About the role
As BWE’s Senior Security Engineer, your role is central to protecting our environment and advancing our security posture. You will serve as a key technical partner to the Director of Security, translating strategic security initiatives into structured, hands-on implementation across identity, Azure, endpoint, and compliance domains. We depend on you to bring strong configuration expertise, critical thinking, and the ability to build standards and operational clarity in BWE’s growing Microsoft and Apple-centric environment.
Responsibilities:
Initiative Execution & Technical Leadership
• Partner directly with the Director of Security to execute BWE’s security roadmap initiatives.
• Break down strategic objectives into actionable engineering tasks.
• Identify risks, blockers, and configuration gaps across BWE’s environment.
• Propose structured, risk-based solutions aligned with BWE’s business priorities.
Identity and Access Governance
• Design and implement access governance standards across BWE’s environment.
• Review and rationalize roles, security groups, and privileged access.
• Secure app registrations and service principals.
• Implement least privilege and Conditional Access policies.
• Support lifecycle automation for joiner, mover, and leaver processes.
Azure and Microsoft Security
• Assess and improve BWE’s Azure security posture.
• Harden RBAC role assignments and resource access.
• Configure and tune Microsoft identity, endpoint, and cloud security tools.
• Evaluate current tool configurations and implement improvements aligned with security best practices.
Apple, macOS and iOS Security
• Strengthen mobile device management configuration and compliance policies for Apple devices.
• Align Apple device management with identity and access controls.
• Improve monitoring, logging, and endpoint visibility across macOS and iOS.
Security Tool Configuration and Optimization
• Configure and tune enterprise security tools to align with BWE’s risk and compliance requirements.
• Develop configuration baselines and technical implementation standards.
• Reduce alert noise through intelligent tuning.
• Validate control effectiveness through testing and review.
Standards, Documentation and Communication
• Author technical standards and implementation guides for BWE’s security environment.
• Document control ownership and lifecycle management.
• Translate complex technical risks into clear communication for stakeholders.
• Support audit readiness through structured documentation.
Preferred Qualifications:
• 7+ years in cybersecurity engineering or security architecture.
• Strong hands-on experience with Microsoft Entra ID, Azure AD, and Active Directory in hybrid environments.
• Experience securing Azure environments and implementing RBAC.
• Experience configuring Conditional Access and MFA.
• Experience with Microsoft endpoint and cloud security tools.
• Experience securing macOS and iOS using a mobile device management platform.
• Demonstrated experience configuring and optimizing enterprise security tools.
• Experience building technical standards and structured processes.
• Strong analytical and critical thinking ability.
• Strong written and verbal communication skills.
• Experience supporting SOC 2 or regulated environments.
• Ability to connect security decisions to business outcomes and communicate risk in terms that resonate with non-technical stakeholders.
• Relevant security certifications strongly valued, including CISSP, Microsoft certifications such as SC-200 or AZ-500, GIAC certifications such as GSEC or GCIH, or Jamf 200.
What Success Looks Like:
In this role, you will have a direct and visible impact on BWE’s security maturity. Within your first year, you will have:
• Established a functioning identity governance model that brings structure and visibility to access across the organization.
• Meaningfully reduced privileged sprawl and undocumented access, making BWE’s environment cleaner and more auditable.
• Delivered hardened Azure and endpoint configurations that reflect current security best practices.
• Built clear, reusable technical standards that the team can rely on and build from.
• Improved audit readiness, reducing friction during compliance reviews.
• Accelerated execution of security initiatives by bringing engineering rigor and follow-through to the team.
We encourage you to explore the career opportunities we have available here at BWE!
Aplyr's read
BWE is a tech-focused company offering innovative engineering solutions, attracting professionals from diverse fields like AI, security, and project management.
What's promising
- •BWE is known for its cutting-edge technological solutions in engineering.
- •The company offers diverse roles, indicating growth and a wide scope of projects.
- •Hiring for AI and security roles suggests a focus on future-proofing technology.
What to watch
- •Limited public information about BWE's financial stability and market position.
- •Potential applicants may face challenges due to the company's broad focus areas.
- •Rapid hiring across diverse roles might indicate internal restructuring or high turnover.
Why BWE
- •BWE's combination of technology and engineering solutions sets it apart from pure tech firms.
- •The company employs a diverse range of professionals, from paralegals to AI engineers.
- •Focus on both asset management and IT projects suggests a unique business model.
Aplyr’s read is generated by AI from public sources. Was it useful?
About BWE
BWE is a company focused on providing innovative solutions in the field of technology and engineering.
Similar roles
Technology Major Problem Manager - Senior Systems Operations Engineer
Wells Fargo
Customer Site Reliability Engineer - OpenShift Managed Cloud Services (Kubernetes/AWS/Azure, Linux)
Red Hat
Senior Linux Kernel Systems Software Engineer – CSP Engagements
NVIDIA
Software Maintenance Engineer (Technical Support, Linux, Kubernetes, Mandarin)
Red Hat
Junior Software Engineer for Automotive Security Firmware
NXP Semiconductors
Site Reliability Engineer - Multicloud Platform
Workday