Sr Cloud Security Engineer

About The Position

Requirements

• 5–7+ years of senior‑level experience implementing and administering cloud and identity platforms in an enterprise environment
• Demonstrated experience acting as a technical lead or project owner, not just an individual contributor
• Strong hands‑on expertise with: Okta, Azure / Entra ID, and Microsoft 365 (required)
• Deep understanding of identity, access, and device trust concepts, including: Okta Identity Engine (OIE) and Classic, SSO, MFA, Lifecycle Management (OIM/OIG), SAML, OIDC, OAuth, API Access Management
• Strong experience with Data Loss Prevention (DLP), including: Information protection and data classification, Endpoint, network, and cloud DLP, Insider risk / threat management
• Ability to communicate complex security concepts clearly to both technical and non‑technical audiences
• Comfortable working independently, making decisions, and owning results

Nice To Haves

• Experience with security and IT frameworks such as NIST, ISO 27001, COBIT, or ITIL
• Knowledge of SOX, PCI, and data privacy regulations
• Familiarity with modern attack techniques, including AI‑driven threats
• Experience mentoring junior engineers or influencing security practices across teams
• Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or equivalent practical experience preferred
• Relevant certifications such as CISSP, CCSP, or CompTIA SecurityX are a plus

Responsibilities

• Own and secure SiteOne’s hybrid cloud and identity environments using Zero Trust, least‑privilege, and defense‑in‑depth principles
• Serve as the senior subject matter expert and technical owner for: Okta (OIE & Classic), Azure / Entra ID, Microsoft 365 & SharePoint, CASB, AWS, Prisma / Cortex Cloud, DLP platforms
• Lead identity and access strategy including SSO, MFA, lifecycle management, and API access
• Identify opportunities for automation, simplification, and control improvement, and drive those enhancements to completion
• Design, implement, and evolve scalable security architectures aligned to business needs
• Act as project owner for security initiatives — defining scope, driving execution, coordinating stakeholders, and delivering results
• Partner with Infrastructure, Architecture, and Operations teams to solve complex security challenges
• Provide senior‑level guidance and technical leadership during design reviews and major initiatives
• Serve as the final escalation point for complex identity, access, and cloud security issues
• Lead security investigations and incident response efforts when required
• Own access‑related troubleshooting across platforms, coordinating with technical teams and business owners
• Ensure operational security controls remain effective, documented, and well‑maintained
• Contribute to the security of AI‑enabled and agentic systems using modern threat‑modeling and defense‑in‑depth approaches
• Evaluate emerging technologies and identify security risks, mitigations, and governance needs
• Expand into and own additional security domains as priorities evolve (e.g., data protection, endpoint, SaaS security, governance)
• Take accountability for security outcomes, not just individual tasks

Benefits

• Medical, Dental and Vision plans
• Paid Time Off, Paid Holidays
• DailyPay available!
• 401k with company match
• Tuition Reimbursement
• Lucrative Associate Referral Program
• Company Apparel and Work Boot Vouchers
• Opportunity for Advancement
• Paid Training and Business Certifications Available
• Free Counseling Services/Employee Assistance Program
• Life Insurance and Short- and Long-Term Disability Insurance
• Product Discounts