Corporate Security Engineering Manager
About The Position
We're hiring a Corporate Security Engineering Manager to lead our Corporate Security Engineering team. This is a strategic role focused on the security posture of the Corporate IT environment. You'll report to our Director of Corporate IT & Security and work closely with Corporate IT, GRC, and application owners to ensure the secure deployment of corporate SaaS and installed applications. This role blends hands-on security engineering leadership with program-level ownership of configuration standards, vulnerability management oversight, SaaS security governance, and control automation. You will balance day-to-day team leadership with long-term architectural improvements that strengthen compliance posture and reduce operational friction. You’ll help ensure the corporate environment is securely configured by default, continuously monitored for drift, and aligned to CMMC 2.0 and NIST 800-53 requirements—while driving measurable improvements in tooling coverage, enforcement consistency, and audit defensibility. We’re looking for someone who is a steady, experienced security engineering leader who can build and run a high-performing continuous monitoring and configuration enforcement function—someone who brings structure to baseline management, drives automation to prevent drift, and ensures corporate systems and commercial infrastructure remain securely configured and audit-ready by default.
Requirements
- 6–10+ years of experience in security engineering, systems security, or enterprise security architecture
- 2+ years leading engineers or technical security teams
- Hands-on experience with endpoint security tooling (e.g., MDM platforms, browser enterprise management, secure web gateways such as Zscaler)
- Strong experience implementing and enforcing configuration baselines aligned to NIST 800-53, CMMC 2.0, DISA STIGs, or similar frameworks
- Experience overseeing or operating vulnerability management programs and defining remediation SLAs
- Demonstrated experience driving automation to prevent configuration drift and improve control coverage
- Strong understanding of SaaS security configuration, identity hardening, and enterprise access controls
- Experience partnering with Compliance teams to provide audit evidence and defensible documentation
- Proven ability to translate regulatory requirements into enforceable technical controls
- Sound judgment, strong technical credibility, and the ability to balance enforcement with enablement
Responsibilities
- Set direction
- Support the team
- Raise the bar
- Collaborate cross-functionally
- Shape how we work
- Act as the technical control owner for corporate security engineering functions.
- Ensure protection of the confidentiality, integrity, and availability of corporate systems and infrastructure through enforced configuration standards and control automation.
- Ensure security configurations and vulnerability remediation activities support regulatory and privacy commitments, including CMMC 2.0 and NIST 800-53.
- Ensure configuration data, vulnerability data, and remediation evidence are accurate, access-controlled, and retained in accordance with policy.
- Enforce secure-by-default deployment patterns and monitor for configuration drift across enterprise systems.
- Participate in risk evaluation and risk acceptance discussions, escalating unresolved technical risks to the Director of Corporate Security & IT.
- Ensure engineering staff follow established change management, documentation, and evidence preservation standards.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Manager
Education Level
No Education Listed
