Security Engineer I

Job Summary:

The Security Engineer I is responsible for day‑to‑day security operations and hands‑on IT support that protect Gametime’s people, data, and systems. The role focuses on internal user support, alert triage, identity and endpoint hygiene, vulnerability and access management, and first-line incident response in partnership with senior and lead engineers. This role will initially begin focusing on IT support where needed and transition into full-time security engineering.

Key Responsibilities:

Security Operations & Engineering

• Creates, monitors, and triages security signals in Datadog, CloudWatch, and Loki; participates in SIEM evaluation and onboarding.
• Supports vulnerability management by tracking findings, driving remediation with service owners, and verifying closure against agreed SLAs.
• Maintains identity and access hygiene in critical applications: enforces MFA, applies least‑privilege access patterns, and participates in periodic access reviews.
• Assists with endpoint security baselines via Kandji, Intune, and SentinelOne; helps remediate non‑compliant devices.
• Supports secure SDLC practices: dependency hygiene, secrets management, and security checks in CI; raises risks in design/review with actionable recommendations.
• Contributes to web/mobile application security by coordinating with product/engineering on secure release practices and platform‑specific control considerations.
• Coordinates and maintains security training and awareness campaigns.
• Authors and maintains security documentation: policies, procedures, runbooks, FAQs, and user‑facing guidance.
• Support audits, compliance assessments, and third-party risk reviews.

IT Operations & Support

• Onboarding & Offboarding: Sets up accounts, provisions hardware, applies appropriate access controls; collects, wipes, and reassigns devices during offboarding.
• Asset Management: Tracks and reconciles hardware/software inventory; assists with shipping, receiving, and device preparation for employees.
• Helpdesk / Jira Ticket Support: Monitors Jira queues and Slack Support channels. Meet first‑response SLAs; handles routine troubleshooting (account lockouts, software installs, printer/network issues); escalates complex issues with clear notes and reproduction steps.
• Troubleshooting & Hands‑On Support: Joins calls or screen shares with end users for initial diagnosis; communicates clearly and walks users through fixes.

Key Competencies:

Technical Skills

• Working knowledge of Google Workspace, Okta, Slack, Jira, Kandji, and Intune.
• Familiarity with AWS fundamentals (IAM, Secrets Manager, KMS) and centralized logging (Loki).
• Experience with monitoring/alerting in Datadog and basic query/visualization for investigations.
• Comfort with Linux/macOS administration and common endpoint/network troubleshooting.
• Exposure to scripting or automation (Python, Bash, Go) and strong Git hygiene for config/runbook changes.

Interpersonal Skills

• Patient, professional, and approachable when partnering with non‑technical staff.
• Clear, concise asynchronous communication and documentation; constructive collaboration across teams.
• Ownership mindset; follows tasks through to completion and escalates risks early.

Problem‑Solving & Decision‑Making

• Uses logs, alerts, and runbooks to diagnose issues; proposes minimal, testable fixes.
• Applies least‑privilege and defense‑in‑depth principles; makes risk‑based, auditable decisions.
• Identifies root causes and contributes durable prevention measures.

Minimum Qualifications:

• Education: Bachelor’s degree in a technical field or equivalent practical experience.
• Experience: Approximately 1–2 years in security operations, IT support, or related roles (relevant internships or open‑source contributions considered).
• Foundational Practices: MFA, phishing awareness, least‑privilege, secure handling of credentials/secrets.
• Other Requirements: Strong written and verbal communication.

Preferred Qualifications:

• Hands‑on experience with Okta (group/rule hygiene, lifecycle), Google Workspace administration, Kandji/Intune compliance policies.
• Familiarity with AWS security (IAM roles/policies, security groups, encryption at rest/in transit) and CloudTrail/CloudWatch log flows.
• Experience building Datadog monitors/dashboards and basic detections; exposure to SIEM concepts.
• Experience with Python for automation and security tooling integration.
• Experience with Terraform for secure resource configuration and deployment.
• Awareness of web/mobile app security considerations.
• Experience with Docker and AWS ECS/EKS for securing and managing containerized applications.

Performance Metrics:

• IT Service:
• ≥95% Jira tickets first‑response within SLA; median resolution time within target by priority.
• Onboarding/offboarding completion within 1 business day; ≥95% device compliance in MDM.
• Vulnerability & Access Management:
  
  
• ≥90% of critical/high vulnerabilities remediated within SLA; quarterly access reviews completed on time with documented exceptions.