Senior Enterprise Security Engineer at Navan

<p>As a Senior Enterprise Security Engineer, you will be a foundational architect of our corporate security posture, directly safeguarding our infrastructure, sensitive data, and global workforce. This is a highly hands-on, configuration-driven role focused on hardening our environment through identity governance, endpoint security, and automated threat response.</p> <p><strong>What You’ll Do</strong></p> <ul> <li><strong>Identity &amp; Zero Trust:</strong> Architect robust IAM principles (Okta, Entra ID) and Zero Trust strategies. Enforce granular authentication, lifecycle management, and device trust to ensure secure access across all corporate resources.</li> <li><strong>Endpoint Security &amp; Fleet Hardening:</strong> Lead the administration of our EDR (CrowdStrike Falcon) and MDM/UEM (Intune, Jamf). Manage patch lifecycles, endpoint state attestation, and proactive threat hunting to neutralize threats across all corporate devices.</li> <li><strong>Threat Detection &amp; Automation:</strong> Develop advanced detection logic (SIEM/XDR) and build SOAR workflows to reduce Mean Time to Detect (MTTD) and Respond (MTTR).</li> <li><strong>SaaS Security &amp; DLP:</strong> Secure our ecosystem by managing email security (e.g., Material Security) and implementing Data Loss Prevention (DLP) across SaaS platforms (Google Workspace, Salesforce, Box).</li> <li><strong>Cross-Functional Leadership:</strong> Partner with Engineering and IT to embed security-by-design, automate compliance checks for new infrastructure, and manage security integration for mergers and acquisitions.</li> </ul> <p><strong>What We’re Looking For</strong></p> <ul> <li><strong>Experience:</strong> 5+ years in corporate security engineering within high-growth, cloud-native environments.</li> <li><strong>Identity Expertise:</strong> Expert-level proficiency with Okta (SSO, MFA, IGA) and experience with federation protocols (SAML, OIDC, SCIM).</li> <li><strong>Endpoint/Device Security:</strong> Deep hands-on experience with EDR (CrowdStrike) and MDM solutions (Intune, Jamf).</li> <li><strong>Automation:</strong> Strong track record of automating security workflows using SOAR or scripting (Okta Workflows, Python, etc.) to drive efficiency.</li> <li><strong>Technical Breadth:</strong> Proficiency in Zero Trust models, SaaS/Cloud security, and vulnerability management.</li> <li><strong>Soft Skills:</strong> Proven ability to translate complex technical risks into business context and collaborate effectively across technical and non-technical teams.</li> </ul> <p><br><br></p>