Skip to main content
TryApplyNow
Ramp logo

Senior Security Engineer, Endpoint

Ramp
Full TimeseniorRemote
New York, NY (HQ)RemotePosted Yesterday

Role Overview

Ramp is hiring a Senior Security Engineer, Endpoint. This is a full-time remote role, with the team based in New York, NY (HQ). Part of Ramp's Lifecycle hiring, posted yesterday. Full responsibilities, required qualifications, and the apply link are listed in the description below.

Salary Context

Salary is not disclosed in this posting. Market median for Senior-level Lifecycle roles is $130k-$185k (based on 32 comparable listings). Many employers share specifics during the interview process or after an initial screen.

Resume Keywords to Include

Make sure these keywords appear in your resume to improve ATS scoring

TerraformDriftTelemetryORBenefitsPrivacyBarABOUT

Job description

ABOUT RAMP

Ramp is building the smart infrastructure for finance teams, embedded in the transaction flow of every dollar a business spends. We automate how over $200B in annualized spend flows in and out of 70,000+ companies: authorizing payments, flagging risk, categorizing spend, and closing books.

The problems are high-stakes, data-dense, and unforgiving.

We hire people with high agency and high urgency. We look for slope over intercept. We care less about where you trained and more about what you’ve built. At Ramp, everyone is a builder who owns problems end to end and makes consequential decisions that shape the outcome.

The median Ramp customer saves 5% and grows revenue 16% in their first year – far in excess of businesses operating without Ramp. We believe every ambitious company deserves the same.

If you want to build systems that directly shape how companies move and manage billions, Ramp is the place to do it.

ABOUT THE ROLE

You'll be the architect of our endpoint security posture across the full fleet — macOS, Windows, and BYOD mobile devices. You'll build secure-by-default controls with Terraform and GitOps, harden endpoints at scale, and automate the full device lifecycle so nothing depends on a human remembering to click the right button. You'll partner with IT, SecOps, and engineering teams to sharpen our telemetry and detections, mentor other engineers, and raise the bar on what "low-friction security" actually means. Everything you ship will be auditable, measurable, and built for the long run.

We're also thinking seriously about how corporate security evolves in an agentic world — where AI agents act on behalf of employees and traditional identity and endpoint assumptions break down. You'll help us shape that answer.

WHAT YOU’LL DO

  • Write and ship MDM policy as code — configuration profiles, remediation scripts, and enforcement rules across macOS, Windows, and mobile — with staged rollouts and rollback from day one
  • Build patch automation that closes exposure windows fast without making employees' lives worse
  • Manage software distribution across the fleet
  • Mine fleet telemetry for signal — build dashboards, drift alerts, and AI-assisted automation that cuts toil before it compounds
  • Own managed browser and extension policy: enforce what's allowed, block what isn't, and keep the control plane auditable as the surface grows
  • Be the last line of defense on endpoint escalations that IT Operations can't crack

WHAT YOU NEED

  • Deep macOS security experience — Jamf Pro, FleetDM, or equivalent MDM at scale
  • Strong IaC fundamentals and a GitOps delivery model — Terraform modules, remote state, and CI pipelines shipped through MRs and code review, not tickets and manual steps
  • Solid working knowledge of Google Workspace in a managed enterprise environment, including Chrome Browser Cloud Management and extension policy enforcement
  • A point of view on how agentic AI changes the corporate security surface

NICE-TO-HAVES

  • Have shipped real work with open source endpoint and device management tooling
  • Have built automated, progressive rollout systems based on fleet telemetry.
  • Have managed a mixed fleet — macOS, Windows, and mobile — with real depth on at least one platform
  • Have put AI to work on real operational problems, not just prototyped

BENEFITS AVAILABLE TO ALL FULL-TIME RAMP EMPLOYEES (GLOBAL)

  • Flexible PTO
  • Unlimited AI token usage
  • Centralized home-office equipment ordering
  • Health and wellness stipend
  • Budget for intra-office travel
  • Weekly coffee stipend

UNITED STATES

  • 100% medical, dental & vision insurance coverage for you, with partial coverage for dependents
  • One Medical annual membership
  • 401(k), including employer match on contributions made while employed by Ramp
  • Fertility HRA (up to $10,000 per year)
  • Parental leave: up to 16 weeks (birthing + bonding) or 8 weeks (bonding only) at 100% pay
  • Pet insurance
  • In-office perks: lunch, snacks, drinks, and more
  • Relocation support to NYC or SF (as needed)

CANADA

  • Group medical, dental, and vision coverage through Sun Life
  • Life, AD&D, and disability coverage
  • Fertility drug coverage (up to $4,000 lifetime)
  • Group Retirement Plan with employer match (RRSP + DPSP)
  • Parental leave: up to 16 weeks (birthing + bonding) or 8 weeks (bonding only) at 100% pay, with additional time available at reduced pay
  • Employee Assistance Program and virtual care through Lumino Health

UNITED KINGDOM

  • Private medical insurance through Freedom Elite
  • Virtual GP and at-home care via eMed x Livi
  • Workplace pension through Penfold, with salary sacrifice option
  • Parental leave: up to 16 weeks (birthing + bonding) or 8 weeks (bonding only) at 100% pay with additional time available at reduced pay

REFERRAL INSTRUCTIONS

If you are being referred for the role, please contact that person to apply on your behalf.

OTHER NOTICES

Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.

Beware of recruiting scams: Ramp will only contact you through official @Ramp.com http://Ramp.com email addresses and will never ask for payment or sensitive personal information during the hiring process.

Ramp Applicant Privacy Notice https://ramp.com/legal/applicant-privacy-notice

About Ramp

Ramp logo

Ramp

ramp.com

LifecycleHires remote

79 other open roles at Ramp on TryApplyNow.

Frequently Asked Questions

How do I apply for the Senior Security Engineer, Endpoint position at Ramp?

Use the Apply button above to submit your application directly to Ramp. Most applications take less than 5 minutes if your resume and contact details are ready, and you'll be routed to the employer's official application system to finish.

Is the Senior Security Engineer, Endpoint role at Ramp remote?

Yes. This is a remote role. The team is based in New York, NY (HQ), but the position itself does not require relocating to that office.

What does a Senior Security Engineer, Endpoint at Ramp earn?

Ramp has not disclosed a salary range in this posting. Many employers share specifics later in the interview process; you can also ask during a recruiter screen if compensation transparency is important to you.

When was the Senior Security Engineer, Endpoint role at Ramp posted?

This role was posted on July 8, 2026 (yesterday). It's still listed as actively hiring; we re-confirm openings against the source system multiple times per day and remove closed roles.

How much experience does the Senior Security Engineer, Endpoint role at Ramp require?

This is a senior-level position. Most senior roles call for 5+ years of directly relevant experience. Ramp lists their specific requirements in the description below, so review the must-have qualifications closely before applying.

AI-powered job search

Get every job scored to your resume

Upload your resume and get jobs ranked, your resume tailored, and employee contacts found automatically.

Get started free

No credit card to start