Sr Security Engineer

About The Position

Requirements

• Bachelor's degree in Computer Science, Cybersecurity, Engineering, or related field required; Master's degree preferred.
• 5+ years of cloud security engineering experience in mid-to-large enterprise environments (1,000+ employees).
• 5+ years securing public cloud platforms (AWS and/or Azure; Oracle Cloud Infrastructure a plus).
• 3+ years implementing DevSecOps practices and SDLC security, including SAST/DAST and vulnerability remediation.
• Demonstrated experience securing major SaaS platforms (Microsoft 365, Salesforce, Box) using CASB/CSPM or similar technologies.
• Advanced knowledge of cloud network security fundamentals including VNET/VPC architecture, WAF, and cloud firewalls/FWaaS.
• Experience with SIEM and logging platforms such as Microsoft Sentinel, Splunk, or Exabeam.
• Proficiency with vulnerability management tools including Rapid7, Qualys, or Nessus.
• Deep understanding of cloud and application threats, secure coding practices, and OWASP Top 10.
• Ability to assess security maturity and develop improvement roadmaps using CSA models, SAMM, or similar frameworks.
• Expertise in creating architecture and design documentation using tools like Visio or Lucidchart.
• Strong written and verbal communication skills with the ability to articulate risk and technical decisions to executive leadership.
• Working knowledge of security frameworks and standards including NIST, ISO 27001, CIS Controls, and Cloud Security Alliance.

Nice To Haves

• One or more of the following: CISSP, CCSP, CCSK
• Azure Security Engineer Associate
• AWS Certified Security - Specialty
• GIAC cloud security certifications.
• Equivalent professional certifications.
• Collaborative Leader: You work effectively with cross-functional teams including senior engineers, IT teams, and business stakeholders to achieve shared security objectives.
• Clear Communicator: You translate complex technical concepts into clear language for non-technical audiences and maintain a strong commitment to customer service.
• Detail-Oriented: You bring meticulous attention to both technical and non-technical components necessary for successful project execution.
• Adaptable: You thrive in fast-paced environments and effectively balance multiple competing priorities without compromising quality.
• Self-Directed: You work independently with minimal supervision, exercise sound judgment in complex situations, and maintain a positive, self-motivated approach.
• Continuous Learner: You stay current with evolving industry trends, emerging threats, and pursue relevant certifications and training to maintain technical excellence.

Responsibilities

• Cloud Security Strategy & Technical Leadership Drive cloud security strategy, roadmap development, and execution across Lennar's cloud environments.
• Lead technical planning, design decisions, and implementation of enterprise-grade cloud security controls.
• Serve as the technical authority for cloud security architecture and best practices.
• AI & GenAI Security Engineering Design and implement security controls that enable safe adoption of AI services and AI-assisted workflows, including cloud-hosted AI platforms and SaaS copilots.
• Establish comprehensive guardrails for AI usage covering data protection, access control, logging/monitoring, and approved service standards.
• Assess and mitigate emerging AI risks including prompt injection, data leakage, model exposure, insecure plugins/connectors, and supply chain vulnerabilities in AI pipelines.
• Collaborate with Legal, Privacy, and GRC teams to support AI governance requirements and maintain control evidence.
• Cloud Security Platform Management Build and manage security solutions across IaaS, PaaS, and SaaS environments, including: CSPM (Cloud Security Posture Management) CASB (Cloud Access Security Broker) CNAPP (Cloud-Native Application Protection Platform) SSE (Security Service Edge)
• Ensure consistent deployment, configuration, and monitoring of security tooling across all cloud environments.
• DevSecOps & Application Security Partner with DevOps and engineering teams to embed security into CI/CD pipelines and cloud-native platforms.
• Implement and support DevSecOps tooling and practices including SAST/DAST.
• Drive remediation of security findings in collaboration with development teams.
• Governance, Risk & Compliance Align cloud security controls with legal, regulatory, and compliance requirements.
• Develop and enforce cloud security standards, policies, and best practices.
• Support internal and external audit requests and lead remediation efforts.
• Operational Support & Incident Response Participate in security incident response activities, including investigation and post-incident analysis.
• Provide guidance to enhance detection, logging, and response capabilities for cloud environments.
• Mentorship & Knowledge Sharing Mentor junior engineers and provide technical guidance across security engineering and operations teams.
• Foster a culture of security awareness and continuous improvement.

Benefits

• robust health insurance plans, including Medical, Dental, and Vision coverage
• 401(k) Retirement Plan, complete with a $1 for $1 Company Match up to 5%
• Paid Parental Leave
• Associate Assistance Plan
• Education Assistance Program
• up to $30,000 in Adoption Assistance
• up to three weeks of vacation annually, alongside generous Holiday, Sick Leave, and Personal Day policies
• New Hire Referral Bonus Program
• significant Home Purchase Discounts
• Everyone’s Included Day