Apply on Employer Site

Snap Inc. · 4 months ago

Security Engineer, Enterprise Infrastructure Security, Level 5

Los Angeles, California

Full-time

Onsite

Senior Level

$209K/yr - $313K/yr

6+ years exp

Snap Inc. is a technology company that empowers people to express themselves and communicate more effectively through its products like Snapchat and Spectacles. They are seeking a Security Engineer to join their Enterprise Infrastructure Security team, responsible for designing and operating security controls to protect corporate devices, applications, and infrastructure.

Computer Software

Comp. & Benefits

H1B Sponsor Likely

Responsibilities

You will help design and operate the security controls that protect our corporate devices, applications, and infrastructure. Our team’s scope is broad. We’re looking for someone with deep expertise in a few areas and the curiosity to learn and collaborate across the rest:

Build and maintain execution control tooling such as endpoint agents, binary allowlisting, and related enforcement systems while driving resilient device posture through configuration standards, hardening, and continuous validation across endpoints, BYOD, browsers, IoT, lab, network, and IT systems

Architect and deploy device trust capabilities by defining and enforcing policies that validate device posture, health, and identity, ensuring only trusted devices can access internal and SaaS applications

Secure corporate and SaaS applications, including Google Workspace, by establishing baseline configurations, enforcing access governance, managing browser policies, and ensuring secure communication and data sharing across collaboration platforms

Build and operate enterprise vulnerability and risk management platforms, establishing patching and configuration standards, managing exceptions, and reducing attack surface across operating environments

Design and operate secure networking and Zero Trust access controls, ensuring that device trust, identity, and network segmentation principles are consistently enforced across corporate and SaaS environments

Partner with IT and identity platform teams to define security requirements for IAM, IDP, and SSO integrations, ensuring strong authentication, least-privilege access, and alignment with Zero Trust principles across corporate and SaaS environments

Implement and enforce secure network architectures and firewall policies to protect on-premise infrastructure, maintaining resilient security across datacenters, PoP sites, and manufacturing environments

Conduct security reviews and partner with cross-functional teams to evaluate new and existing systems, including AI tools and features, providing actionable mitigation guidance that upholds access control boundaries, protects sensitive data, and enables the business to move securely, while also managing exception handling and formal risk acceptance processes

Qualification

Security controls designDevice posture managementSaaS application securityNetwork security principlesOperating system hardeningVulnerability managementDevelopment/scripting skillsCommunicationCollaboration skills

Required

Proven experience designing, building, and maintaining corporate security controls, with depth in areas such as device posture management, endpoint agents/binary allowlisting, or SaaS application security

Advanced knowledge of operating system internals and hardening, with competency across two or more of the following: macOS, Windows, Linux, mobile (iOS/Android), IoT, or cloud environments (AWS, GCP)

Strong understanding of corporate networking concepts and protocols (e.g., VPNs, firewalls, DNS, TLS, identity-aware networking) and their role in enforcing device and application security

Experience conducting security design reviews and providing actionable mitigation guidance that balances business enablement with risk reduction

Strong development or scripting skills (Python, Go, or equivalent) for building integrations, automating workflows, and scaling security platforms

Bachelor of Science in Computer Science, Engineering, Information Systems, or equivalent years of experience in a related technical field

6+ years of experience in the field of corporate or enterprise security, or other similar security engineering role

Preferred

Background evaluating and securely enabling emerging technologies, including AI tools and features, with a focus on upholding access control boundaries and data protection requirements

Familiarity with securing lab, IoT, and ancillary systems, including applying hardening standards, monitoring, and access controls across heterogeneous environments

Excellent verbal and written communication skills, with high attention to detail

Work record of collaborating with internal and external stakeholders at all levels of a company

Benefits

Paid parental leave

Comprehensive medical coverage

Emotional and mental health support programs

Compensation packages that let you share in Snap’s long-term success

Company

Snap Inc.

Glassdoor3.6

Snap is a technology company. We believe the camera presents the greatest opportunity to improve the way people live and communicate.

Founded in 2011

Santa Monica, California, US

5001-10000 employees

https://careers.snap.com/

H1B Sponsorship

Snap Inc. has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2025 (394)

2024 (366)

2023 (332)

2022 (356)

2021 (318)

2020 (237)