Cybersecurity Engineering – Email & Cloud Security

About The Position

Requirements

• Significant experience in cybersecurity engineering (typically 8–10+ years), with hands‑on experience in security platforms, controls engineering, or security operations enablement.
• Demonstrated ownership of enterprise security tools such as EDR, identity protection, email security, CSPM, or SOAR platforms.
• Experience designing and operationalizing automated or autonomous security controls.
• Strong understanding of cloud security concepts (Azure preferred) and SaaS security models.
• Proven ability to lead cross‑team initiatives and influence outcomes without direct authority.
• Clear communicator who can translate technical risk into actionable engineering and operational decisions using a variety of communication styles.
• Strong sense of ownership, accountability, and operational rigor.
• Ability to manage competing priorities in a complex, regulated environment.
• Ability to manage competing priorities and deliver results in a dynamic environment while maintaining healthy work practices.
• Proven track record of developing and maintaining structured processes that support efficiency, scalability, and rapid business growth.
• Systems thinking is key: understanding end-to-end workflows and how decisions impact teams and users.
• Inclusive, collaborative working style that values diverse perspectives, accessibility, and clear communication.
• Commitment to continuous learning and improving security outcomes through engineering.

Nice To Haves

• Experience with the Microsoft Defender ecosystem, identity protection, and email security platforms.
• Familiarity with CSPM tools (e.g., Wiz) and cloud security posture management approaches.
• Experience partnering closely with SOC, IR, and platform engineering teams.
• Professional certifications (e.g., CISSP) are valued but not required.
• We welcome candidates with nontraditional educational paths.
• Candidates may qualify through a combination of education, training, lived experience, or self-directed learning.
• If you’re excited about the role but don’t meet every listed requirement, we encourage you to apply.

Responsibilities

• Serve as technical owner and subject‑matter expert for core security platforms including endpoint, identity, email, SaaS, and cloud security tooling.
• Lead design, rollout, and tuning of security controls across Microsoft Defender, identity protection, CSPM, and threat detection platforms.
• Ensure controls are engineered for reliability, operational supportability, accessibility, and measurable risk reduction.
• Drive evaluation and implementation of autonomous and semi‑autonomous response capabilities across security platforms (e.g., account actions, email remediation, IOC blocking).
• Partner with Security Operations to balance response speed, safety, and 24x7 support considerations, with attention to reducing alert fatigue and cognitive load.
• Lead technical direction for passwordless, identity protection, endpoint detection, and email security initiatives.
• Coordinate roadmap alignment and deep‑dive reviews with platform owners and vendors.
• Partner with cloud and platform engineering teams to integrate CSPM, workload protection, and SaaS security controls into production environments.
• Validate configurations against internal standards and external benchmarks (e.g., CIS), and document decisions for shared understanding.
• Act as a trusted technical advisor to Cybersecurity Engineering leadership, IT, and business stakeholders.
• Develop reference architectures for security and business enablement.
• Participate in change management, risk discussions, and control reviews to ensure security outcomes align with business priorities.
• Produce clear, accessible documentation, debriefs, and guidance to enable shared ownership across teams.
• Identify control gaps, operational pain points, and automation opportunities; drive improvements through engineering and process changes.
• Partner with Cybersecurity Platform Engineering to ensure telemetry, logging, and integrations meet detection and response needs.

Benefits

• Ares U.S. Core Benefits include Comprehensive Medical/Rx, Dental and Vision plans; 401(k) program with company match; Flexible Savings Accounts (FSA); Healthcare Savings Accounts (HSA) with company contribution; Basic and Voluntary Life Insurance; Long-Term Disability (LTD) and Short-Term Disability (STD) insurance; Employee Assistance Program (EAP), and Commuter Benefits plan for parking and transit.
• Ares offers a number of additional benefits including access to a world-class medical advisory team, a mental health app that includes coaching, therapy and psychiatry, a mindfulness and wellbeing app, financial wellness benefit that includes access to a financial advisor, new parent leave, reproductive and adoption assistance, emergency backup care, matching gift program, education sponsorship program, and much more.