Security Engineer

At Nerdio, our mission is to simplify the lives of IT professionals and maximize their Microsoft cloud and end user computing investments.

We support organizations of all sizes looking to deploy, manage, and cost-optimize native Microsoft technologies. We partner with Enterprises and Managed Service Providersall over the world to add value on top of their existing native Microsoft investments like Azure Virtual Desktop (AVD), Windows 365, and Microsoft Intune.

Created in 2016, Nerdio has always taken a market-leading and collaborative approach to cloud deployment and management. In fact, our product roadmap is greatly influenced by the regular feedback we receive from having seen companies deploy AVD into production environments several thousand times using Nerdio technology.

Today, Nerdio is used in over 50 countries by more than 15,000 organizations of every size and vertical. We’re committed to delivering exceptional service and support, which starts with identifying and supporting the best staff possible.

We are a fast-moving, nimble company looking for individuals whoare collaborative, empathetic, driven and who love to move at the speed of light. If you want to be part of the AVD transformation that Microsoft and Nerdio are leading, then we want to speak with you.

The Security Engineer plays a vital role in protecting the organization’s assets and enabling secure business operations. This position directly contributes to the resilience and trustworthiness of our technology environment. The Security Engineer will focus on implementing and maintaining security controls across identity, access, endpoint, and cloud environments. This is an operational role emphasizing system hardening, vulnerability management, and incident response support to strengthen the organization’s security posture.

• Implement and enforce MFA, JIT, Conditional Access (CA), and RBAC policies.
• Perform quarterly access reviews and cleanup of Entra objects.
• Review and remediate shared vendor accounts and privileged roles.
• Assist in documenting incident response (IR) processes and workflows.
• Support ransomware tabletop exercises and IR playbook development.
• Conduct device discovery and asset hardening.
• Implement endpoint visibility and detection enhancements.
• Support Intune enrollment and sensor deployment.
• Harden APIs and cloud configurations
• Perform access reviews and remediation.
• Validate critical applications and SaaS integrations.
• Collaborate with IT, DevOps, and business teams to ensure secure integration of new technologies.
• Stay up to date with current security trends, emerging threats, and industry best practices.
• Other duties as required to support the organization’s security posture.

• Knowledge of IAM technologies (Entra ID/Azure AD, RBAC, MFA).
• Experience with endpoint management tools (Intune, EDR solutionsli>
• Familiarity with email security protocols (DKIM, SPF, DMARC).
• Hands-on experience with vulnerability scanning and remediation.
• Understanding of incident response frameworks and backup strategies.
• Knowledge of cloud security principles (Azure preferred).
• Demonstrated commitment to continuous learning and awareness of evolving security threats.
• Administer and support email security.
• Strong analytical and problem-solving skills, especially in incident response and troubleshooting complex issues.
• Ability to collaborate with cross-functional teams and communicate effectively with both technical and non-technical stakeholders.
• Familiarity with regulatory frameworks (GDPR, HIPAA, PCI-DSS) as applicable.
• Excellent documentation and communication skills.

• Certifications: CompTIA Security+, Microsoft SC-900 (Security, Compliance, Identity Fundamentals), Azure Security Engineer Associate.
• Experience with security awareness platforms (KnowBe4).
• Exposure to cloud environments (Azure, AWS).
• Active participation in the security community, including attending or presenting at conferences such as BSides or similar industry events.
• Engagement with professional security networks and willingness to share knowledge through presentations or community involvement.

• Strong analytical and problem-solving skills.
• Ability to collaborate with cross-functional teams.
• Excellent documentation and communication skills.
• Engagement with professional security networks and willingness to share knowledge through presentations or community involvement.

• Competitive Base and Incentive Plan
• Stock Options
• Health and Welfare Plans*
• Life and Disability Plans*
• Retirement Plan*
• Unlimited Flexible Paid Time Off, including your birthday off!

*Benefits for international employees, outside the US, vary by country.

Nerdio is committed to a diverse and inclusive workplace. Nerdio is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.

The pay range for this role is:

125,000 - 145,000 USD per year (Remote (United States))