About the Role 

We are looking for a skilled Network & Security Engineer (or IT Security Lead) to strengthen our internal security posture. You will be responsible for setting up and maintaining secure network infrastructure, deploying agents and VPNs across all endpoints, and driving security best practices across the organization. This is a strategic and hands-on role—ideal for someone who can own IT security like a Chief Security Officer would in a small or mid-sized tech-driven company. 

Key Responsibilities 

● Endpoint Security: Deploy and manage network agents and endpoint protection on all company devices (Windows, macOS, Linux). 

● VPN & Secure Access: Design and implement secure VPN solutions for remote access; ensure secure, auditable connections to company resources. 

● Network Security: Configure firewall rules, DNS filtering, and traffic monitoring tools to ensure safe and policy-compliant internet usage. 

● IT Policy Management: Define and enforce security policies for device usage, access control, password hygiene, and software installation. 

● Access & Identity Management: Integrate and maintain SSO, MFA, and least-privilege access practices across cloud and on-prem systems. 

● Audit & Monitoring: Set up logs, alerts, and periodic audits for network and system access; ensure compliance with internal and regulatory standards. 

● Security Evangelism: Educate teams on best practices in cybersecurity and support them in maintaining compliance. 

● Vendor & Tool Management: Evaluate and onboard relevant security tools (endpoint protection, MDM, VPNs, etc 

Requirements 

● Proven experience in network security, IT infrastructure, or endpoint security roles. 

● Hands-on experience with VPN solutions (WireGuard, OpenVPN, Cisco AnyConnect, etc.). 

● Strong knowledge of firewalls, proxies, DNS filtering, and endpoint agents (like CrowdStrike, SentinelOne, etc.). 

● Familiarity with MDM tools (Jamf, Intune, Kandji, etc.) and device provisioning at scale. 

● Working knowledge of cloud security (AWS, Azure, or GCP) is a plus. 

● Excellent troubleshooting and documentation skills. 

● Ability to work independently and drive security strategy across teams. 

Nice to Have 

● Previous experience in a startup or scale-up environment. 

● Exposure to compliance frameworks (SOC 2, ISO 27001). 

● Experience managing access for SaaS tools via Okta, Google Workspace, or Azure AD. 

● Basic scripting skills (Python, Bash, PowerShell). Startup-Specific Expectations 

● Be comfortable with ambiguity and a fast-paced, evolving environment. 

● Proactively take on varied technical tasks outside your comfort zone. 

● Help reduce operational toil via automation and smarter tooling. 

● Contribute ideas on performance, cost savings, and process improvements.