Security Engineer

About Ascendion

Ascendion is a leading provider of AI-powered software engineering solutions that help businesses innovate faster, smarter, and with greater impact. We partner with over 400 Global 2000 clients across North America, APAC, and Europe to tackle complex challenges in applied AI, cloud, data, experience design, and workforce transformation. Powered by more than 11,000 experts, a bold culture, and our proprietary Engineering to the Power of AI (EngineeringAI) approach, we deliver outcomes that build trust, unlock value, and accelerate growth. Headquartered in New Jersey, with 40 global offices, Ascendion combines scale, agility, and ingenuity to engineer what’s next.

Learn more at https://ascendion.com/.

Engineering to the Power of AI™, AAVA™, EngineeringAI, Engineering to Elevate Life™, Enterprise PlatformsAI, Data & InsightsAI, ExperienceAI, GCCAI, OperationsAI, Platform EngineeringAI, ProductAI, and Quality EngineeringAIare trademarks or service marks of Ascendion®. AAVA™ is pending registration. Unauthorized use is strictly prohibited.

Ascendion | Engineering to elevate life

We have a culture built on opportunity, inclusion, and a spirit of partnership. Come, change the world with us:

• Build the coolest tech for the world’s leading brands
• Solve complex problems - and learn new skills
• Experience the power of transforming digital engineering for Fortune 500 clients
• Master your craft with leading training programs and hands-on experience

Experience a community of change makers!

Join a culture of high-performing innovators with endless ideas and a passion for tech. Our culture is the fabric of our company, and it is what makes us unique and diverse. The way we share ideas, learning, experiences, successes, and joy allows everyone to be their best at Ascendion.

Title: Security Technologist

Location: Redmond, WA (Hybrid)

• Purpose of the Team: The purpose of this team is cyber squad- responsible for all things security related for the gaming studio: onboarding/offboarding for network.
• Key projects:This role will lead and deliver security outcomes across identity & access management (IAM), cloud/tenant security, incident triage and response, security assessments, governance, vulnerability management, and security tooling/automation.

Responsibilities

Identity & Access Management (IAM) Privileged Access

• Own and execute IAM operational work including onboarding/offboarding support, account/access management, RBAC, access requests, and access reviews.
• Design and enforce identity security guardrails (e.g., MFA, Conditional Access, Privileged Identity Management).
• Handle escalations for privileged access workflows (e.g., PIM role access/creation, Azure subscription access, sensitive app/access requests) and ensure approvals/justifications are captured.

Security Operations, Incident Triage, and Response

• Triage and manage security incidents and notifications, including escalations and coordination with external stakeholders as required (e.g., security tooling alerts and corporate/security notifications).

Cloud / Tenant Security & Endpoint Compliance

• Improve and maintain Azure/cloud security posture and compliance, including configuration guardrails and continuous hardening.
• Contribute to endpoint/device compliance and tenant-level controls (e.g., Intune / device compliance concepts, Conditional Access enforcement patterns).

Security Assessments (Software, Partners, New Solutions)

• Lead or support security assessments for software, partner studios, and new deployments/solutions; ensure findings and outcomes are tracked and actioned.
• Own/drive partner security assessments and related workflows (including outreach, questionnaires, and escalation paths).

Governance, Risk, Compliance, and Policy Enforcement

• Create, maintain, and enforce security policies, standards, procedures, and technical guidelines; drive policy-aligned outcomes and formally document exceptions when required.
• Support corporate and studio security mandates and compliance expectations (including evidence capture, auditability, and “secure-by-default” operating practices).

Vulnerability & Patch Management

• Drive vulnerability remediation and patch management work across relevant systems and services; coordinate ownership, prioritize risk, and track closure.

Security Tooling, Automation, and Operational Excellence

• Build and improve automation, scripting, and security tooling to reduce manual effort and increase consistency.
• Operate with strong process discipline: route work through tickets so automation, SLAs, and reporting apply; document actions with artifacts/links for traceability.

Minimum Qualifications:

• Demonstrated experience in security engineering with hands-on ownership in one or more of: identity & access management, cloud security, incident response, security operations, or security governance.
• Working knowledge of identity security capabilities such as MFA, Conditional Access, and Privileged Identity Management concepts.
• Experience supporting or administering enterprise identity and cloud ecosystems (e.g., Entra ID, RBAC models, access reviews, privileged access workflows).
• Experience with vulnerability management and operational remediation.
• •Ability to operate in a ticket-driven environment with strong documentation practices, including approvals, justification, and evidence, to support auditability.
• Strong communication and stakeholder management skills, with the ability to explain risk, defend security guardrails, and partner with production and engineering teams to deliver compliant solutions.

Core Skills:

• Security operations and alert triage; incident response
• Cloud security and tenant hardening mindset
• IAM engineering, including RBAC, access requests and reviews, and privileged workflows
• Automation and scripting or tool development to reduce friction and risk
• Governance, risk management, and compliance checks and auditing discipline
• Endpoint and device compliance awareness with a policy-aligned enforcement approach

Additional Nice to Haves:

• Experience supporting security for game development or other high-velocity production environments
• Experience partnering with central or corporate security stakeholders and translating mandates into implementable security guardrails

Top 3 Must-Have HARD Skills & years of experience for each:

• Experience with Azure Cloud minimum 5 years.
• Experience with Entra ID minimum 5 years.
• Working knowledge of identity security capabilities such as MFA, Conditional Access, and Privileged Identity Management concepts.

Salary Range:$1,00,000 - 1,20,000 Annually -Factors that may affect pay within this range may include geography/market, skills, education, experience, and other qualifications of the successful candidate.

Benefits: The Company offers the following benefits for this position, subject to applicable eligibility requirements: [medical insurance] [dental insurance] [vision insurance] [401(k) retirement plan] [long-term disability insurance [short-term disability insurance] [5 personal days accrued each calendar year. The Paid time off benefits meet the paid sick and safe time laws that pertain to the City/ State] [10-15 days of paid vacation time] [6 paid holidays and 1 floating holiday per calendar year]

Want to change the world? Let us know.

Tell us about your experiences, education, and ambitions. Bring your knowledge, unique viewpoint, and creativity to the table. Let’s talk!