Security Engineer II (Cloud Security)

Overview As a member of the ShipBob Team, you will … Grow with an Ownership Mindset :We champion continuous learning and innovation.You'lltake on real problems,create tangiblesolutions, anddrive results that move the needleforShipBob,our merchants, and for your own professional growth.Ifyou'reready to do the most meaningful work of your career, this is the place. Collaborate with Peers and Leaders Alike :AtShipBob,leaders areaccessible;feedback flows in both directions, andeveryone, regardless of their seniority or role, steps up to help when needed.We hold each other tohigh standardsbecause we trust each other to meet them. That combination of transparency and mutual respect is what makes the work here feel worth doing. Experience a High-Performance Culture and Clear Purpose :We are results-driven andclear about what that means: ourgoals are specific, accountability is shared, and every team member can see how their work connects toour mission. When we hit milestones, we celebrate them together. When we fall short, we learn and move forward. Location Remote - India Shift Timings US Hours 7 pm-4 am IST Role Description As a Security Engineer II, you will play a pivotal role in ShipBob’s Information Security and Governance, Risk, and Compliance programs. You will design, implement, and maintain access control and threat detection solutions, participate in risk assessments and audits, and collaborate across teams to ensure the confidentiality, integrity, and availability of our critical data and systems. You will also support monitoring and detection, vulnerability assessments and incident response for ShipBob. This role reports to the Vice President, Information Tech & Security. What You’ll Do Monitor security alerts, investigate incidents, and escalatat needed across security tools. Support SIEM and detection (Sentinel, Defender XDR), tuning alerts and improve detections. Assist vulnerability management program by working with IT/Engineering and other app developers by providing security expertise, tracking remediation and ensuring SLA compliance. Help manage identity security including conditional access, PIM, MFA, RBAC, risky sign‑ins, and access reviews. Maintain security documentation and collect evidence. Develop and automate security workflows, playbooks, and tools to improve the efficiency and effectiveness of security operations. Develop, enforce, and update security policies, procedures, and guidelines for access control, threat detection, and compliance with standards such as ISO 27001, SOC 2, PCI, NIST CSF, and Sarbanes-Oxley. Communicate risks and vulnerabilities to stakeholders, document remediation plans, and proactively share information with management. Build and execute regular threat hunting campaigns focused on current, emerging, and obscure tactics, techniques, and procedures. Proactively search for, identify, and analyze new and existing techniques to detect advanced and targeted threats. Utilize advanced threat hunting techniques to detect anomalies and suspicious activities. Collaborate with security team members, developers, operations, and stakeholders to share knowledge and best practices. Identify process improvements and provide actionable guidance. Perform other duties as assigned. What You’ll Bring to the Table 4+ years of hands‑on work experience with security architecture and engineering in a cybersecurity operations program. 2+ years of experience in incident response, detection, threat intelligence, or access control security engineering roles. Excellent knowledge and experience with access control frameworks and tools (IAM, RBAC, ABAC, OAuth, SAML), cloud security, network security, endpoint security, and threat intelligence. In‑depth knowledge of Azure services (especially Azure Active Directory, Azure AD Identity Protection, Azure RBAC), and experience securing cloud‑based infrastructures (Azure, M365, Google Workspace, Salesforce). Proficiency in scripting languages such as Python, PowerShell, Go, or Bash. Strong knowledge of industry‑standard frameworks (MITRE ATT&CK, ISO 27001, SOC 2, NIST CSF, PCI, SOX, GDPR). Proven ability to manage multiple risk and compliance projects. Strong written and verbal communication; effective collaborator with outstanding interpersonal skills. Excellent analytical and problem‑solving skills supporting business objectives. Detail‑oriented, organized, and able to balance precision with big‑picture thinking. Quick learner who proactively drives personal and professional growth. Demonstrated initiative and ownership in problem‑solving. Strong design and solution implementation skills for Zero Trust Architecture. Desire to solve response challenges with automation. Security+, CISSP, CISA, CISM, CRISC, GCIA, GCIH, GREM, or similar certifications preferred; equivalent experience accepted. All Purpose Leave (casual & sick time): 12 days About You Building the world’s leadingfull-stack fulfillment platformischallengingwork. The problems we solve are complex, the pace is fast, and the bar is high.That meansShipBob’senvironmentisn’tthe rightfit for everyone, andthat’sokay.If you are ready to take ownership,push boundaries, andgrow alongside a team that genuinely supports each other, we would love to hear from you. Equal Employment Opportunity Statement ShipBob provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, c ompensation and training. Benefits All Purpose Leave (casual & sick time): 12 days #J-18808-Ljbffr