CollegeVine is a company that deploys powerful AI agents in higher education to improve operations. They are seeking a Security Operations Engineer to manage technical controls, IT operations, and compliance programs to protect data and ensure security readiness.
Responsibilities:
- Own the day-to-day operation of our centralized logging/SIEM — investigate alerts, create and tune detections, improve signal quality, and build the runbooks to act on them
- Drive vulnerability management end to end — scanning, triage, and remediation to closure across our stack
- Harden our cloud environment and CI/CD pipelines, establish security configuration baselines and guardrails, and manage them through Infrastructure as Code
- Partner with engineering teams to review new systems and architectural changes, identifying security risks early and helping build secure solutions by default
- Own secrets management, endpoint/EDR, and data-protection controls
- Manage endpoint hardening
- Harden our core SaaS/business apps — identity provider, Google Workspace, GitHub, and the rest
- Own and continuously improve our security compliance platform (Vanta) — automate evidence collection, strengthen integrations, and improve its operational value
- Build toward compliance obligations as the business requires; turn policy into enforced reality by implementing the technical controls behind it, co-maintained with GRC + Legal
Requirements:
- 3+ years of hands-on work with security technical controls, ideally alongside strength in IT operations and/or security compliance
- Experience operating technical controls across their full lifecycle (built, tuned, maintained, retired), not just stood up once
- Hands-on experience running a SIEM as a living system — investigating alerts, tuning detections, reducing noise, and closing visibility gaps over time
- Experience with real audits (SOC 2, ISO 27001, FedRAMP, or equivalent) and the judgment to tell a control that produces evidence from one that just looks good
- Practical IAM and SaaS/cloud administration experience (identity security, least privilege, access reviews)
- Scripting and automation ability (Python, Bash, or similar) — and a track record of maintaining what you build
- A calm, process-driven, and people first approach when something's on fire; and a habit of writing things down so they outlive you
- Familiarity with a compiled language (Go, Rust) for heavier automation
- Relevant certifications (e.g., CISSP, Security+, cloud security certs) — useful signal, never a substitute for hands-on ability
- Hands-on AWS security and Infrastructure as Code experience, especially Terraform
- Experience as an early or first security hire at a startup