Endpoint Security Engineer
$170k - $205kCrusoe
Crusoe is on a mission to accelerate the abundance of energy and intelligence. As the only vertically integrated AI infrastructure company built from the ground up, we own and operate each layer of the stack - from electrons to tokens - to power the world's most ambitious AI workloads. When you join Crusoe, you join a team that is building the future, faster.
We're in the midst of the greatest industrial revolution of our time. The demand for AI compute is boundless, and power is a bottleneck. We're solving that - with an energy-first approach that makes AI infrastructure better for the world and faster for the people innovating with AI. We're looking for problem-solving, opportunity-finding teammates with a sense of urgency, who believe in the scale of our ambition and thrive on a path not fully paved - people who want to grow their careers alongside a team of experts across energy, manufacturing, data center construction, and cloud services. If you want to do the most meaningful work of your career, help our customers and partners advance their AI strategies, and be part of a high-performing team that believes in each other, come build with us at Crusoe. About the Role: Crusoe is seeking a Security Engineer to join the Security Engineering team as the primary driver for implementing security defaults and endpoint visibility. This is a strategic, architectural position focused on building secure-by-default endpoints that protect the organization as it scales. You will be responsible for security architecture, endpoint visibility, and maintaining our security posture across a rapidly growing global fleet of macOS, Windows, iOS, and Android devices. This role involves cross-functional partnership with Security and People Operations, with genuine scope to shape how Crusoe manages and secures endpoints. This role is onsite in San Francisco, CA, Sunnyvale, CA or Denver CO. What You'll Be Working On:- Administer and continuously improve Jamf and Microsoft Intune environments across all managed device types: macOS, Windows, iOS, and Android; maintain configuration profiles, compliance policies, app deployment packages, and OS update enforcement across all platforms.
- Build and maintain automated enrollment workflows including Apple Business Manager (ABM) and Windows Autopilot for zero-touch provisioning at scale.
- Own a structured patch management program with clear SLAs for OS and application updates across all device platforms.
- Define and enforce device compliance baselines aligned with Crusoe security standards and frameworks including CIS Benchmarks and SOC 2; integrate MDM telemetry with EDR and SIEM tooling for compliance drift visibility and proactive remediation.
- Partner with Security on device trust policies, Conditional Access enforcement, certificate-based authentication rollout (SCEP/PKCS), and network-level access control for certificate-based Wi-Fi and VPN authentication.
- Build and maintain scripts and automation in Bash, Python, or PowerShell to reduce manual IT workload; develop self-service tooling that puts routine fixes and software requests directly in employees' hands.
- Own MDM runbooks, device policy documentation, and asset records; contribute to the standardization of enrollment workflows, naming conventions, and configuration baselines across all platforms.
- Serve as the MDM escalation point in the IT on-call rotation; partner with People Operations on seamless device provisioning and deprovisioning; mentor junior IT team members on endpoint management practices.
- Foundational Security Experience: Demonstrated experience with OSQuery and CrowdStrike (XDR/EDR) for endpoint visibility and threat detection.
- Identity & Access Management: Deep understanding of Okta (Device Trust/FastPass) and Entra ID (Conditional Access).
- MDM/Endpoint Management: 3-6 years of experience with Jamf/Kandji and Microsoft Intune (Autopilot, Compliance Policies, App Protection).
- Independent Engineering: A "Security-First" mindset and proven ability to drive R&D initiatives from planning through implementation independently, with a focus on automating security controls.
- Scripting & Automation: Proficiency in Bash, Python, or PowerShell for device policy automation, packaging, and remediation.
- Infrastructure Knowledge: Strong understanding of certificate infrastructure (SCEP, PKCS) and experience with Absolute for Windows persistence.
- Strong documentation habits, ownership mindset, and ability to communicate technical policies to non-technical stakeholders.
- Bachelor's degree in IT, Computer Science, or equivalent practical experience.
- OSQuery and CrowdStrike expertise , demonstrable experience leveraging OSQuery for endpoint visibility and administering CrowdStrike for threat detection and response; these are foundational to our security visibility and enforcement strategy.
- Jamf Pro administration experience: Smart Groups, configuration profiles, and Jamf Connect or equivalent SSO integration.
- Experience with Jamf Protect, Microsoft Defender for Endpoint, or equivalent EDR tooling.
- Familiarity with Linux endpoint management via Fleet, Puppet, or similar.
- Apple Certified Support Professional (ACSP) or equivalent MDM certification.
- Exposure to SIEM tooling and endpoint log pipelines.
- Experience at a high-growth technology company through a period of rapid headcount scaling.
- Competitive compensation and equity packages
- Restricted Stock Units
- Paid time off, paid holidays & leave of absence programs
- Comprehensive health, dental & vision insurance
- Employer contributions to HSA account
- Paid parental leave
- Paid life insurance, short-term and long-term disability
- Professional development & tuition reimbursement
- Mental health & wellness support
- Commuter benefits (parking & transit)
- Cell phone stipend
- 401(k) Retirement plan with company match up to 4% of salary
- Volunteer time off
- Global travel insurance & emergency assistance
- Daily meals allowance
- Additional perks & programs specific to location
Vacancy posted 5 days ago
Similar jobs that could be interesting for youBased on the Endpoint Security Engineer in San Francisco, CA vacancy
- ...Design and implement guardrail systems for securing LLM inputs and outputs in production... ...validation Secure LLM API endpoints through authentication, rate limiting,... ...with Product Security, Machine Learning Engineering, and Platform teams. Required Qualifications...Suggested
$196k - $220.5k
...games. We are looking for an experienced Senior Enterprise Security Engineer reporting to the Engineering Manager of Enterprise Security.... ...Experience deploying and managing Mobile Device Management, Endpoint Detection & Response, and device trust tooling. Knowledge and...SuggestedFull timeWork at officeRelocationRelocation package2 days per week1 day per week$189k - $303k
...Define and champion Aurora’s enterprise security architecture strategy, roadmap, and target... ...patterns, and technical standards for endpoint security, network security, infrastructure... ...fragmentation. Partner with Security Engineering, GRC, Cloud Security, IT, Product Security...SuggestedLocal area$155.56k - $179.71k
...Senior Security Engineer Daly City, CA 94014 Overview Salary Range $155,563.20 - $179,712.00 Salary Position Type Full Time Description... ...Security Engineer plays a critical role in IAM governance, endpoint protection, lifecycle management, security policy...SuggestedFull time$190k - $225k
...Senior Security Engineer We are looking for a highly technical Senior Security Engineer who thrives on building security capabilities... ...governance, and security operations. Integrate cloud, identity, endpoint, SaaS, and security platforms through automation and modern...Suggested- ...Senior Security Engineer The Security Engineering team is responsible for protecting Sift's products, infrastructure, and data while enabling... ...(e.g., IAM policies, network controls, secrets management, endpoint protections, container and workload security). Embed with...
$249k - $405k
...Senior Security Engineer We're hiring a Senior Security Engineer to own how Ivo detects, responds to, and defends against threats across our infrastructure, identity, network, and endpoints. You'll partner directly with our Head of IT & Security and work alongside engineering...Work at officeRemote work$175k - $220k
...Senior Security Engineer San Francisco, CA About the Role We are looking for a highly technical Senior Security Engineer who thrives... ...and maintain detections-as-code across cloud, identity, endpoint, SaaS, and application environments. Design and implement...Full timeWork at officeFlexible hours- ...committed to the highest standards of data security and privacy protection. To learn more... ...via JIT/CIEM. SIEM Build & Detection Engineering - Deploy the SIEM platform and author 30... ...rules spanning cloud telemetry, endpoint, and SaaS - with ongoing tuning to reduce...Worldwide
- ...office in San Francisco, California. Summary The IT Security Engineer performs core security functions for the enterprise. The primary... ...components of the Microsoft Defender Security Stack ( XDR, Endpoint, Identity, Cloud Apps, Office 365, Sentinel) ....Work experience placementWork at officeLocal areaRemote workWork from homeHome officeWork visaRelocation package
- ...design teams for Google Workspace. What you'll do Lead Security for Our Platform. Take charge of application, cloud, network,... ...Collaborate with Cross-Functional Teams. Partner closely with engineering, product, and GRC to embed security throughout the software development...Full timeFlexible hours
$215k - $265k
...Staff Security Engineer Job Locations US-CA-San Francisco - Remote | US-NC-Raleigh Job ID 2026-5740 Name Linked... ...interfaces, including request signing, session management, and endpoint security. Define and enforce encryption strategies for...Full timeLocal areaRemote work$210k - $255k
...Staff Corporate Security Engineer Crusoe is building the world's favorite AI-first cloud infrastructure. We are seeking a Staff Corporate... ...and tuning Data Loss Prevention (DLP) controls across endpoints and SaaS platforms to protect intellectual property Strengthening...Temporary work- ...next. About the team Airwallex's Information Security team partners closely with engineering, IT, and other stakeholders to protect our systems, data... ..., protecting a range of corporate IT platforms from endpoints to identity providers. This role is based in San...Worldwide
- Cobalt is seeking a security-focused professional to oversee endpoint and cloud asset security across our enterprise footprint. You will manage EDR, vulnerability programs, and continuous compliance to protect systems and data. You will lead onboarding/offboarding security...
- ...Security Engineer This is where security meets innovation at enterprise scale. As a security engineer, applications at WRITER, you'll be building the security foundations that protect the AI systems powering some of the world's most recognizable brands. You'll work...Full timeLocal areaFlexible hours
- ...Security Engineer, Application Security Security is at the foundation of OpenAI's mission to ensure that artificial general intelligence benefits all of humanity. The Security team protects OpenAI's technology, people, and products. We are technical in what we build...Work at officeRemote workRelocation package
$139k - $204k
...build the capabilities to stay left of boom Work alongside security partners who hold a high bar and expect you to raise it Shape... ...action Conducting deep technical investigations and hunts across endpoint, cloud, identity, and network data sources to establish scope,...Permanent employmentTemporary workCasual workWork at officeFlexible hours$170k - $190k
...As a HIPAA-regulated, AI-native company, security is foundational to our ability to serve... ...looking for our first dedicated Security Engineer to help scale our security posture... ...access management (IAM, SSO, SAML, SCIM), endpoint security, threat detection, and incident...Temporary workLocal areaRemote workWork from homeFlexible hours$192k - $240k
### Senior Security Operations Engineer#### San Francisco, California, United StatesSenior Security Operations Engineer**Why join us**Brex is the AI... ...(e.g. - SIEM, data pipelines, SOAR, domain monitoring, endpoint tooling, email protection tooling, cloud security tools)*...Work at officeRemote workWork from home$260k - $325k
...organization in San Francisco is seeking an experienced Enterprise Security Engineer. You will be responsible for managing the security of the... ...capabilities. The ideal candidate will have experience in endpoint security, knowledge of public cloud services, and the...$134k - $184.8k
Secure Every Identity, from AI to Human Identity is the key to unlocking the potential of... ...and Intelligence (TDI) organization is the engine that powers Okta's global workforce,... ...across CSPM, CI/CD pipeline security , and endpoint hardening. Provide technical guidance for...Local areaFlexible hoursShift work- Senior Infrastructure & Security Engineer This range is provided by CDW. Your actual pay will be based on your skills and experience — talk... ...design. Security Engineering Implement and maintain endpoint protection, identity and access controls, and data loss prevention...Contract workRemote workWork from home1 day per week
$204k - $280.5k
About This Role The Corporate Security team at Faire owns the tools and policies that keep... ...protected. The team's scope includes endpoint detection, data loss prevention, email security... ...training, and AI governance. As a Staff Engineer focusing on Enterprise AI, you will be...Work experience placementWork at officeRemote workMonday to FridayFlexible hours3 days per week- ...Security Engineer We are looking for a strong security engineer to join our team at Vals AI. You will be a generalist, handling tasks on both product and corporate security alike. The role will require a high degree of ownership, autonomy, and responsibility, and will...Full timeWork experience placementWork at officeRelocationRelocation packageShift work
- ...biologists develop drugs, just as language models are changing how engineers write code. Our vision is a design suite for molecules, with... ...rigorous research and pace of execution. About the Role Security is what earns Chai the trust of the world's largest pharma...
- ...Overview AI has changed software development. Security hasn't caught up - until now. Corridor is changing the game of product security... ...at Stanford. As Corridor grows, we're hiring a Security Engineer to strengthen both our customers' security posture and our own....
- ...Agents Raindrop is the monitoring platform for AI agents. Engineering teams at Fortune 100s and the fastest-growing AI companies (Vercel... ...Hsu), Notion (Akshay Kothari) and more. Your Focus Secure the platform end-to-end from application code to cloud...
$180k - $258k
...Senior Security Engineer We're looking for a Senior Security Engineer who is ready to elevate the safety and security of our systems and networks. You will serve as our guardian, ensuring our platforms are resilient against all threats while meeting compliance requirements...Flexible hours$237.6k - $297k
...We are seeking a Senior Security Engineer with a specialty in Detection and Incident Response to join our Security Engineering team. This role sits at the intersection of security operations and software engineering - you won't just investigate incidents, you'll build...Full time
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Endpoint Security Engineer. Be the first to apply!
Related searches
- IT security engineer San Francisco, CA
- sr security engineer San Francisco, CA
- information technology security engineer San Francisco, CA
- endpoint security engineer San Francisco, CA
- application security engineer San Francisco, CA
- staff security engineer San Francisco, CA
- senior application security engineer San Francisco, CA
- security engineering manager San Francisco, CA
- aws cloud security engineer San Francisco, CA
- security engineer San Francisco, CA



