[Remote] IT & Security Engineer
Note: The job is a remote job and is open to candidates in USA. GovWorx is helping public safety rise to today’s greatest challenge: the loss of experience. They are seeking an IT & Security Engineer to own the security engineering and IT infrastructure, providing technical leadership and hands-on delivery across various security and compliance initiatives.ResponsibilitiesOwn architecture strategy and hands-on delivery for IT & Security engineering initiativesTranslate security and IT objectives into actionable workflows, automation patterns, and documentationMentor team members on technical troubleshooting, configuration, and best practices; foster a security-first cultureEvaluate and recommend technologies to improve security posture, service reliability, and operational efficiencyOwn end-to-end identity lifecycle management using Okta as the primary IAM platformMaintain and refine RBAC/ABAC models, least-privilege controls, and provisioning workflowsImplement and support SSO, MFA, SCIM, conditional access, and session security controlsConduct periodic access reviews and maintain audit documentation for GovWorx compliance frameworksServe as SME for Jamf (macOS) and Intune (Windows): secure baselines, configuration profiles, provisioning, and compliance enforcementMaintain Zero Trust device posture: encryption, patching, MDM enforcement, automated remediation, and application access controlsManage and tune the EDR deployment for detection quality and incident readinessDeploy self-service endpoint capabilities to minimize employee friction and ensure timely application accessMaintain centralized logging and monitoring pipelines across identity, endpoint, and SaaS systemsCreate and refine detection alerts for high-signal, low-noise event visibilityLead technical investigation during security events: evidence gathering, forensic analysis, containment, and remediation recommendationsCollaborate with the Head of IT & Security on incident prioritization, communication, and business-impact decisionsMaintain and optimize core SaaS, collaboration, and IT platforms for reliability and scalabilityOwn hardware and software lifecycle management: procurement, deployment, inventory, and secure decommissioningMaintain and regularly test backup, continuity, and disaster recovery processesMaintain system diagrams, runbooks, SOPs, and internal knowledge articlesSupport GovWorx compliance frameworks through control enforcement, audit evidence collection, and documentationMaintain SaaS application and OAuth integration inventory; review and control privileged access and scope boundariesManage lifecycle of service accounts, API keys, certificates, and secrets; enforce secure storage and automated rotationAssist in vendor security evaluations, risk assessments, and risk register contributionsSkills5+ years of experience in IT, security engineering, or a combined technical roleHands-on expertise with Okta (SSO, SCIM, MFA, lifecycle management) and RBAC/ABAC access modelsProficiency with Jamf Pro and Microsoft Intune for endpoint management and compliance enforcementExperience with EDR platforms, SIEM tooling, and centralized logging infrastructureWorking knowledge of Zero Trust architecture principles and their practical applicationExperience supporting compliance frameworks (SOC 2, NIST, ISO 27001, or similar)Familiarity with incident response practices, forensic analysis, and chain-of-custody proceduresAbility to write and maintain scripts or automation (Python, Bash, or equivalent) for operational tasksStrong written and verbal communication; able to translate technical concepts for non-technical stakeholdersU.S. citizen or authorized to work in the United StatesFamiliarity with cloud environments (AWS, GCP, or Azure) and SaaS security posture managementExperience with PKI, secrets management, and certificate lifecycle practicesBackground in regulated or compliance-driven environments (public sector, healthcare, fintech, or similar)Prior experience in a technical lead or senior individual contributor capacityBachelor's degree in Computer Science, Information Security, or a related field; equivalent experience acceptedBenefitsOffers BonusHealth BenefitsFlexible Time OffCompany OverviewGovWell is an AI operating system for municipal and county governments to improve service delivery and build public trust. It was founded in 2023, and is headquartered in New York, New York, USA, with a workforce of 51-200 employees. Its website is http://www.govwell.com.