Staff Security Engineer - Corporate Security jobs in United States
cer-icon
Apply on Employer Site
company-logo

Obsidian Security · 2 weeks ago

Staff Security Engineer - Corporate Security

positionPalo Alto, CA
timeFull-time
remoteOnsite
senioritySenior Level, Lead/Staff
money$190K/yr - $243K/yr
date6+ years exp

Obsidian Security is a cybersecurity startup focused on securing SaaS applications. They are seeking a Staff Security Engineer to enhance their corporate security program through the optimization and automation of security controls, and to implement scalable security solutions across their global environments.

ComputerCyber SecurityNetwork SecuritySaaS
check
H1B Sponsor Likelynote

Responsibilities

Corporate Security Operations and Architecture
Support IT by enhancing and automating security controls for corporate IT systems, including Google Workspace, Microsoft 365, Salesforce, Meraki, Jamf, Atlassian, Notion, and Slack
Operate, integrate, monitor, and automate security tooling such as endpoint detection and response, SIEM, SaaS Security Platforms, Email Security Platforms, CNAPP, MDM, EPM, and firewall technologies
Define, implement, and enforce secure and hardened patterns for corporate endpoint deployments and operations
Create automation workflows for security incident detection and response across corporate environments
Secure Identity Access Management and Privilege Access Management systems, and ensure that least privilege access and RBAC models are adequately designed and implemented
Ensure corporate password and secrets managers are securely hardened and monitored
Support product penetration testing and corporate red teaming exercises
Support security program continuity and resiliency by maturing security documentation, processes, and runbooks. Build playbooks for recurring security events and operations
Perform regular access reviews and corporate vulnerability management
Drive zero-trust principles in corporate network communication and access control
Support the GRC Team with security compliance for standards such as SOC 2 and ISO 27001
Assist the GRC Team with internal and external security audits such as SOC 2 and ISO 27001
Maintain accurate inventories of systems, users, and data flows across the corporate environment
Help drive security awareness and training programs across the company
Conduct Third-party Risk Management in support of the procurement of corporate products and services
Support the GRC Team with inbound customer and prospect security reviews and due diligence
Ensuring Obsidian assets are managed to a high-security standard
Implement security tooling, automation, and orchestration as needed for detection, response, reporting, and vulnerability management capabilities
Ensure that security tooling is maintained, optimized, and consistently deployed across the Obsidian install base
Develop security threat detection rules and analytics within Obsidian security tooling systems and drive posture security maturity

Qualification

Security EngineeringIncident ResponseThreat ManagementSecurity Posture ManagementPythonIAMPAMSIEMEndpoint SecurityGRC ComplianceTeam-orientedCommunication SkillsProblem Solving

Required

At least 6 years of Security Engineering and Operations experience
Proficiency in the following security domains: Endpoint Detection and Response, SIEM, Network Security Monitoring and Hardening, Endpoint Security Management and Hardening, Security Posture Management, Defense in Depth, IAM and PAM, SOAR
Experience with security capabilities of modern IT systems such as Google Workspace, Microsoft 365, Slack, Notion, and Jira
Experience working with multiple internal and external stakeholders during incident lifecycles
Experience communicating across a company to drive adherence and education on security best practices, standards, and policies

Preferred

Added preference if proficient in scripting for security automation in a language such as Python

Benefits

Competitive compensation with equity and 401k
Comprehensive healthcare with dental and vision coverage
Flexible paid time off and paid holiday time off
12 weeks of new parent or family leave
Personal and professional development resources

Company

Obsidian Security

twittertwittertwitter
company-logo
Obsidian Security is a threat detection and posture management for business-critical saas applications.
dateFounded in 2017
location
Newport Beach, California, USA
people-size51-200 employees
web-link
https://www.obsidiansecurity.com

H1B Sponsorship

Obsidian Security has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (5)
2024 (5)
2023 (1)
2022 (4)
2021 (3)
2020 (2)

Funding

Current Stage
Growth Stage
Total Funding
$119.5M
Key Investors
Wing Venture CapitalGreylock
2022-04-14Series C· $90M
2019-02-27Series B· $20M
2017-06-08Series A· $9.5M

Leadership Team

leader-logo
Hasan Imam
CEO
linkedin
leader-logo
Ben Johnson
Co-Founder
linkedin

Recent News

Greylock
Our Investment in Obsidian Security
2025-12-29
Greylock
Greylock Portfolio - Obsidian Security
2025-12-29
linkedin.com
Glenn Chisholm’s Post
2025-12-04
Company data provided by crunchbase