ALBUM

Opportunity for Impact

The Corporate Security Engineer is a critical member of Taxbit’s growing Security organization. This role owns the design, deployment, and lifecycle management of Taxbit’s corporate IT and security infrastructure—with a focused emphasis on identity management via Okta, endpoint management via Jamf and Intune, and productivity administration via Google Workspace.

You will work cross-functionally with the Security Operations and Infrastructure teams to ensure Taxbit’s corporate environment is hardened, auditable, and scalable. This role is both hands-on technical and strategically oriented—you will be expected to build programs, not just maintain systems.

Role and Responsibilities

• Administer and mature Taxbit’s Okta Workforce Identity platform, including SSO integrations, lifecycle management, MFA policy enforcement, and directory provisioning/deprovisioning
• Own the Unified Endpoint Management (UEM) program using Jamf (macOS/iOS) and Microsoft Intune (Windows), including device enrollment, configuration profiles, compliance policies, and patch management
• Administer Google Workspace at the organizational level, including user management, group policies, Drive security controls, Meet hardware, and audit log review
• Collaborate with the Infrastructure and Security Opereations teams to troubleshoot and resolve on-premise and cloud network issues affecting corporate users
• Implement and enforce security baselines across endpoints, ensuring alignment with Taxbit’s security policies and compliance frameworks including ISO 27001, SOC 2, and NIST CSF
• Manage the full lifecycle of Taxbit’s IT asset inventory, including procurement, configuration, deployment, and decommission
• Deliver IT and security onboarding training to new team members; maintain documentation for runbooks, procedures, and configurations
• Gather and organize control evidence to support ISO 27001, SOC 2, and NIST CSF audits for the Risk and Compliance team, and support digital forensics requests from Security Operations
• Track, prioritize, and resolve service tickets with a high degree of ownership and follow-through; identify recurring issues and implement systemic fixes
• Assist with broader Security program initiatives as the team scales

Professional Qualifications

• Bachelor’s Degree in a technical field (Computer Science, Information Systems, Cybersecurity, or related field)
• AI Governance: Experience implementing AI governance controls, including model lifecycle management, AI risk assessments, and alignment with frameworks such as ISO 42001 and the NIST AI Risk Management Framework.
• AI Operations: Familiarity with AI Operations (AIOps/MLOps), including securing AI/ML pipelines, model deployment, and Infrastructure-as-Code for AI workloads.
• Proven track record of identifying opportunities to build, test, and scale AI-powered solutions.
• AI Monitoring: Experience designing or implementing monitoring for AI systems, including model performance, drift detection, prompt and response logging, abuse detection, and operational security monitoring.
• Sees AI as a force multiplier and actively looks for ways to enhance team performance through innovation & curiosity.
• 4+ years of experience in systems administration and security operations, or a related technical role
• Hands-on experience administering Okta Workforce Identity, including SSO, MFA, and lifecycle management
• Proficiency managing Apple (macOS/iOS) devices via Jamf Pro or Jamf Business Plan
• Experience with Microsoft Intune for Windows endpoint management, compliance policy, and Conditional Access
• Strong working knowledge of Google Workspace administration (Admin Console, Groups, Vault, Meet hardware)
• Experience managing the full lifecycle of IT assets, including imaging, deployment, and decommission
• Working knowledge of SIEM/log management tools for endpoint telemetry and security event monitoring
• Familiarity with security frameworks including ISO 27001, SOC 2 trust service criteria, and NIST CSF
• Experience gathering audit evidence and working with Risk & Compliance teams
• Scripting skills (e.g., Bash, Python, or PowerShell) to automate endpoint and identity workflows
• Experience configuring and maintaining remote meeting hardware and conference room AV systems

The base salary range for this role is $78,496 - $187,339. Certain roles may be eligible for incentive compensation, equity, and benefits. Actual compensation will vary depending on various job-related factors, including, but not limited to location, experience, level, and job qualifications.