Benchling
Enterprise Security Engineer
San Francisco, CA (Remote)$189k–$256kfulltimemidAdded 2 days ago
About this role
Benchling seeks an Enterprise Security Engineer to build a zero trust security program from the ground up, focusing on identity management, device compliance, and AI-native security tooling. You'll architect least-privilege access patterns, manage macOS endpoints at scale, and automate security processes to protect sensitive biotech research data.
What you'll do
- Drive zero trust strategy across identity, device health, network context, and application sensitivity
- Design and maintain least-privilege access, JIT access, and PAM controls
- Deploy and maintain MDM infrastructure for macOS fleet with compliance integration
- Enforce SSO policies, audit OAuth scopes, and manage third-party integration access
- Build tooling to detect shadow IT and unauthorized SaaS tools
- Define security standards for AI agent and LLM service identities
What they're looking for
- Identity and Access Management (IAM)
- Zero trust architecture implementation
- Okta IdP administration
- macOS MDM management (Fleet or equivalent)
- Identity protocols (SAML, OIDC, OAuth 2.0, SCIM)
- Cloud IAM (AWS, GCP, or Azure)
- Python scripting
- Privileged Access Management
Opens the official application on the employer’s site. No login required.