Manager, Security Engineering

About The Position

Requirements

• Bachelor’s degree in Cybersecurity, Engineering, or equivalent practical experience
• 5+ years of experience in security engineering, infrastructure security, or related technical roles
• Strong hands-on experience with endpoint security, network security, and system hardening
• Experience with enterprise security technologies such as WAF, secure web gateways/proxies, email security platforms, and encryption mechanisms.
• Experience collaborating with Infrastructure, Cloud, IT, and SOC teams in a production environment
• Familiarity with security and compliance frameworks such as SOC 2, ISO 27001, and NIST

Nice To Haves

• Experience implementing and operating enterprise security controls across multiple domains (endpoint, email, network, cloud)
• Experience integrating security into CI/CD pipelines and cloud environments
• Familiarity with data protection and DLP strategies across multiple channels (endpoint, web, email)
• Experience with vulnerability management and risk prioritization at scale
• Experience supporting or partnering with compliance and audit programs (SOC2, ISO, PCI, etc.)
• Strong ability to translate security requirements into practical engineering solutions

Responsibilities

• Platform Ownership & Control Maturity
• Endpoint Security (EDR)
• Email Security & Data Protection
• Web Proxy & DLP
• Web Application Firewall (WAF)
• Encryption & Key Management
• Vulnerability Management
• IAM Governance (UARs, RBAC support)
• Increasing maturity and effectiveness in all security controls
• Policy governance and tuning
• Reducing false positives and operational friction
• Transitioning controls from monitoring to enforcement
• Ensuring scalability and documentation
• DevSecOps & Cloud Security
• Embed security into CI/CD pipelines and cloud provisioning workflows
• Drive adoption of secure-by-default standards (CIS benchmarks, secure images)
• Evaluate and implement application security tooling (Snyk, SAST, IaC scanning)
• Partner with engineering teams to reduce risk early in development
• Vulnerability & Risk Reduction
• Own vulnerability management strategy and execution
• Prioritize remediation based on exploitability and business risk
• Improve automation and tracking (e.g., Qualys to Jira integration)
• Reduce repeat findings and systemic issues
• Security Metrics & Reporting
• Define and implement KPI framework across Security Engineering
• Establish dashboards to track risk reduction, platform health, and operational efficiency
• Provide reporting to leadership on program effectiveness
• Drive a metrics-based culture focused on outcomes
• Operational Excellence
• Improve service delivery for security-related requests and escalations
• Reduce manual processes through automation
• Establish and maintain runbooks and documentation
• Ensure continuity across all supported platforms
• Vendor & Tool Strategy
• Manage security tooling lifecycle (selection, implementation, renewal)
• Rationalize overlapping tools and reduce cost
• Lead adoption of strategic tools

Benefits

• Medical
• Dental
• Vision
• Paid Life/AD&D Insurance
• Voluntary Life Insurance
• Short & Long Term Disability
• Flexible Spending Accounts
• 401K
• Generous Vacation and Sick Program
• 10 Paid Holidays
• Education Assistance Program
• Business Casual Attire
• Generous Referral Program
• Employee Discounts and Rewards