Security Operations Engineer

We develop an independent payment orchestration platform operating in a highly regulated environment and subject to PCI DSS compliance. The platform includes multiple integrations with payment providers, processors, and third-party services, requiring strong operational security and access management practices.

This role focuses on maintaining and improving the company's security operations, employee access management, endpoint security, SaaS administration, and compliance processes. You will work closely with Infrastructure, DevSecOps, and Engineering teams to support a secure and scalable environment while helping strengthen UpGate's overall security posture.

Job Responsibilities

•

Manage onboarding and offboarding processes for employees and contractors.

•

Configure and maintain user accounts, permissions, and access rights across internal systems and services.

•

Conduct periodic access reviews and participate in compliance controls, including PCI DSS requirements.

•

Support employees with VPN connectivity issues, password resets, MFA/2FA troubleshooting, and other IT/security-related requests.

•

Manage and maintain corporate devices using Jamf and related endpoint management tools.

•

Prepare and maintain secure workstations and workplace setups for employees.

•

Manage hardware inventory, including laptops, monitors, TVs, peripherals, and other office equipment.

•

Coordinate hardware procurement, repairs, replacements, and vendor relationships.

•

Administer and maintain SaaS platforms and subscriptions, including 1Password, Google Workspace, Pipedrive, Figma, and other internal systems.

•

Manage software licenses, subscription renewals, and software usage.

•

Participate in vulnerability management processes, including vulnerability tracking, validation, and remediation follow-up.

•

Perform operational security checks and participate in security-related reviews within AWS environments.

•

Assist in PCI DSS audit preparation and support compliance controls.

•

Collaborate with DevSecOps, Infrastructure, and other technical teams on operational security initiatives.

•

Create and maintain internal documentation, onboarding guides, and user documentation.

•

Participate in the continuous improvement of internal security, IT operations, and compliance processes.

•

Help improve the overall operational security maturity of the company.

Important and Challenging Tasks

•

Develop and improve access management and operational security practices.

•

Support and enhance the company’s endpoint and SaaS security posture.

•

Participate in PCI DSS audit preparation activities.

•

Continuously improve internal security and operational processes.

•

Gradually take ownership of more advanced security and DevSecOps-related responsibilities.

Technologies and Tools

•

Jamf

•

Google Workspace Admin

•

1Password

•

Jira

•

Confluence

•

AWS

•

VPN / MFA / SSO solutions

•

macOS

•

SaaS Management Tools