Security Operations Lead
EarnestFull Time
Senior (5 to 8 years), Expert & Leadership (9+ years)
Prior experience in a security-related or adjacent technical role, such as Identity and Access management, Endpoint Security, Data Loss Prevention, Security Operations Center, or IT Engineering/Operations is required. Candidates must possess knowledge of operating systems and security mechanisms, common networking protocols, common authentication and user management protocols (OIDC, SAML, SCIM), Google Workspace Security and Device Management, and experience with MDM products like Jamf, Kandji, Fleet, or Intune. The ability to provide and receive constructive feedback, work independently and collaboratively, and adapt to a startup environment are also essential. Experience with Jira workflows and automation, application/infrastructure security, and scripting languages like Go, Python, or bash are considered advantageous.
The Security Operations Engineer will manage devices including MDM policies, BYOD, patch/vulnerability management, troubleshooting, and general OS management across macOS, Linux, and Windows. They will support Tailscale's key platforms such as Google Workspace, Jira, and GitHub, and focus on process automation for tasks like self-service access and patching. Responsibilities also include managing access via OIDC, SAML, and SCIM, implementing Data Loss Prevention/Mitigation strategies, and overseeing tech-stack decision-making in coordination with Engineering Leadership to ensure alignment with IT standards.
Secure VPN for remote resource access
Tailscale offers a secure networking solution that allows users to access remote resources like virtual machines and databases from anywhere using a WireGuard-based Virtual Private Network (VPN). Its service is designed for businesses and individuals needing to manage private resources remotely, with a focus on simplicity and minimal setup. Tailscale's freemium model attracts a wide user base, allowing users to start for free and upgrade for additional features. The company aims to enhance data security while providing an easy-to-use remote access solution.