ZipRecruiter

Log In

1

Shadow Security Jobs (NOW HIRING)

Snap Finance

Sr. Security Engineer

West Valley City, UT · On-site

$110K - $150K/yr

Stay current on AI security risks - prompt injection, model abuse, shadow AI - and turn awareness into practical controls Own the Security Program Within Your Domain * Maintain the security program ...

Medical Guardian

Senior Security Engineer

Philadelphia, PA · Remote

$115K - $158K/yr

Develop guardrails to detect and prevent shadow AI adoption * Evaluate third-party AI tools for security, privacy, and data residency risks * Partner with Legal and Compliance teams to support ...

Compunnel

Senior Security AI Engineer

Kansas City, MO · On-site

$111K - $153K/yr

Implement and maintain CAASM/EASM tooling to identify shadow IT, unknown assets, and external ... Drive continuous improvement of security processes, tooling, and automation. Produce architecture ...

AppOmni

Senior Security Engineer

$117K - $160K/yr

Our platform gives security teams clear visibility into posture, access, third-party connections, AI-related activity, and with built-in discovery to identify unsanctioned SaaS and Shadow AI tools.

Medical Guardian

Senior Security Engineer

Philadelphia, PA · On-site

$115K - $158K/yr

Develop guardrails to detect and prevent shadow AI adoption * Evaluate third-party AI tools for security, privacy, and data residency risks * Partner with Legal and Compliance teams to support ...

Medical Guardian

Senior Security Engineer

Philadelphia, PA · On-site

$115K - $158K/yr

Develop guardrails to detect and prevent shadow AI adoption * Evaluate third-party AI tools for security, privacy, and data residency risks * Partner with Legal and Compliance teams to support ...

Imperial PFS

Senior Security AI Engineer

Kansas City, MO · On-site

$111K - $153K/yr

... shadow IT, unknown assets, and external exposures. • Partner with infrastructure teams to ensure timely patching and configuration compliance. • Mentor junior engineers and guide cross-functional ...

CoreWeave

Staff AI Security Engineer

New York, NY · On-site

$188K - $275K/yr

You will also partner closely with enterprise security and IT teams to manage AI-adjacent risks across the corporate environment, including shadow AI, data exfiltration through AI tooling, and SaaS ...

CoreWeave

Staff AI Security Engineer

Livingston, NJ · On-site

$188K - $275K/yr

You will also partner closely with enterprise security and IT teams to manage AI-adjacent risks across the corporate environment, including shadow AI, data exfiltration through AI tooling, and SaaS ...

Ripple

Senior Staff Security Engineer, AI

San Francisco, CA · On-site

$134K - $185K/yr

As a Senior Staff Security Engineer focused on AI Security, you will be Ripple's deepest technical ... Build and scale Ripple's Shadow AI detection capability, surfacing unsanctioned AI usage, driving ...

Noblesoft Technologies

Cyber Security PM

Atlanta, GA · On-site

$106K - $144K/yr

Contribute to shadow IT reduction by identifying risks and implementing mitigation strategies. Drive cross-team collaboration on security-related tasks, including managing tickets in ServiceNow (SNOW ...

Obsidian Security

OR · On-site

About Obsidian Security Obsidian helps companies figure out what's happening in their SaaS ... Right now, a big focus is shadow AI - enterprises want to know when employees are pasting sensitive ...

Imperial PFS

Senior Security AI Engineer

Kansas City, MO · Hybrid

$111K - $153K/yr

We are seeking a Senior Security AI Engineer to strengthen our cybersecurity posture across cloud ... Implement and maintain CAASM/EASM tooling to identify shadow IT, unknown assets, and external ...

next page

Showing results 1-20

People also search for

All JobsShadow Security Jobs

Shadow Security information

See salary details

$28.5K

$44K

$59K

How much do shadow security jobs pay per year?

As of Jun 5, 2026, the average yearly pay for shadow security in the United States is $43,963.00, according to ZipRecruiter salary data. Most workers in this role earn between $38,000.00 and $47,500.00 per year, depending on experience, location, and employer.

What is the difference between Shadow Security vs Security Analyst?

AspectShadow SecuritySecurity Analyst
CertificationsTypically no formal certifications required, but knowledge of security tools helpsOften requires certifications like CompTIA Security+, CISSP, or CEH
Work EnvironmentPrimarily in cybersecurity teams, monitoring systems, and assisting security operationsAnalyzes security data, investigates incidents, and develops security strategies
Employer & Industry UsageUsed within cybersecurity teams, often as a role assisting or shadowing security analystsCommonly employed across industries to protect digital assets and infrastructure

Shadow Security typically involves assisting or observing security professionals without formal responsibilities, while Security Analysts actively monitor, analyze, and respond to security threats. Both roles are integral to cybersecurity teams, but Security Analysts have more defined responsibilities and certifications.

What are some typical challenges faced by professionals working in Shadow Security roles, and how can they be addressed?

Professionals in Shadow Security roles often encounter challenges such as identifying and managing unauthorized IT assets or applications that operate outside standard security protocols. This can make it difficult to maintain visibility and enforce consistent security policies across the organization. Addressing these challenges involves proactive communication with other departments, implementing robust monitoring tools, and fostering a culture of security awareness. Collaboration with IT and compliance teams is essential to ensure that shadow IT risks are identified early and mitigated effectively.

What are the key skills and qualifications needed to thrive as a Security Guard, and why are they important?

To thrive as a Security Guard, you need a strong understanding of safety protocols, situational awareness, and often a high school diploma or equivalent. Familiarity with surveillance systems, access control software, and sometimes state-required security certifications is typical. Strong communication, problem-solving, and the ability to remain calm under pressure are crucial soft skills. These skills and qualifications are vital for protecting people and property, responding effectively to incidents, and maintaining a safe environment.

What are Shadow Security professionals?

Shadow Security professionals are experts who deal with unauthorized or unapproved security measures, tools, or processes within an organization. They identify hidden or unofficial security practices—often referred to as 'shadow security'—which can arise when employees implement their own solutions outside the official IT or security protocols. These professionals work to ensure that all security practices are standardized, compliant, and do not introduce vulnerabilities. Their role is crucial in minimizing risks associated with unvetted security tools and maintaining robust cybersecurity across the organization.
More about Shadow Security jobs
What states have the most Shadow Security jobs? States with the most job openings for Shadow Security jobs include:
What job categories do people searching Shadow Security jobs look for? The top searched job categories for Shadow Security jobs are:
Shadow Security jobs near you
Sr. Security Engineer

Sr. Security Engineer

Snap Finance

West Valley City, UT • On-site

$110K - $150K/yr

Full-time

Medical, Dental, Vision, Life, Retirement, PTO

Posted 19 days ago

Job description

Company Overview:
At Snap Finance, we believe everyone deserves access to the things they need, regardless of credit history. Since 2012, we've used data, machine learning, and a more human approach to create flexible financing solutions that help people move forward. We're proud of our inclusive, supportive culture, built on empowering our customers, partners, and team members alike. When our people thrive, so does our innovation.
If you're looking to make an impact and grow with a team that values you, come join us!
Job Description
We're looking for a Senior Security Engineer to serve as a key technical leader on our Infrastructure Security Operations team. This role owns the day-to-day security of our multi-region AWS environment, including security tooling, incident response, vulnerability management, and automation.
You'll write code to eliminate manual work, leverage AI-native tools to improve efficiency, and help raise the technical bar across a growing team. In addition to operational ownership, you'll support security metrics, compliance, and executive/board reporting.
This role requires occasional after-hours support for critical security incidents and reports directly to the CISO.
How you'll make an impact:
Secure and Operate the Cloud Environment
  • Own cloud security posture across multi-region AWS environments - continuously assess, harden, and improve
  • Operate the full security toolset: CSPM, SIEM, vulnerability management, network security, ZTNA, DLP, EDR, and endpoint management
  • Drive the vulnerability management lifecycle end to end: scan cadence, prioritization, remediation SLAs, and reporting
  • Manage identity and access infrastructure in collaboration with IT, spanning MFA, IAM, IGA, privileged access, and credential management
  • Lead the buildout of a Privileged Access Management (PAM) program
  • Support ongoing cloud migration security workstreams
  • Monitor threat intelligence and external attack surface signals; translate findings into prioritized action

Lead and Respond to Incidents
  • Serve as a primary responder for security incidents - triage, contain, eradicate, and recover with urgency and discipline
  • Own incident response process maturity: playbook development, evidence chain of custody, forensic readiness, and post-incident reviews
  • Be available for occasional after-hours response when critical incidents arise

Build, Automate, and Elevate the Team
  • Set the coding and AI standard for the InfraSecOps team - write tools, automate workflows, and actively mentor peers in modern security engineering practices
  • Build and maintain automation for alert triage, compliance evidence collection, asset inventory, and security metrics
  • Develop API integrations between security tools to eliminate manual handoffs and improve data fidelity
  • Contribute to security-as-code practices: IaC security reviews, CI/CD pipeline hardening, and software supply chain controls
  • Champion AI-native tooling across the team; evaluate and implement AI-assisted detection, threat hunting, and response capabilities
  • Build and contribute to Agentic AI frameworks within the security program
  • Stay current on AI security risks - prompt injection, model abuse, shadow AI - and turn awareness into practical controls

Own the Security Program Within Your Domain
  • Maintain the security program roadmap and key results for your domain, including compliance attestation timelines and remediation SLA adherence
  • Track and mature the security tool portfolio: monitor adoption, measure effectiveness, and drive continuous improvement
  • Maintain risk registers and GRC platforms; ensure findings are triaged and resolved within SLA
  • Coordinate audit evidence collection for SOC 2 Type II, PCI DSS 4.0, and CyberEssentials+
  • Contribute to executive and board-level security reporting - translate operational data into clear program narratives
  • Drive cross-functional follow-through with Engineering, IT, Data, and PMO on security workstreams

What you'll need to succeed:
• 5+ years in security engineering, security operations, or a combined SecOps/program role
• Must be authorized to work in the United States and be US-based
• Hands-on experience operating cloud security tooling in AWS environments
• Proficiency in at least one scripting or programming language - Python strongly preferred
• Experience building dashboards, writing queries, and tuning alerts in a SIEM platform
• Strong working knowledge of vulnerability management and incident response lifecycles
• Experience supporting compliance frameworks: SOC 2, PCI DSS, or equivalent
• Demonstrated use of AI and ML tooling in a professional security context
• Track record of mentoring or upskilling peers in technical disciplines
• Strong written communication skills - equally effective writing for engineers and executives
• Comfortable with occasional after-hours availability for critical security incidents
What would make you stand out:
• Experience with GRC platforms: compliance automation, risk management, or audit evidence tooling
• Exposure to IGA and PAM concepts and tooling
• Security certifications: CISSP, CISM, AWS Security Specialty, or GIAC (GCIH, GCED, or similar)
• Background in fintech, lending, or regulated financial services
• Contributions to security tooling, open-source projects, or internal platform engineering
• Experience with SOAR platforms or automated response workflows
Why Join Us:
  • Generous paid time off
  • Competitive medical, dental & vision coverage
  • 401K with company match for US
  • Company-paid life insurance
  • Company-paid short-term and long-term disability
  • Access to mental health and wellness resources
  • Company-paid volunteer time to do good in your community
  • Legal coverage and other supplemental options
  • A value-based culture where growth opportunities are endless

More:
Snap values diversity and all qualified applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran or disability status. Learn more by visiting our website at www.snapfinance.com.
California Residents, please review our California Consumer Privacy Act Notice at https://snapfinance.com/ccpa-notice

Apply