×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity IT Support

Infrastructure Engineer

Job in New York, New York County, New York, 10261, USA
Listing for: SecurityScorecard
Full Time position
Listed on 2026-05-02
Job specializations:
  • IT/Tech
    Cybersecurity, IT Support
Salary/Wage Range or Industry Benchmark: 80000 - 100000 USD Yearly USD 80000.00 100000.00 YEAR
Job Description & How to Apply Below
Position: Staff Infrastructure Engineer
Location: New York

Security Scorecard is the global leader in cybersecurity ratings, with over 12 million companies continuously rated, operating in 64 countries. Founded in 2013 by security and risk experts Dr. Alex Yampolskiy and Sam Kassoumeh and funded by world-class investors, Security Scorecard’s patented rating technology is used by over 25,000 organizations for self-monitoring, third-party risk management, board reporting, and cyber insurance underwriting;

making all organizations more resilient by allowing them to easily find and fix cybersecurity risks across their digital footprint.

Headquartered in New York City, our culture has been recognized by Inc Magazine as a "Best Workplace,” by Crain’s NY as a "Best Places to Work in NYC," and as one of the 10 hottest SaaS startups in New York for two years in a row. Most recently, Security Scorecard was named to Fast Company’s annual list of the World’s Most Innovative Companies for 2023 and to the Achievers 50 Most Engaged Workplaces in 2023 award recognizing “forward-thinking employers for their unwavering commitment to employee engagement.”

Security Scorecard is proud to be funded by world-class investors including Silver Lake Waterman, Moody’s, Sequoia Capital, GV and Riverwood Capital.

About the Role

We're looking for a Staff Infrastructure Engineer to own and operate the systems that keep Security Scorecard running. This is a hands-on, senior-level role reporting directly to the CISO. You will be the primary technical owner of corporate identity, endpoint, collaboration, AI workflow tooling, and IT budget — with direct daily involvement in security operations. You'll hit the ground running on IT operations from day one and own the full stack within 90 days.

This is not a ticket-taker role. We need someone who identifies problems before they're assigned, builds automation that makes the whole organization faster, and holds the technical bar for the team around them.

What You Will Own
  • Identity & Access Management — Administer Okta as primary IdP including SSO, MFA, lifecycle management, and Workflows. Own joiner/mover/leaver processes end-to-end integrated with Bamboo

    HR and Google Workspace. Govern service accounts, API keys, and secrets lifecycle.
  • Endpoint & Device Management — Manage macOS fleet via Intune and Level. Enforce security baselines and patch compliance. Serve as escalation point for device issues and coordinate with Crowd Strike Falcon for endpoint security. Own hardware procurement, provisioning, and retirement.
  • Collaboration & SaaS Administration — Administer Google Workspace and Atlassian (Jira, Confluence). Serve as technical owner for corporate SaaS, including onboarding new tools and maintaining an approved software register with a lightweight security review process.
  • Automation Engineering — Design and build automations that meaningfully improve how teams across the org operate — Finance, HR, Security, Engineering, GTM. Integrate across the SaaS stack using APIs, Zapier, Blink Ops, Okta Workflows, and AI-assisted tooling. Maintain a prioritized backlog of automation opportunities and drive it forward without being asked.
  • IT Finance & Budget — Own the IT budget end-to-end across SaaS, hardware, and vendors. Manage contracts and renewal cycles, negotiate pricing, right-size licenses, and proactively reclaim unused seats. Build cost visibility for the CISO and forecast annual spend.
  • Security Operations Support — Coordinate daily with the security team on access reviews, incident triage, and policy enforcement. Serve as first responder for endpoint compromise, account takeover, and suspicious access events. Own DLP policy at the endpoint, email, and collaboration layers. Administer email security infrastructure including DMARC, DKIM, and SPF.
  • Privileged Access Management — Own governance of highly privileged accounts including break-glass accounts and service accounts. Enforce just-in-time access, session recording, and periodic privileged access reviews.
  • Mentorship & Team Development — Actively mentor IT peers through 1:1s, workflow reviews, and hands-on pairing. Identify skill gaps, design development plans, and model the engineering and…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search