Sierra Club

Corporate Security Engineer, Lead

Sierra Club$130K — $180K *
Information Technology
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • 5-7 years in corporate security, IT security, or security engineering, building security capabilities from scratch.
  • Proficient in identity and access management, SaaS security, endpoint management, DLP, network security, and detection and response.
  • Experience developing tooling and automation that actively enforces security controls.
  • Collaboration with IT teams, understanding device management, support workflows, and tooling constraints.
  • Strong communication skills for translating technical risk to diverse stakeholders.
  • Preference for pragmatic security controls over theoretical models.

Responsibilities

  • Define and establish the Corporate Security function at Sierra.
  • Manage a centralized risk register and oversee remediation efforts.
  • Audit SaaS applications and third-party connections for security compliance.
  • Design automated systems to enforce security controls and monitor access violations.
  • Enhance visibility on endpoints and user-level risks from applications and extensions.
  • Develop a comprehensive security roadmap encompassing various security aspects and drive team growth.

Benefits

  • Unlimited paid time off for flexibility.
  • Comprehensive medical, dental, and vision coverage for employees and their families.
  • Life insurance and disability coverage provided.
  • Retirement plan options based on employment location.
  • Parental leave for new parents.
  • Fertility and family-building benefits offered.
  • Free meals and snacks to keep employees energized.
  • Discretionary stipend for personal expenses.
  • Unique offering of free alphorn lessons.
Full Job Description
What you'll do
  • As the founding Corporate Security Engineer, Lead at Sierra, you will define and build our Corporate Security capability within IT - establishing the operating model, executing the initial roadmap, and shaping the function as it grows over time.
  • Own the centralized risk register and drive remediation across SaaS applications, integrations, endpoints, identity, and access paths.
  • Secure our SaaS and integration landscape by auditing and governing OAuth applications, Slack integrations, and third-party connections, and by establishing authorization controls and ongoing review processes.
  • Design and implement enforcement systems - automation and integrations that continuously enforce controls, detect and revoke unauthorized access, govern OAuth scopes, and monitor integration activity.
  • Improve endpoint and user-level visibility, working with existing endpoint management tooling to manage risk from user-installed applications and browser extensions.
  • Sequence a broader security roadmap across adjacent domains (DLP, IAM, Zero Trust, vendor security, detection and response, and more), and shape how the team grows over time.
What you'll bring
  • Significant experience in corporate security, IT security, or security engineering, with a track record of building programs or capabilities rather than operating within established ones.
  • Strong technical depth across several of the following: identity and access management, SaaS security, endpoint management, DLP, network security, detection and response.
  • Demonstrated ability to build tooling and automation that enforce controls, not just define them. You've written code, built integrations, or implemented systems that actively reduce risk in a production environment.
  • Experience working within or closely alongside IT organizations. You understand the operational realities of IT - device management, support workflows, tooling constraints - and can build security practices that work with these realities rather than against them.
  • The ability to define and communicate risk clearly to both technical and non-technical stakeholders, and comfort making sequencing decisions with imperfect information.
  • A bias toward pragmatic, enforceable controls over theoretical frameworks.
Even better...
  • Experience with macOS-heavy environments managed through Jamf Pro or Fleet.
  • Familiarity with OAuth governance, Slack integration management, or SaaS security posture management (SSPM) tooling.
  • Experience building toward Zero Trust architecture or implementing DLP at a growth-stage company.
What we offer

We want our benefits to reflect our values and offer the following to full-time employees:
  • Flexible (unlimited) paid time off
  • Medical, dental, and vision benefits for you and your family
  • Life insurance and disability benefits
  • Retirement plan dependent on country of employment
  • Parental leave
  • Fertility and family building benefits through Carrot
  • Lunch, as well as delicious snacks and coffee to keep you energized
  • Discretionary benefit stipend giving people the ability to spend where it matters most
  • Free alphorn lessons

These benefits are further detailed in Sierra's policies, may vary by region, and are subject to change at any time, consistent with the terms of any applicable compensation or benefits plans. Eligible full-time employees can participate in Sierra's equity plans subject to the terms of the applicable plans and policies.

About Sierra Club

The Sierra Club is a nonprofit organization that promotes environmental conservation. It was founded in 1892 by John Muir and is one of the oldest and largest environmental organizations in the United States. The organization has over 3.8 million members and supporters and is dedicated to protecting the planet's natural resources and wildlife. The Sierra Club engages in a variety of activities, including lobbying for environmental legislation, organizing outdoor activities, and publishing a magazine. The organization is headquartered in Oakland, California.
Learn more about Sierra Club
Size
800 employees
Industry
Founded
1892

Similar Jobs

More Jobs at Sierra Club

  • Sierra Club
    Motion Designer
    $90K — $130K *
    San Francisco, CA 94112 (San Francisco County)
    Media
    In-Person
  • Sierra Club
    Brand Designer, System
    $90K — $130K *
    San Francisco, CA 94112 (San Francisco County)
    Consumer Technology
    In-Person
  • Sierra Club
    Senior Employment Counsel
    $150K — $200K *
    San Francisco, CA 94112 (San Francisco County)
    Legal & Accounting
    In-Person
  • Sierra Club
    People Partner, Sales
    $90K — $130K *
    San Francisco, CA 94112 (San Francisco County)
    Business Services
    In-Person
  • Sierra Club
    People Partner, Agent Development
    $90K — $130K *
    San Francisco, CA 94112 (San Francisco County)
    Business Services
    In-Person

More Information Technology Jobs

Find similar Corporate Security Engineer, Lead jobs: