Role Overview
CoreWeave is hiring a Senior Security Engineer, Enterprise Security. This is a full-time role in New York, NY / Sunnyvale, CA / Bellevue, WA/ San Francisco. Part of CoreWeave's Security hiring, posted last week. Full responsibilities, required qualifications, and the apply link are listed in the description below.
Salary Context
Salary is not disclosed in this posting. Market median for Senior-level Security roles is $153k-$200k (based on 126 comparable listings). Many employers share specifics during the interview process or after an initial screen.
Resume Keywords to Include
Make sure these keywords appear in your resume to improve ATS scoring
Job description
What You’ll Do:
The Enterprise Security team at CoreWeave is responsible for securing how our people work every day—identity, endpoints, networks, and SaaS—so the company can move fast without compromising safety. This team owns the controls, guardrails, and automation that keep our workforce, contractors, and critical business applications protected in a modern, cloud-native environment.
If you’re excited about zero trust, phishing-resistant MFA, and building secure-by-default experiences that actually make people more productive, this is the team to join.
About the Role:
As a Senior Security Engineer, Enterprise Security, you’ll design and ship the security controls that underpin CoreWeave’s workforce and enterprise stack. You’ll lead initiatives across identity, access management, device and endpoint security, and SaaS security—partnering closely with IT Engineering, Endpoint, Network, and other security teams.
Your day-to-day will blend hands-on engineering (writing code, building integrations, tuning controls) with architecture and program ownership (setting standards, defining patterns, and driving adoption across teams). You’ll be responsible for turning high-level objectives—like “implement zero trust for workforce access” or “deploy phishing-resistant MFA at scale”—into concrete designs, automation, and measurable risk reduction.
In this role, you will:
Engineer modern identity and access controls
- Design, implement, and operate workforce identity solutions (e.g., Okta/Entra and other IdPs) including SSO, MFA, conditional access, and lifecycle automation via SCIM.
- Develop and roll out phishing-resistant MFA for high-value accounts and critical access paths (e.g., FIDO2/WebAuthn, hardware keys, device-bound authenticators).
- Define and maintain RBAC/IAM patterns for enterprise applications (role models, groups, entitlements, JIT access, and approvals).
Implement zero trust for workforce and enterprise access
- Design and deploy controls that combine user identity, device posture, network context, and application sensitivity to enforce least-privilege access.
- Partner with Network and Infrastructure teams to integrate mTLS, service identity, and policy-based access into internal services and admin interfaces.
- Help transition from legacy perimeter models to zero trust network access (ZTNA) patterns for employees, contractors, and third parties.
Secure SaaS and collaboration platforms
- Evaluate, onboard, and harden SaaS applications (Google Workspace, Microsoft 365, Slack, HRIS, ticketing, and other business apps) to align with enterprise security policies.
- Implement and tune controls such as SCIM provisioning, data access policies, DLP, sharing controls, and audit logging across the SaaS estate.
- Partner with business and IT owners to ensure new SaaS applications meet baseline security standards before adoption.
Harden endpoints and the extended workforce
- Collaborate with Endpoint/IT teams to define and enforce baseline configurations for laptops, workstations, and other managed devices via MDM and EDR.
- Design secure patterns for contractor and vendor access, including device requirements, identity separation, and time-bound access.
- Support investigations and incident response related to identity, endpoint, and SaaS domains.
Automate and instrument everything you can
- Build automation and self-service experiences for access requests, approvals, access reviews, and break-glass workflows.
- Develop integrations between IdPs, HRIS, ticketing, and other systems to minimize manual toil and reduce identity-related error rates.
- Define and instrument metrics for enterprise security (e.g., MFA coverage, zero trust policy enforcement, joiner/mover/leaver SLA adherence, SaaS posture).
Partner on detection, response, and governance
- Work with Security Operations and SIEM teams to ensure robust visibility into identity, device, and SaaS activity, and to build high-signal detections.
- Contribute to policies, standards, and reference architectures that encode enterprise security expectations.
- Author clear documentation and runbooks that make it easy for teams to consume and operate the controls you build.
Who You Are:
Minimum Qualifications
- 5+ years of experience in enterprise security, identity and access management, or closely related security engineering roles.
- Strong, practical understanding of modern IAM concepts: SSO, federation, RBAC/ABAC, JIT access, least privilege, and separation of duties.
- Hands-on experience implementing and operating SSO and workforce identity with platforms such as Okta, Entra ID, or equivalent IdPs.
- Deep familiarity with SAML, OAuth 2.0/OIDC, and SCIM, including real-world experience integrating these protocols with third-party SaaS and internal apps.
- Demonstrated experience designing and rolling out MFA, ideally including phishing-resistant approaches (FIDO2/WebAuthn, hardware security keys, device-bound authenticators, step-up authentication).
- Experience designing and deploying zero trust or context-aware access controls (e.g., device trust, network segmentation, mTLS, ZTNA) in hybrid or remote-friendly environments.
- Proficiency in at least one modern scripting or programming language (e.g., Python, Go) used to build automations, integrations, or internal tooling.
- Experience securing and integrating business-critical SaaS (e.g., Google Workspace, Microsoft 365, Slack, Atlassian, HRIS, ticketing) including SCIM provisioning, access reviews, and audit log ingestion.
- Familiarity with MDM and endpoint security tooling (e.g., Jamf, Intune, EDR platforms) and how they tie into identity and access decisions.
- Exposure to SIEM/detection ecosystems (e.g., Elastic) and experience collaborating with detection & response teams on identity/endpoint/SaaS detections.
- A track record of owning cross-functional projects from design through adoption, with an emphasis on measurable risk reduction and user experience.
Preferred
- Experience working in high-growth or hyperscale environments where security must keep pace with rapid headcount and tooling expansion.
- Hands-on experience with zero trust network access or secure access products (e.g., ZTNA, secure web gateways, or identity-aware proxies).
- Familiarity with enterprise security standards and frameworks (e.g., SOC 2, ISO 27001, NIST 800-53) and mapping enterprise controls to these requirements.
- Experience with SaaS security posture management (SSPM), CASB, DLP, or insider risk tooling focused on collaboration platforms and data access.
- Experience building or contributing to internal security tooling (e.g., access review automation, JML workflows, policy-as-code).
- Participation in security communities, standards groups, or open-source contributions in IAM, zero trust, or enterprise security.
Wondering if you’re a good fit?
We believe in investing in our people, and value candidates who can bring their own diversified experiences to our teams – even if you aren't a 100% skill or experience match. Here are a few qualities we’ve found compatible with our team. If some of this describes you, we’d love to talk.
- You love to build secure-by-default experiences that remove friction instead of adding gates, and you think deeply about usability when you design controls.
- You’re curious about how identity, devices, networks, and SaaS all intersect in real-world zero trust architectures—and you like “drawing the owl” where clear patterns don’t yet exist.
- You’re an expert in turning vague risk concerns into concrete requirements, automation, and metrics, and you enjoy collaborating across Security, IT, and business teams to get it done.
Why CoreWeave?
At CoreWeave, we work hard, have fun, and move fast! We’re in an exciting stage of hyper-growth that you will not want to miss out on. We’re not afraid of a little chaos, and we’re constantly learning. Our team cares deeply about how we build our product and how we work together, which is represented through our core values:
- Be Curious at Your Core
- Act Like an Owner
- Empower Employees
- Deliver Best-in-Class Client Experiences
- Achieve More Together
We support and encourage an entrepreneurial outlook and independent thinking. We foster an environment that encourages collaboration and enables the development of innovative solutions to complex problems. As we get set for takeoff, the organization's growth opportunities are constantly expanding. You will be surrounded by some of the best talent in the industry, who will want to learn from you, too. Come join us!
The base salary range for this role is $165,000 to $242,000. The starting salary will be determined based on job-related knowledge, skills, experience, and market location. We strive for both market alignment and internal equity when determining compensation. In addition to base salary, our total rewards package includes a discretionary bonus, equity awards, and a comprehensive benefits program (all based on eligibility).
What We Offer
The range we’ve posted represents the typical compensation range for this role. To determine actual compensation, we review the market rate for each candidate which can include a variety of factors. These include qualifications, experience, interview performance, and location.
In addition to a competitive salary, we offer a variety of benefits to support your needs. The benefits below reflect our US-based offerings; for roles in other locations, benefits vary and are shared during the hiring process. These include:
- Medical, dental, and vision insurance - 100% paid for by CoreWeave
- Company-paid Life Insurance
- Voluntary supplemental life insurance
- Short and long-term disability insurance
- Flexible Spending Account
- Health Savings Account
- Tuition Reimbursement
- Ability to Participate in Employee Stock Purchase Program (ESPP)
- Mental Wellness Benefits through Spring Health
- Family-Forming support provided by Carrot
- Paid Parental Leave
- Flexible, full-service childcare support with Kinside
- 401(k) with a generous employer match
- Flexible PTO
- Catered lunch each day in our office and data center locations
- A casual work environment
- A work culture focused on innovative disruption
California Applicants
California Consumer Privacy Act
Equal Opportunity & Accommodations
CoreWeave is an equal opportunity employer, committed to fostering an inclusive and supportive workplace. All qualified applicants and candidates will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, gender identity, national origin, veteran status, or genetic information.
As part of this commitment and consistent with the Americans with Disabilities Act (ADA), CoreWeave will ensure that qualified applicants and candidates with disabilities are provided reasonable accommodations for the hiring process, unless such accommodation would cause an undue hardship. If reasonable accommodation is needed, please contact: careers@coreweave.com.
Export Control Compliance
This position requires access to export controlled information. To conform to U.S. Government export regulations applicable to that information, applicant must either be (A) a U.S. person, defined as a (i) U.S. citizen or national, (ii) U.S. lawful permanent resident (green card holder), (iii) refugee under 8 U.S.C. § 1157, or (iv) asylee under 8 U.S.C. § 1158, (B) eligible to access the export controlled information without a required export authorization, or (C) eligible and reasonably likely to obtain the required export authorization from the applicable U.S. government agency. CoreWeave may, for legitimate business reasons, decline to pursue any export licensing process.
About CoreWeave
CoreWeave
coreweave.com
268 other open roles at CoreWeave on TryApplyNow.
Frequently Asked Questions
How do I apply for the Senior Security Engineer, Enterprise Security position at CoreWeave?
Use the Apply button above to submit your application directly to CoreWeave. Most applications take less than 5 minutes if your resume and contact details are ready, and you'll be routed to the employer's official application system to finish.
Where is the Senior Security Engineer, Enterprise Security position at CoreWeave located?
This position is based in New York, NY / Sunnyvale, CA / Bellevue, WA/ San Francisco. CoreWeave has not indicated remote or hybrid options for this role, so candidates should plan for on-site work.
What does a Senior Security Engineer, Enterprise Security at CoreWeave earn?
CoreWeave has not disclosed a salary range in this posting. Many employers share specifics later in the interview process; you can also ask during a recruiter screen if compensation transparency is important to you.
When was the Senior Security Engineer, Enterprise Security role at CoreWeave posted?
This role was posted on July 1, 2026 (12 days ago). It's still listed as actively hiring; we re-confirm openings against the source system multiple times per day and remove closed roles.
How much experience does the Senior Security Engineer, Enterprise Security role at CoreWeave require?
This is a senior-level position. Most senior roles call for 5+ years of directly relevant experience. CoreWeave lists their specific requirements in the description below, so review the must-have qualifications closely before applying.
Similar Jobs
Correctional Officer- Corrections
Howard County Government
Correctional Officer- Corrections
Howard County Government
Correctional Officer- Corrections
Howard County Government
Correctional Officer- Corrections
Howard County (MD)
Full Time Security Officer (Weds-Sun 12am-8am)
Comstock Companies
More Jobs at CoreWeave
View all →Senior Technical Program Manager, Security Risk and M&A Security
CoreWeave
Senior Systems Engineer, OS Automation
CoreWeave
Senior Supply Chain Compliance Lead
CoreWeave
Senior Special Projects Manager
CoreWeave
VP, Product AI/ ML
CoreWeave
AI-powered job search
Get every job scored to your resume
Upload your resume and get jobs ranked, your resume tailored, and employee contacts found automatically.
Get started freeNo credit card to start