Senior Incident Response Engineer leading advanced security responses focused on Microsoft E5 security at Acrisure. Collaborating across teams for robust incident management and security policy enforcement.
About the role
- IT & Security Operations Specialist responsible for security and compliance in SaaS company. Overseeing user lifecycle, hardware security, and vendor risk management.
Responsibilities
- Own the end-to-end "Joiner-Mover-Leaver" process.
- Automate user provisioning across our core SaaS stack to ensure day-one readiness and secure, immediate offboarding.
- Draft and implement security procedures for our primary productivity suite (including DLP, third-party app permissions, and advanced authentication protocols).
- Manage the company’s hardware fleet using modern MDM solutions.
- Enforce security standards, including disk encryption, OS patch management, and remote-wipe capabilities.
- Audit and secure integrations between external apps and our core environment.
- Identify "Shadow IT" and maintain an inventory of approved business tools.
- Lead the technical drafting and evaluation of RFPs for new internal systems.
- Ensure all prospective vendors meet Everflow’s security and compliance standards (e.g., SOC2).
- Author and maintain official Standard Operating Procedures (SOPs), including Acceptable Use Policies, Hardware Lifecycles, and Access Control logs.
Requirements
- 3-5+ years in IT Systems Administration, Security Operations, or a similar technical-compliance role within the SaaS industry.
- Advanced experience managing enterprise-grade productivity suites and integrated HRIS/IT automation platforms.
- Proven track record of configuring security settings for cloud-based tools to meet industry-standard compliance frameworks.
- Strong ability to draft professional RFPs, security checklists, and internal policy documentation.
- Experience managing vendor evaluations and migrating data or users between business systems.
- Exceptional written and verbal communication skills (French and English required) with the ability to explain technical security requirements to non-technical stakeholders.
Benefits
- Employer Covered Medical
- Unlimited PTO and paid holidays
- Paid parental leave for putting your family first
- Startup-like environment, without the constant rush to raise the next round of funding
- A very collaborative team and culture
- Education, gym, and equipment stipend
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Senior Director of Product Marketing coordinating go - to - market strategy for endpoint security solutions at Tanium. Leading cross - functional teams to enhance product positioning and market impact.
SecOps Engineer implementing infrastructure security solutions in AWS and GCP at Tala. Focused on vulnerability management and protection in a global financial infrastructure company.
SOC Manager leading cybersecurity operations and strategies for federal clients in a 24/7 environment. Managing SOC activities and mentoring teams while maintaining security integrity.
SOC Analyst role focusing on IT security posture monitoring and threat detection use case development for MAHLE. Collaborate with global teams to enhance security processes and tools.
Security Operations Engineer at Pexip managing and improving security monitoring systems. Leading security incidents and ensuring effective alerting and automated response.
Security Operations Engineer at Gridware enhancing security, detection, and response in cloud - first environments. Collaborating with IT and engineering teams to implement best practices.
Cybersecurity Operations Director leading cybersecurity managed services operations at a global accounting firm. Overseeing teams, driving growth, and serving as an advisor to clients.
L2 SOC Analyst managing security incidents and responses at Keyloop, focusing on digital transformation in the automotive sector.
Security Operations Analyst responsible for developing security processes and incident response. Collaborating with multiple teams for security best practices in a hybrid work environment.