Foley is seeking a highly skilled and proactive Senior IT Security Engineer to lead and evolve our enterprise security program. This role is instrumental in strengthening our security posture as we scale our SaaS offerings and meet increasingly rigorous compliance standards. The ideal candidate is a hands-on technical leader with deep expertise in security architecture, cloud infrastructure, identity and access management (IAM), incident response, and compliance frameworks. You will collaborate closely with infrastructure, engineering, and compliance teams to ensure our systems, data, and users are protected against emerging threats.
What you'll do
Security Architecture & Operations
- Design, implement, and manage comprehensive security solutions including SIEM, DLP, EDR, DNS filtering, and encryption across cloud and on-prem environments.
- Administer firewalls, VPNs, and network security infrastructure with a focus on segmentation, least privilege, and Zero Trust principles. • Lead vulnerability management efforts, including scanning, prioritization, patching, and remediation workflows.
- Oversee and optimize endpoint detection and response (EDR) tools such as Rapid7 and AWS GuardDuty.
- Manage identity and access management (IAM) systems, including SSO, Multi-Factor Authentication (MFA), Microsoft Entra ID (Azure AD), and Active Directory Group Policy.
- Conduct privileged account and user access reviews
- Partner with IT and DevOps to embed security in CI/CD pipelines and automate controls where possible.
Incident Response & Monitoring
- Contribute to incident response efforts, from detection to root cause analysis and remediation.
- Leverage existing platforms and tools to develop and improve detection, response and containment workflows.
- Respond to real-time monitoring and alert triage for anomalies across SaaS and infrastructure platforms.
- Conduct post-incident reviews and implement proactive controls to prevent recurrence.
- Contribute to disaster recovery and business continuity planning and exercises.
Collaboration & Leadership
- Serve as the technical lead for the security team, mentoring junior engineers and driving cross-functional security initiatives.
- Partner with Infrastructure, Engineering, and Compliance to integrate security into all stages of system design and delivery.
- Represent Foley in discussions with auditors, vendors, and internal stakeholders on all matters related to cybersecurity and compliance.
- Advocate for security awareness and education across the organization.
Compliance & Risk Management
- Manage vendor security reviews using ticketing and vendor management solutions.
- Evaluate new tools, vendors, and partners through a security-by-design lens.
- Collaborate with the Compliance department in support of both internal and external audit efforts, including SOC 2 engagements and PCI-DSS internal audits
Who you are
- Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience).
- CISSP, SSCP, or equivalent certifications (completed or in progress). Relevant AWS security certifications, such as AWS Certified Security - Specialty are also a plus.
- 5+ years of experience in IT security engineering, with strong exposure to cloud and hybrid environments.
- Proven experience with:
- Microsoft Entra ID (Azure AD), Active Directory, and Group Policy Management
- Single Sign-On (SSO) and Identity Federation (SAML, OIDC, OAuth 2.0)
- AWS security architecture, IAM roles, and network security groups
- Endpoint and network security tools, EDR, SIEM, SOAR, and vulnerability scanner
- Familiarity with cloud access security solutions is a plus.
- Familiarity with containerization or serverless workload solutions, such as Kubernetes, is a plus.
Location: This is a primarily remote role and will work EST hours, with the expectation of occasional visits to our offices for team collaboration, training, or company events.
Compensation
The compensation range for this position is $120,000 – $145,000 annually + variable compensation, depending on experience and qualifications. Actual compensation may vary based on skills, experience, and location.
About us
At Foley, we’re reimagining how safety-sensitive industries hire, stay compliant, and manage risk. We’ve evolved into a modern SaaS company with an all-in-one, AI-ready platform that helps transportation, construction, distribution, and utility businesses operate faster, smarter, and safer.
As we continue to grow, we’re looking for curious, strategic thinkers who thrive in complexity, are motivated by making an impact, and want to join a team that’s passionate about building great products and supporting customers. Our core values — Teammateship, Grit, and Innovation — guide everything we do. Whether we’re collaborating internally or helping customers, we approach every challenge with optimism, humor, and a shared commitment to success.
Benefits
Foley offers a comprehensive benefits package that includes medical, dental, and vision coverage, a 401(k) with company match, paid time off and holidays, wellness programs, and an employee assistance program.
Equal Employment Opportunity
Foley.io is an Equal Opportunity Employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity or expression, national origin, age, disability, protected veteran status, or any other legally protected characteristic.
Reasonable Accommodations
If you require a reasonable accommodation during the application or interview process, please contact us at careers@foley.io
Employment Status
Employment with Foley is on an at-will basis. Nothing in this job posting or in future communications should be construed as a contract of employment.
Massachusetts Applicants: It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.