ABAC, OAuth, SAML, etc. 
  • In-depth knowledge of Azure services, especially Azure Active Directory, Azure AD Identity Protection, and Azure RBAC. 
  • Demonstrated experience in designing and implementing access controls in cloud environments, particularly with Azure. 
  • Track record of integrating security practices into the software development process. 
  • Track record of integrating security practices into database systems such as SSMS. 
  • Excellent knowledge of cloud security, network security, endpoint security, and threat intelligence. 
  • Proficiency in scripting languages such as Python, PowerShell, Go, or Bash. 
  • Established experience securing cloud-based infrastructures; Azure, M365, Google Workspace, Salesforce, etc. 
  • Excellent fundamental knowledge of industry standard frameworks such as MITRE ATT&CK. 
  • Desire to solve response challenges with automation. 
  • Demonstrated ability designing and deploying security controls across all security domains such as access management, data protection, vulnerability management, incident response and management, application security, network security, preventive, detective, and offensive security solutions. 
  • Solid design and solution implementation skills for a Zero Trust Architecture. 
  • Outstanding interpersonal and communication skills with the ability to influence both internally and externally, and to deliver multi-functional alignment and action. 

Perks & Benefits: 

  • Medical, Term & Accidental Insurance 
  • All Purpose Leave (casual & sick time): 12 days 
  • Earned Leave: 15 days 
  • Public Holiday: 12 days 
  • Generous Maternity & Paternity Leave 
  • Quarterly Wellness Day 
  • Work From Home Allowance 
  • See Our High-Performing Culture >>> Check us out on Instagram (@lifeatshipbob) 

We recognize that people come with a wealth of experience and talent beyond just the technical requirements of a job. If your experience is close to what you see listed here, please still consider applying. Diversity of experience and skills combined with passion is a key to innovation and excellence; therefore, we encourage people from all backgrounds to apply to our positions. 

About You: 

The work we do at ShipBob is both challenging and rigorous, which means our environment isn’t the right fit for everyone, and that’s okay. We welcome energetic high performers who thrive in a dynamic, collaborative, results-driven environment. We value individuals who embrace accountability and humility, push boundaries, and are motivated by challenging work. Every team member, no matter their role or tenure, is expected to roll up their sleeves and tackle the complex problems we face in today’s global supply chain. 

Learn more about our core values and how we perform at a high level in our day-to-day work on our Culture page (https://www.shipbob.com/careers/culture/).

About Us:  

ShipBob is a leading global supply chain and fulfillment technology platform designed for SMB and Mid-Market ecommerce merchants to provide them access to best-in-class capabilities and to deliver a delightful shopper experience. Merchants can outsource their entire fulfillment operations, utilize ShipBob’s proprietary warehouse management system for in-house fulfillment, or take advantage of a hybrid solution across ShipBob’s dozens of fulfillment center network in the United States, Canada, United Kingdom, Europe, and Australia. ShipBob is backed by leading investors like Menlo Ventures, Bain Capital Ventures, Hyde Park Venture Partners, and SoftBank Vision Fund 2, and is one of the fastest-growing tech companies headquartered in Chicago. 

ShipBob provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. 
 
This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training. 

There is no deadline to apply for this position, as ShipBob accepts applications on an ongoing basis

Perks & Benefits Extracted with AI

  • Health Insurance: Medical, Term & Accidental Insurance
  • Home Office Stipend: Work From Home Allowance
  • Paid Parental Leave: Generous Maternity & Paternity Leave
  • Paid Time Off: Public Holiday: 12 days
  • Wellness Stipend: Quarterly Wellness Day
ShipBob, Inc.

ShipBob is a global ecommerce fulfillment solution that empowers businesses to scale, offer 2-day shipping, manage inventory, and streamline shipments. With a focus on simplifying the shipping process, ShipBob provides best-in-class supply chain soluti...

Website LinkedIn
View all jobs
Get hired quicker

Be the first to apply. Receive an email whenever similar jobs are posted.

Ace your job interview

Understand the required skills and qualifications, anticipate the questions you may be asked, and study well-prepared answers using our sample responses.

Staff Security Engineer Q&A's
Report this job
Apply for this job