Benchling
biotech
EnterpriseSecurityEngineer
Neural analysis suggests this role is
optimal for Mid candidates.
“Enterprise Security Engineer at Benchling. Skills: Enterprise Security Engineering, Identity and Access Management (IAM), Zero Trust Architecture, Automation, AI-native security tooling. Drive the organization's zero trust strategy end to end. Design and maintain least-privilege access patterns, Just-in-Time (JIT) access, and Privileged Access Management (PAM) controls”
What You'll Achieve.
Provide value to the organization by emphasizing real world security; Emphasize automation and AI; Secure some of society's most sensitive data; Reduce analyst burden through AI-native security tooling; Close coverage gaps faster than traditional approaches; Reduce manual toil through automation and AI-assisted tooling
Industry & Context.
What They're Looking For.
Must Have
5+ years in a security engineering or IAM-focused role, Deep, hands-on IdP expertise (preferably Okta), SSO, SCIM, MFA, Lifecycle Management, and NHI management, Demonstrated experience implementing zero trust architecture in practice, Hands-on delivery of continuous verification, device trust integration, and least-privilege enforcement across an organization, working knowledge of identity protocols: SAML, OIDC, OAuth 2.0, and SCIM, Proficiency managing macOS endpoints at scale using Fleet or an equivalent MDM platform, Foundational cloud IAM experience across at least one major provider (AWS, GCP, or Azure), Demonstrated track record of building automation that eliminated recurring manual work, Scripting proficiency in in at least one language, preferably Python, understanding of operating systems fundamentals (MacOS/Linux/Windows)
Nice to Have
Experience with ZTNA platforms (Cloudflare Access, Zscaler Private Access, Tailscale, or similar), Operational patterns around replacing VPN with identity-aware access, Hands-on use of AI coding assistants (Copilot, Claude, Cursor, or similar) to increase velocity, Experience governing AI/ML service identities or securing LLM API integrations, Familiarity with PAM solutions such as HashiCorp Vault, AWS Secrets Manager, or Okta Privileged Access, Okta Certified Administrator, Okta Certified Consultant, or equivalent certification
What You'll Do.
Drive the organization's zero trust strategy end to end
Design and maintain least-privilege access patterns
Just-in-Time (JIT) access
and Privileged Access Management (PAM) controls
and maintain MDM infrastructure for the macOS fleet
Enforce SSO-required policies
review and restrict OAuth scopes
and audit third-party integration access
Build processes and tooling to detect shadow IT
unauthorized OAuth app grants
and SaaS tools that bypass identity controls
Evaluate and deploy AI-native security tooling
Define and enforce security standards for AI agent and LLM service identities
Develop and enforce CIS/NIST-aligned configuration baselines
Meaningfully reduce manual toil through automation and
How You'll Work.
Team & Collaboration
Engage effectively with both technical teams and non-technical stakeholders
Communication Scope
Excellent communication skills; Ability to engage effectively with both technical teams and non-technical stakeholders
Full Job Description
We are rebuilding biotech for the AI era. When a breakthrough is delayed, the world waits. Getting a molecule from discovery to patients, or a crop from lab to field, involves thousands of slow, manual, disconnected steps. AI has the potential to change this, compressing decades of R&D work into years. But that only happens when clean, structured scientific data and AI are built into how science gets done. Benchling is the AI platform for biotech R&D. Scientists use Benchling to design experiments, capture structured data, and run AI agents and models directly in their workflows. Over 200,000 scientists around the world trust Benchling to power their most important work, from academic labs to Sanofi, Moderna, and more than half of the world's top 50 biopharma. We’re building an AI scientist for our customers. We can’t do that if we haven’t built the muscle ourselves. AI fluency is the foundation we build on; it's core to how we work, and we're committed to helping every new hire integrate it into their day-to-day. As part of our interview process, you'll complete a brief AI-focused exercise or discussion so we can understand how you think about and use AI to drive impact in your role. Feel free to reference any tools, platforms, or workflows you use today. ROLE OVERVIEW As an Enterprise Security Engineer at Benchling you’ll be joining a team responsible for building a best-in-class security program from the ground up. Our focus is on providing value to the organization by emphasizing real world security and embracing automation and AI. We’re looking for engineers who are excited to apply their expertise to our mission of securing some of society's most sensitive data. RESPONSIBILITIES - Drive the organization's zero trust strategy end to end — treating identity, device health, network context, and application sensitivity as continuous inputs to access decisions rather than one-time gates - Design and maintain least-privilege access patterns, Just-in-Time (JIT) acce
Applying for this Enterprise Security Engineer role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Ashby
- Ashby is a fast modern ATS — most applications take under 3 minutes.
- The resume parser is strong; verify parsed experience dates and job titles.
- Custom screening questions are often scored algorithmically — answer completely.
- Location field affects geo-based screening; use your actual metro area.
ANONYMOUS · UNFILTERED
What do employees actually say about Benchling?
Real rants from real employees. Read before you apply.