Security Engineer II

Please Note: This is a Utah-based hybrid position which will require some regular in-office days each week. Additionally, employment with BambooHR is contingent on passing both a background and credit check. 

AI at BambooHR

At BambooHR, we’re all about setting people free to do great work, and we believe AI is a powerful partner in that mission. We’re leaning into intelligent tools to streamline our workflows, giving us more time for high-impact innovation. We look for curious, forward-thinking people who are ready to explore how AI can elevate their work and help us reimagine the future of HR.

Essential Job Duties

You will:

• Design, implement, and maintain security controls that protect BambooHR systems, infrastructure, users, and data.
• Support security across a cloud-first, API-driven, and modern technology environment, including cloud platforms, SaaS systems, identity systems, endpoints, and containerized services.
• Conduct security assessments and risk reviews for systems, processes, and emerging technologies, including AI-enabled and Agentic AI use cases.
• Assist with security incident response efforts, including investigation, containment, remediation, and follow-up improvements.
• Monitor and improve security telemetry, alerting, and detection capabilities to strengthen BambooHR’s ability to identify and respond to threats.
• Automate repetitive security tasks and improve workflows through scripting, integrations, dashboards, or tooling enhancements.
• Own defined security control or policy areas end-to-end, helping update standards to align with regulatory requirements, company priorities, and industry best practices.
• Partner with engineering, IT, compliance, and other stakeholders to ensure security measures support business objectives while maintaining strong risk management.
• Serve as a security advocate and trusted resource to partner teams by providing practical guidance, education, and support.
• Contribute technical input to governance, risk, and compliance initiatives, including audits, control reviews, and risk register activities.
• Help define and execute security initiatives by tracking work, managing dependencies, and contributing to successful project delivery.
• Stay current on evolving threats, security practices, and new technologies, and recommend improvements that strengthen BambooHR’s security posture.
• Deliver measurable improvements in one or more areas such as cloud security, detection and alerting, incident readiness, identity and access management, endpoint posture, or AI risk management.
• Contribute to incident response and help drive corrective actions for identified gaps.
• Improve efficiency or visibility through automation, reporting, or tooling enhancements.
• Build trust with partner teams through consistent communication, sound judgment, and practical security guidance.
• Support a culture of continuous improvement by documenting processes, sharing knowledge, and coaching others when appropriate.

What You Need to Get the Job Done

• 2–5 years of experience in security engineering, security operations, infrastructure security, cloud security, IT security, or a related cybersecurity role.
• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, or a related field preferred.
• Experience working across multiple security domains such as cloud security, identity and access management, vulnerability management, incident response, endpoint security, detection and monitoring, governance support, or infrastructure hardening.
• Working knowledge of modern technical environments, including cloud platforms, SaaS applications, APIs, endpoints, and identity systems.
• Experience assessing security risk, recommending mitigations, and partnering with others to implement improvements.
• Experience investigating security alerts or contributing to incident response activities.
• Experience using scripting or automation to improve security workflows, reporting, integrations, or repetitive tasks.
• Solid verbal and written communication skills.
• Well-developed interpersonal and collaboration skills.
• Proficient organizational skills and attention to detail.
• Robust analytical and problem-solving skills.
• Excellent time management skills with the ability to manage priorities and meet deadlines.
• Ability to work effectively in a fast-paced environment with changing priorities.
• Ability to take ownership of moderately scoped work with limited oversight. 

What Will Make Us REALLY Love You 

• gorustawskubernetesaidataproductdesign