Lead Security Engineer (Hybrid)

About The Position

Requirements

• 7+ years of experience in security engineering, architecture, or infrastructure security roles.
• Proven expertise in: - Next-Generation Firewalls (NGFW) – Palo Alto preferred - Intrusion Prevention Systems (IPS) – Cisco, Palo Alto - Denial of Service (DoS) mitigation – Radware, Cloudflare, Akamai - Web Application Firewalls (WAF) – Cloudflare, AWS Cloudfront - Network Access Control (NAC) – Cisco
• Strong experience authoring technical documentation and visual materials to communicate architecture, operational models, and ROI.
• Exceptional project and time management skills; able to lead multiple initiatives while maintaining strategic focus.
• Clear, confident communicator with the ability to influence, make decisions under pressure, and prioritize effectively.
• Participation in off-hours support rotation is expected.
• Candidates must be available for weekend work when risk-based changes require it.
• Self-driven and curious, with the ability to operate independently and identify the right tools and approaches to solve complex problems.

Nice To Haves

• Python
• PowerShell
• Terraform
• SD-WAN
• Cisco Umbrella
• Cisco Secure Connect
• Cisco SASE
• Datadog
• NetFlow
• Confluence
• BMC Remedy
• Broadcom Spectrum
• SSL/TLS Certificate Management
• Governance Tools – Tufin SecureChange and SecureTrack
• Packet Brokers – Gigamon

Responsibilities

• Lead the design, implementation, and lifecycle management of enterprise security solutions, including NGFW, WAF, IPS, and DoS mitigation platforms.
• Architect scalable and resilient security infrastructure aligned with business and regulatory requirements.
• Oversee onboarding of critical applications to security platforms, ensuring alignment with threat models and risk posture.
• Define and evolve standards, policies, and procedures for secure configuration, change management, and incident response.
• Collaborate with cross-functional teams to assess risk, recommend controls, and integrate security into infrastructure and application design.
• Present technical strategies and risk assessments to senior leadership and stakeholders.
• Drive continuous improvement through automation, innovation, and adoption of emerging technologies.
• Lead response efforts for high-impact security incidents and coordinate root cause analysis and remediation.
• Represent the team in internal and external audits, ensuring evidence and documentation are complete and accurate.
• Mentor junior engineers and contribute to team development and knowledge sharing.

Benefits

• Please visit www.broadridgebenefits.com for information on our comprehensive benefit offerings for this role.
• All Colorado employees receive paid sick leave in compliance with the Colorado Healthy Families and Workplaces Act and other legally required benefits, as applicable.