Corporate Security Engineer

Join Taxbit as a Corporate Security Engineer to design and manage corporate IT and security infrastructure, focusing on identity management and endpoint management. Competitive salary and opportunity for impact in a fast-growing fintech. Founded by CPAs, tax attorneys, and engineers, Taxbit is the leading innovator automating global tax reporting for the digital economy. Taxbit's AI-enabled platform streamlines compliance related to digital assets, payments, and other financial transactions. Its unique combination of deep subject matter expertise and AI-forward technology have made it a fast-growing disruptor trusted by the world's leading fintechs, marketplaces, digital asset players, Big 4 accounting firms, traditional enterprises, and government agencies. Backed by top-tier Silicon Valley VCs, Taxbit's team is located across offices in San Francisco, New York, Seattle, Salt Lake City, London, Madrid, and Singapore.

• •Administer and mature Taxbit’s Okta Workforce Identity platform, including SSO integrations, lifecycle management, MFA policy enforcement, and directory provisioning/deprovisioning
• •Own the Unified Endpoint Management (UEM) program using Jamf (macOS/iOS) and Microsoft Intune (Windows), including device enrollment, configuration profiles, compliance policies, and patch management
• •Administer Google Workspace at the organizational level, including user management, group policies, Drive security controls, Meet hardware, and audit log review
• •Collaborate with the Infrastructure and Security Operations teams to troubleshoot and resolve on-premise and cloud network issues affecting corporate users
• •Implement and enforce security baselines across endpoints, ensuring alignment with Taxbit’s security policies and compliance frameworks including ISO 27001, SOC 2, and NIST CSF
• •Manage the full lifecycle of Taxbit’s IT asset inventory, including procurement, configuration, deployment, and decommission
• •Deliver IT and security onboarding training to new team members; maintain documentation for runbooks, procedures, and configurations
• •Gather and organize control evidence to support ISO 27001, SOC 2, and NIST CSF audits for the Risk and Compliance team, and support digital forensics requests from Security Operations
• •Track, prioritize, and resolve service tickets with a high degree of ownership and follow-through; identify recurring issues and implement systemic fixes
• •Assist with broader Security program initiatives as the team scales

• •The base salary range for this role is $78,496 - $187,339. Certain roles may be eligible for incentive compensation, equity, and benefits. Actual compensation will vary depending on various job-related factors, including, but not limited to location, experience, level, and job qualifications.

• •Bachelor’s Degree in a technical field (Computer Science, Information Systems, Cybersecurity, or related field)
• •AI Governance: Experience implementing AI governance controls, including model lifecycle management, AI risk assessments, and alignment with frameworks such as ISO 42001 and the NIST AI Risk Management Framework.
• •AI Operations: Familiarity with AI Operations (AIOps/MLOps), including securing AI/ML pipelines, model deployment, and Infrastructure-as-Code for AI workloads.
• •Proven track record of identifying opportunities to build, test, and scale AI-powered solutions.
• •AI Monitoring: Experience designing or implementing monitoring for AI systems, including model performance, drift detection, prompt and response logging, abuse detection, and operational security monitoring.
• •Sees AI as a force multiplier and actively looks for ways to enhance team performance through innovation & curiosity.
• •4+ years of experience in systems administration and security operations, or a related technical role
• •Hands-on experience administering Okta Workforce Identity, including SSO, MFA, and lifecycle management
• •Proficiency managing Apple (macOS/iOS) devices via Jamf Pro or Jamf Business Plan
• •Experience with Microsoft Intune for Windows endpoint management, compliance policy, and Conditional Access
• •Strong working knowledge of Google Workspace administration (Admin Console, Groups, Vault, Meet hardware)
• •Experience managing the full lifecycle of IT assets, including imaging, deployment, and decommission
• •Working knowledge of SIEM/log management tools for endpoint telemetry and security event monitoring
• •Familiarity with security frameworks including ISO 27001, SOC 2 trust service criteria, and NIST CSF
• •Experience gathering audit evidence and working with Risk & Compliance teams
• •Scripting skills (e.g., Bash, Python, or PowerShell) to automate endpoint and identity workflows
• •Experience configuring and maintaining remote meeting hardware and conference room AV systems