Security Engineer I

<div class="content-intro"><div><strong>About Us:</strong></div> <div>Live experiences help people cross today’s digital divide and focus on what truly connects us – the here, the now, this once-in-a-lifetime moment that’s bringing us together. To fulfill Gametime’s mission of uniting the world through shared experiences, we make it easy for people to discover and access the live experiences that matter most.</div> <div>&nbsp;</div> <div>With platforms on iOS, Android, mobile web and desktop supporting more than&nbsp;60,000&nbsp;events across the US and Canada, we are reimagining the event ticket industry in order to move at the speed of life.</div></div><h3><strong>Job Summary:</strong></h3> <p>The <strong>Security Engineer I</strong> is responsible for day‑to‑day security operations and hands‑on IT support that protect Gametime’s people, data, and systems. The role focuses on internal user support, alert triage, identity and endpoint hygiene, vulnerability and access management, and first-line incident response in partnership with senior and lead engineers. This role will initially begin focusing on IT support where needed and transition into full-time security engineering.</p> <h3><strong>Key Responsibilities:</strong></h3> <h3><strong>Security Operations &amp; Engineering</strong></h3> <ul> <li>Creates, monitors, and triages security signals in Datadog, CloudWatch, and Loki; participates in SIEM evaluation and onboarding.</li> <li>Supports vulnerability management by tracking findings, driving remediation with service owners, and verifying closure against agreed SLAs.</li> <li>Maintains identity and access hygiene in critical applications: enforces MFA, applies least‑privilege access patterns, and participates in periodic access reviews.</li> <li>Assists with endpoint security baselines via Kandji, Intune, and SentinelOne; helps remediate non‑compliant devices.</li> <li>Supports secure SDLC practices: dependency hygiene, secrets management, and security checks in CI; raises risks in design/review with actionable recommendations.</li> <li>Contributes to web/mobile application security by coordinating with product/engineering on secure release practices and platform‑specific control considerations.</li> <li>Coordinates and maintains security training and awareness campaigns.</li> <li>Authors and maintains security documentation: policies, procedures, runbooks, FAQs, and user‑facing guidance.</li> <li>Support audits, compliance assessments, and third-party risk reviews.</li> </ul> <h3><strong>IT Operations &amp; Support</strong></h3> <ul> <li><strong>Onboarding &amp; Offboarding:</strong> Sets up accounts, provisions hardware, applies appropriate access controls; collects, wipes, and reassigns devices during offboarding.</li> <li><strong>Asset Management:</strong> Tracks and reconciles hardware/software inventory; assists with shipping, receiving, and device preparation for employees.</li> <li><strong>Helpdesk / Jira Ticket Support:</strong> Monitors Jira queues and Slack Support channels.&nbsp; Meet first‑response SLAs; handles routine troubleshooting (account lockouts, software installs, printer/network issues); escalates complex issues with clear notes and reproduction steps.</li> <li><strong>Troubleshooting &amp; Hands‑On Support:</strong> Joins calls or screen shares with end users for initial diagnosis; communicates clearly and walks users through fixes.</li> </ul> <h3><strong>Key Competencies:</strong></h3> <h3><strong>Technical Skills</strong></h3> <ul> <li>Working knowledge of Google Workspace, Okta, Slack, Jira, Kandji, and Intune.</li> <li>Familiarity with AWS fundamentals (IAM, Secrets Manager, KMS) and centralized logging (Loki).</li> <li>Experience with monitoring/alerting in Datadog and basic query/visualization for investigations.</li> <li>Comfort with Linux/macOS administration and common endpoint/network troubleshooting.</li> <li>Exposure to scripting or automation (Python, Bash, Go) and strong Git hygiene for config/runbook changes.</li> </ul> <h3><strong>Interpersonal Skills</strong></h3> <ul> <li>Patient, professional, and approachable when partnering with non‑technical staff.</li> <li>Clear, concise asynchronous communication and documentation; constructive collaboration across teams.</li> <li>Ownership mindset; follows tasks through to completion and escalates risks early.</li> </ul> <h3><strong>Problem‑Solving &amp; Decision‑Making</strong></h3> <ul> <li>Uses logs, alerts, and runbooks to diagnose issues; proposes minimal, testable fixes.</li> <li>Applies least‑privilege and defense‑in‑depth principles; makes risk‑based, auditable decisions.</li> <li>Identifies root causes and contributes durable prevention measures.</li> </ul> <h3><strong>Minimum Qualifications:</strong></h3> <ul> <li><strong>Education:</strong> Bachelor’s degree in a technical field or equivalent practical experience.</li> <li><strong>Experience:</strong> Approximately 1–2 years in security operations, IT support, or related roles (relevant internships or open‑source contributions considered).</li> <li><strong>Foundational Practices:</strong> MFA, phishing awareness, least‑privilege, secure handling of credentials/secrets.</li> <li><strong>Other Requirements:</strong> Strong written and verbal communication.</li> </ul> <h3><strong>Preferred Qualifications:</strong></h3> <ul> <li>Hands‑on experience with Okta (group/rule hygiene, lifecycle), Google Workspace administration, Kandji/Intune compliance policies.</li> <li>Familiarity with AWS security (IAM roles/policies, security groups, encryption at rest/in transit) and CloudTrail/CloudWatch log flows.</li> <li>Experience building Datadog monitors/dashboards and basic detections; exposure to SIEM concepts.</li> <li>Experience with Python for automation and security tooling integration.</li> <li>Experience with Terraform for secure resource configuration and deployment.</li> <li>Awareness of web/mobile app security considerations.</li> <li>Experience with Docker and AWS ECS/EKS for securing and managing containerized applications.</li> </ul> <p>&nbsp;</p> <h3><strong>Performance Metrics:</strong></h3> <ul> <li><strong>IT Service:</strong></li> <ul> <li>≥95% Jira tickets first‑response within SLA; median resolution time within target by priority.</li> <li>Onboarding/offboarding completion within 1 business day; ≥95% device compliance in MDM.</li> </ul> <li><strong>Vulnerability &amp; Access Management:</strong><strong><br><br></strong></li> <ul> <li>≥90% of critical/high vulnerabilities remediated within SLA; quarterly access reviews completed on time with documented exceptions.</li> </ul> </ul> <p><br><br></p><div class="content-pay-transparency"><div class="pay-input"><div class="description"><p>At Gametime pay ranges are subject to change and assigned to a job based on specific market median of similar jobs according to 3rd party salary benchmark surveys. Individual pay within that range can vary for several reasons including skills/capabilities, experience, and available budget.</p></div><div class="title">United States - Pay Range</div><div class="pay-range"><span>$104,550</span><span class="divider">&mdash;</span><span>$123,000 USD</span></div></div></div><div class="content-conclusion"><p><strong>Gametime is committed to bringing together individuals from different backgrounds and perspectives. We strive to create an inclusive environment where everyone can thrive, feel a sense of belonging, and do great work together. As an equal opportunity employer, we prohibit any unlawful discrimination against a job applicant on the basis of their race, color, religion, veteran status, sex, parental status, gender identity or expression, transgender status, sexual orientation, national origin, age, disability or genetic information. We respect the laws enforced by the EEOC and are dedicated to going above and beyond in fostering diversity across our company.</strong></p></div>