Sr. Security Lead

Cary Oil Co IncCary, NC
2d
Match Resume

About The Position

The Senior Security Lead is a hands-on security executive accountable for aligning the enterprise security vision with the CIO’s strategic technology roadmap. This role is responsible for defining, executing, and continuously maturing the organization’s security strategy, architecture, and day-to-day operations. The Senior Security Lead partners closely with the CIO to design and implement secure, scalable cloud architectures – primarily within AWS – while ensuring strong identity, data, and application protections across Microsoft 365, AWS and SaaS platforms. This leader balances strategic oversight with pragmatic execution, enabling secure digital transformation through control-based, risk informed security practices. Some responsibilities may include:

Requirements

  • 10+ years of experience in Information Security, with 5+ years leading security or cloud security teams.
  • Proven, hands-on experience designing and implementing AWS security patterns.
  • Demonstrated experience maintaining and securing a Microsoft 365 enterprise environment.
  • Experience managing AWS teams and delivering infrastructure aligned to strategic business goals.
  • Strong background aligning security design patterns with AWS and NIST-based frameworks.
  • Enterprise ownership of MFA programs and identity security.
  • Deep expertise in Microsoft 365, Entra, and Conditional Access configurations.
  • Proven delivery of secure cloud modernization and migration initiatives.
  • Strong knowledge of IdAM integrations using Entra, Okta, and Amazon Cognito.
  • Expertise in SSO, OAuth, OIDC, SAML, And privileged access management.
  • Executive presence with the ability to communicate risk, trade-offs, and outcomes to non-technical stakeholders.

Nice To Haves

  • Working knowledge of Postgres, Duo, Arctic Wolf, Microsoft 365, Entra, Square 9 platforms and integrations.
  • Familiarity with EDR/MDR operations, CSPM tools, and infrastructure as code (CloudFormation, Terraform) and data protection controls.
  • Experience implementing Zero Trust across identity, endpoints, networks, and data.
  • Experience with continuous control monitoring and evidence collection for audits and assessments.

Responsibilities

  • Cloud Security Architecture & Modernization
  • Secure AWS design, cloud governance, and modernization
  • Design and implement secure AWS architectures, including multi-account strategies and governance guardrails (e.g., AWS Control Tower) and scalable security patterns aligned to business requirements.
  • Define secure standards for cloud modernization, application migrations, and cloud-native development.
  • Lead design reviews, threat modeling, and secure SDLC practices for cloud environments.
  • Drive cloud security posture management (CSPM) and continuous control monitoring.
  • Security Governance, Risk & Compliance
  • Control frameworks, risk management, and audit readiness
  • Own enterprise security policies, standards, and control frameworks aligned to AWS Foundational Security Best Practices, CIS AWS Foundations, NIST 800-53, NIST800-171, and related frameworks.
  • Maintain control mappings, assessments, policy exceptions, and evidence collection.
  • Manage third-party risk, audit engagement, and remediation of findings to closure.
  • Communicate security risk and control posture in clear, business-relevant terms.
  • Identity, Access & Zero Trust Security
  • Enterprise identity protection and Zero Trust enforcement
  • Architect and implement Zero Trust-aligned identity and access management across AWS, Microsoft 365, and SaaS environments.
  • Govern enterprise-wide MFA for all user and privileged identities.
  • Maintain and harden Microsoft 365 and Entra security baselines, including Conditional Access and modern authentication patterns.
  • Lead IdAM integrations using Entra, Okta, and Amazon Cognito.
  • Enforce least privilege, role-based access controls, and continuous access validity.
  • Security Operations & Incident Response
  • Threat detection, response, and operational resilience
  • Oversee day-to-day enterprise security operations, including EDR/MDR partnerships, detection engineering, and incident response.
  • Maintain incident response playbooks, coordinate tabletop exercises, and drive post-incident reviews and continuous improvement.
  • Enterprise Data & Platform Security
  • Protection of data platforms and enterprise integrations
  • Manage security for enterprise data platforms, including SaaS and AWS-native integrations with Snowflake.
  • Ensure strong data protection, access controls, and monitoring across analytics and data warehouse environments.
  • Stakeholder & Executive Engagement
  • Executive partnership, communication, and security advocacy
  • Partner with technology, product, and business leaders to enable secure innovation.
  • Provide dashboards, briefings, and executive-level reporting to senior leadership and the board.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Mid Level

Education Level

No Education Listed

Job Search Resources

Similar Sr. Security Lead job opportunities

🔥 New JobSecurity Architect I (II)
PJM
PJM • Audubon, PA1d • Hybrid
Security Architect I (II)
PJM Interconnection
PJM Interconnection • Lower Providence Township, PA3d • Hybrid
🔥 New Job(Sr./Lead) Security Architect I (II)
Pjm Interconnection
Pjm Interconnection • Audubon, NJ3d • Hybrid
Security Lead
Carvana
Carvana • Chandler, AZ8d • $50,000 - $62,000 • Onsite
🔥 New JobSecurity Lead
John Knox Village of Florida
John Knox Village of Florida • Pompano Beach, FL7h • Onsite
Sr. Security Engineer
C.H. Robinson
C.H. Robinson • Eden Prairie, MN4d
Explore More Jobs

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service