Security Engineering Manager

About The Position

Requirements

• Experience: Minimum 10+ years of experience building and managing security infrastructure, agile methods such as with at least 3-5 years in a formal leadership or management role.
• Technical Domain Expertise:
• Identity: SME-level knowledge of IAM/CIAM platforms (e.g., Okta, Azure AD) and identity governance.
• Endpoint & Email: Hands-on experience managing and integrating CrowdStrike and Mimecast in an enterprise environment.
• Cloud Security: In-depth technical knowledge of public cloud platforms (AWS, GCP, Azure), Linux internals, and securing containerized environments (Docker, Kubernetes).
• Leadership: A proven self-starter who can manage complex team dynamics, resolve technical impediments, and mentor senior-level talent.
• Communication: Exceptional written and verbal communication skills, with the ability to distill complex technical concepts into succinct documentation or executive presentations.
• Security Frameworks: Deep familiarity with FedRAMP, NIST 800-190, CSA, CIS Benchmarks, and the COBIT framework.
• Certifications: CISSP, CCSP, or TOGAF are highly preferred.
• Bachelor’s degree/University degree in Computer Science, Information Security, or equivalent professional experience preferred.

Nice To Haves

• Specific certifications in CrowdStrike, Mimecast, or Cloud Security (AWS/GCP/Azure) are a significant plus.

Responsibilities

• Team Leadership & Agile Execution: Lead, develop, and nurture a globally diverse team. Facilitate Agile ceremonies (Daily Standups, Sprint Planning, Backlog Grooming, and Retrospectives) to ensure continuous delivery and a predictable engineering velocity.
• AI Security Engineering: Drive the engineering of AI Security Management and LLM guardrails. Ensure secure adoption of Generative AI by implementing real-time inspection, data de-identification, and policy-driven controls for AI agents and model interactions.
• Identity Security (IAM & CIAM): Oversee the design and implementation of robust Identity and Access Management (IAM) and Customer Identity (CIAM) frameworks. Secure the user lifecycle with automated provisioning, MFA, and modern protocols (OIDC, SAML, OAuth).
• Modern Defense Integration: Manage and optimize our specialized security stack, ensuring seamless integration between CrowdStrike Falcon for endpoint protection and Mimecast for email security. Automate threat intelligence sharing and incident response workflows across these platforms.
• Technical Security Oversight: Conduct design and code reviews to ensure scalability, reliability, and security of distributed systems.
• Operational Excellence: Drive the automation of security controls through Infrastructure as Code (IaC) and Policy as Code (PaC) to reduce manual overhead and human error.
• Stakeholder Management: Effectively communicate security risks, project statuses, and strategic visions to the senior leadership team and cross-functional partners.
• Compliance & Governance: Ensure all engineered solutions meet rigorous standards including FedRAMP, NIST 800-53, and ISO 27001, providing the necessary automation for evidence collection.