Security Configuration Management Engineer

At SentinelOne, we’re redefining cybersecurity by pushing the limits of what’s possible—leveraging AI-powered, data-driven innovation to stay ahead of tomorrow’s threats.

From building industry-leading products to cultivating an exceptional company culture, our core values guide everything we do. We’re looking for passionate individuals who thrive in collaborative environments and are eager to drive impact. If you’re excited about solving complex challenges in bold, innovative ways, we’d love to connect with you.

What are we looking for?

At SentinelOne, we know cyber security! Knowing security, we want to ensure exceptional protection to our data and the customer data we process! Our Information Security Team is looking for a Security Configuration Management Engineer, to do inventory and track various systems and services, advance and evaluate our use of security tools, and help automate processes. This position includes critical duties during crisis situations, which may necessitate extended hours of work, and on-call work.

What will you do?

• Help lead the next level of security work at SentinelOne focusing on best practices and automation in both our commercial and FedRAMP environments
• Be responsible for maintaining the configuration baselines for the following security software (and HW)

○ SentinelOne SingularityOne platform

○ SIEM

○ MDM (MS InTune)

○ Host-based IDS/IPS

○ Firewall

○ Proxies

○ Jumphost farms/AWS Workstations

○ Servers and workstations (on-prem and in-cloud)

○ AWS Golden Images

• Understanding of supply chain risks especially in OSS and hardware provisioning and tracking through strong configuration management processes
• Taking initiative in evaluating, proposing, and deploying various process improvements
• Clearly communicate and share your analysis with members of the Security Team, auditors and regulators
• Proactively engage with vendors to work through issues that arise
• Investigate, document and report on change control and configuration management problems across the organization
• Integrate and share information with SOC analysts and with both security and other department teams
• Other tasks and responsibilities as assigned.

What skills and knowledge you should bring?

• Bachelor's degree and/or applicable, proven experience*
• 8+ years' experience in Security/IT or equivalent knowledge.
• Knowledge of various security methodologies and processes, and technical security solutions (SIEM, firewall, MDM and intrusion detection systems).
• 5+ years engineering experience with IT/security SW: SIEM, MDM, etc.
• Proficient in writing/developing procedures, work instructions and tickets
• Understanding of baselines, and formal change control procedures
• Experience with audit frameworks such as SOC2, FedRAMP, ISO 27001 are a plus
• Strong desire to take existing processes and find ways to leverage automation to reduce error and speed up task completion rates

Why Us?

• You will be joining a cutting-edge company, where you will tackle extraordinary challenges and work with the very best in the industry
• Medical, Vision, Dental, 401(k), Commuter, Health and Dependent FSA
• Unlimited PTO
• Industry-leading gender-neutral parental leave
• Paid company holidays
• Paid sick time
• Employee stock purchase program
• Disability and life insurance
• Employee assistance program
• Gym membership reimbursement
• Cell phone reimbursement
• Numerous company-sponsored events including regular happy hours and team-building events

This U.S. role has a base pay range that will vary based on the location of the candidate. For some locations, a different pay range may apply. If so, this range will be provided to you during the recruiting process. You can also reach out to the recruiter with any questions.

SentinelOne is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.

SentinelOne participates in the E-Verify Program for all U.S. based roles.