Information Security Director - Cloud Security Engineering

About The Position

Requirements

• 10+ years of experience in information security, cloud security, or related technical disciplines.
• 5+ years of experience leading technical security or engineering teams.
• Hands‑on experience designing, operating, or overseeing cloud security controls in enterprise AWS and/or Azure environments.
• Experience providing technical leadership and escalation support during complex security issues or incidents.
• Strong foundation in cloud platforms, security architecture, networks, operating systems, and applications.
• Proven ability to guide solutioning and problem‑solving.
• Strong executive communication skills and sound risk judgment.
• Bachelor’s degree or equivalent related experience.

Nice To Haves

• Experience with AWS GuardDuty, AWS Security Hub, Microsoft Defender for Cloud, and related native cloud security services.
• Experience securing or supporting AI/ML or GenAI workloads in production environments.
• Familiarity with regulated industries; financial services experience preferred.
• Knowledge of NIST, MITRE, or similar frameworks.
• Certifications such as CISSP, CISM, CISA, or CCSP.

Responsibilities

• Cloud Security Engineering & Platform Ownership
• Lead and manage a Cloud Security Engineering & Operations team of approximately 9 senior engineers.
• Own the design, operation, and continuous improvement of enterprise cloud security control platforms.
• Establish and maintain the security posture of AWS and Azure cloud environments (GCP experience a plus).
• Oversee cloud‑native security capabilities including CSPM, workload protection, identity controls, and native provider services.
• Ensure security controls are scalable, automated where appropriate, and aligned to enterprise risk tolerance.
• Escalation, Incident Support & Risk Leadership
• Serve as a Tier 3 escalation point for complex cloud security issues and incidents.
• Provide leadership and technical judgment during critical events.
• Partner with Incident Response and Detection teams to resolve issues and drive post‑incident learning.
• Translate technical findings into clear, risk‑based updates for management and executive audiences.
• Secure Cloud & AI Enablement
• Enable secure adoption of cloud‑native and AI/ML workloads in partnership with architecture and engineering teams.
• Lead security solutioning for emerging technologies, including defining guardrails and architectural patterns for AI use cases.
• Balance security outcomes, resiliency, and cost efficiency in consumption‑based cloud environments using a risk‑based approach.
• Leadership, Influence & Collaboration
• Act as a senior technical advisor to engineering, architecture, and platform stakeholders.
• Collaborate with peer security leaders across Network, Endpoint, Data, and Application Security.
• Provide constructive challenge and push back when needed to manage risk effectively.
• Develop and retain senior cloud security talent; champion accountability, learning, and technical excellence.
• Establish and track operational and risk metrics (KRIs/KPIs) to support leadership decision‑making.

Benefits

• Healthcare (medical, dental, vision)
• Basic term and optional term life insurance
• Short-term and long-term disability
• Pregnancy disability and parental leave
• 401(k) and employer-funded retirement plan
• Paid vacation (from two to five weeks depending on salary grade and tenure)
• Up to 11 paid holiday opportunities
• Adoption assistance
• Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by law