Key skills
AWSAzureCloudGoogle Cloud PlatformITSMGCPGoogle CloudIAMMentoringCommunicationSales
About this role
Role Overview
- You will own the operational health of one or two engineering domains, lead cross-team initiatives that touch multiple control areas, and design the patterns the rest of the team executes against.
- You’re the engineer who can take a tool from “purchased” to “deployed, tuned, and instrumented,” the partner Cloud Ops and Identity call when they need a security pattern that actually works, and the senior who makes the Mid and Associate engineers better through pairing, code review, and clear standards.
- You’ll also be a senior voice in architecture and decision conversations alongside the Principal Engineer and the Manager.
- Lead initiatives that span Security, IT, Identity, Cloud Operations, and delivery teams — controlled rollouts, control set hardening, tool migrations. Land them without breaking production.
- Design new control patterns and reference architectures. Write the decision records, runbooks, and standards the team executes against and the auditors review.
- Lead the end-to-end deployment of new control sets (e.g., bringing a new EDR online, hardening a new cloud account, standing up new logging pipelines) — pilot, measure, expand, document.
- Pair with Mid and Associate engineers, run design reviews, give substantive code/config review, and grow the next tier. Quality of output from less senior engineers is part of your scope.
- Be the senior partner Cloud Ops, Identity, IT Service Management, GRC, and the SOC call when they need security engineering input. Solve problems with them, not at them.
- Produce control evidence and architecture documentation that holds up under audit and peer review. Keep your domains’ evidence map current.
Requirements
- 5+ years in security engineering, with hands-on responsibility for implementing controls across identity, network, cloud, endpoint, and/or monitoring.
- Strong fundamentals in IAM, network segmentation, encryption / key management, and centralized logging / monitoring.
- Experience with at least one major cloud platform (Azure, AWS, GCP) in a security-engineering capacity.
- Ability to produce clear architecture documentation, runbooks, and decision records that hold up under audit and peer review.
- Excellent written and verbal communication; able to explain tradeoffs across Security, IT, and delivery audiences in plain language.
- Comfortable mentoring less senior engineers and owning quality-of-output for one or more domains.
Tech Stack
- AWS
- Azure
- Cloud
- Google Cloud Platform
- ITSM
Benefits
- Medical, Dental, and Vision Insurance on the first day of employment
- Flexible Spending Account and Dependent Care Account
- 401k with Profit Sharing
- 9+ holidays and discretionary time off structure
- Parental Leave – coverage for both primary and secondary caregivers
- Tuition Assistance Program and CPA support program with cash incentive upon completion
- Discretionary incentive compensation based on firm, group and individual performance
- Incentive compensation related to origination of new client sales
- Top rated wellness program
- Flexible working environment including remote and hybrid options