Henderson Scott
Senior Security Engineer (Boston)
Henderson Scott, Boston, Massachusetts, United States, 02298
Senior Security Engineer (US)
Location:
Hybrid / Remote
NJ, CT, NC, MA, PA, VA, MD, DC, FL New York & Boston candidates : Office-based Other listed states : Remote employees considered Contract:
Full-time, Hybrid / Flexible |
35-hour week Salary:
$175,000 base + 15% bonus Overview We are seeking a
hands-on, senior security engineer
to proactively strengthen our security posture across
cloud-native and hybrid environments . This highly technical, strategic role will lead security platform integration, governance, threat detection, and mentoring, while influencing security-first practices across the organisation. Key Responsibilities Security Architecture & Engineering Lead integration and optimisation of
Zscaler ,
Wiz
( EDR/CSPM/CNAPP ), and endpoint protection ( EDR/XDR ) to maximise prevention, detection, and response. Develop detection rules and manage analytics in
Microsoft Sentinel
and
Wiz . Conduct proactive threat hunting, posture management, and remediation validation. Administer
Zscaler Internet Access (ZIA) , including policy tuning, SSL inspection, forwarding profiles, and authentication flows. Troubleshoot traffic flows and collaborate with
DevOps , IT, and R&D to integrate security into
CI/CD pipelines
and infrastructure-as-code. Compliance, Audit & Governance Ensure compliance with
NIST SP 800-53 ,
NIST SP 800-171 ,
SOC 2 ,
ISO/IEC 27001:2022 , and client-specific requirements. Lead audits, penetration testing, and maintain continuous audit readiness. Security Operations & Incident Response Develop, tune, and manage detection rules and playbooks across
Wiz ,
Zscaler , and other platforms aligned with
MITRE ATT&CK . Hunt threats, triage alerts, and lead incident investigations. Manage advanced email security with
Microsoft Defender for Office 365 . Drive automation and orchestration initiatives to improve operational efficiency. Stakeholder Engagement & Leadership Act as a technical advisor on
Zero Trust , cloud security, and operations. Mentor junior staff and foster a
security-first culture . Communicate complex security concepts clearly to technical and non-technical stakeholders, including senior leadership. Mandatory Platform Expertise GitGuardian CyberHaven Wiz Advanced & Defend Zscaler Email Security (various platforms) Education & Preferred Certifications Masters degree in
Information Security ,
Computer Science , or related field. GIAC
certifications:
GCIA ,
GCED ,
GCIH ,
GDAT ,
GDSA ,
GMON Microsoft Cloud Security
certifications:
AZ-500 ,
AZ-305 ,
SC-300
Hybrid / Remote
NJ, CT, NC, MA, PA, VA, MD, DC, FL New York & Boston candidates : Office-based Other listed states : Remote employees considered Contract:
Full-time, Hybrid / Flexible |
35-hour week Salary:
$175,000 base + 15% bonus Overview We are seeking a
hands-on, senior security engineer
to proactively strengthen our security posture across
cloud-native and hybrid environments . This highly technical, strategic role will lead security platform integration, governance, threat detection, and mentoring, while influencing security-first practices across the organisation. Key Responsibilities Security Architecture & Engineering Lead integration and optimisation of
Zscaler ,
Wiz
( EDR/CSPM/CNAPP ), and endpoint protection ( EDR/XDR ) to maximise prevention, detection, and response. Develop detection rules and manage analytics in
Microsoft Sentinel
and
Wiz . Conduct proactive threat hunting, posture management, and remediation validation. Administer
Zscaler Internet Access (ZIA) , including policy tuning, SSL inspection, forwarding profiles, and authentication flows. Troubleshoot traffic flows and collaborate with
DevOps , IT, and R&D to integrate security into
CI/CD pipelines
and infrastructure-as-code. Compliance, Audit & Governance Ensure compliance with
NIST SP 800-53 ,
NIST SP 800-171 ,
SOC 2 ,
ISO/IEC 27001:2022 , and client-specific requirements. Lead audits, penetration testing, and maintain continuous audit readiness. Security Operations & Incident Response Develop, tune, and manage detection rules and playbooks across
Wiz ,
Zscaler , and other platforms aligned with
MITRE ATT&CK . Hunt threats, triage alerts, and lead incident investigations. Manage advanced email security with
Microsoft Defender for Office 365 . Drive automation and orchestration initiatives to improve operational efficiency. Stakeholder Engagement & Leadership Act as a technical advisor on
Zero Trust , cloud security, and operations. Mentor junior staff and foster a
security-first culture . Communicate complex security concepts clearly to technical and non-technical stakeholders, including senior leadership. Mandatory Platform Expertise GitGuardian CyberHaven Wiz Advanced & Defend Zscaler Email Security (various platforms) Education & Preferred Certifications Masters degree in
Information Security ,
Computer Science , or related field. GIAC
certifications:
GCIA ,
GCED ,
GCIH ,
GDAT ,
GDSA ,
GMON Microsoft Cloud Security
certifications:
AZ-500 ,
AZ-305 ,
SC-300