Manager, Cloud Security & Engineering

The Manager, Cloud Security and Engineering is responsible for leading the secure design, governance, and operational oversight of cloud and hybrid environments that protect critical infrastructure and sensitive information assets. This role combines advanced technical expertise with people leadership, guiding a team of security engineers while driving architectural standards, security engineering practices, and risk reduction strategies across Azure, Google Cloud Platform, and hybrid ecosystems.

The Manager collaborates closely with infrastructure, compliance, legal, and executive stakeholders to ensure cloud solutions align with enterprise risk tolerance, regulatory obligations, and long term strategic objectives.

• Cloud Security Architecture and Governance
• Define and maintain secure cloud reference architectures, technical standards, and configuration baselines across Azure, GCP, and hybrid environments.
• Establish hardened deployment patterns aligned with CIS benchmarks, NIST SP 800 controls, CMMC requirements, and ISO 27001 principles.
• Oversee secure design reviews for new cloud initiatives, modernization efforts, and migration programs to ensure resilience, scalability, and defense in depth.

• Direct daily cloud security operations, including oversight of monitoring, configuration management, vulnerability remediation, and platform hardening.
• Act as the senior escalation point for complex security incidents and technical risk decisions.
• Ensure operational processes are measurable, repeatable, and aligned with defined service level objectives.

• Oversee enterprise identity architecture and access governance across Microsoft Entra , Google Cloud Identity, and integrated on premises systems.
• Implement and enforce least privilege access models, conditional access strategies, privileged identity management, and lifecycle governance controls to strengthen audit readiness and reduce unauthorized access risk

• Provide leadership over secure connectivity architecture, segmentation strategies, and cloud perimeter defense controls.
• Ensure proper implementation and tuning of Network Security Groups, Azure Firewall, Web Application Firewalls, and next generation firewall technologies to safeguard workloads and data flows across interconnected environments.

• Lead the development and enforcement of endpoint security standards across Windows, macOS, iOS, and Android platforms.
• Oversee device compliance enforcement, configuration baselines, and threat protection strategies using enterprise security tools to maintain consistent security posture across user and server assets.

• Design and implement enterprise data protection strategies including classification, labeling, encryption, and data loss prevention capabilities.
• Partner with governance and compliance teams to maintain adherence to contractual and regulatory frameworks including CMMC, DFARS, ITAR, HIPAA, and GDPR.
• Support internal and external assessments through evidence validation and control maturity documentation.

• Provide strategic oversight of SIEM and extended detection and response platforms to enhance visibility and reduce dwell time.
• Lead coordinated response efforts, root cause analysis, and continuous improvement initiatives following security events.
• Conduct recurring risk assessments and threat modeling exercises to proactively identify emerging vulnerabilities.

• Develop, formalize, and maintain comprehensive standard operating procedures, technical runbooks, incident response playbooks, and configuration standards.
• Ensure documentation reflects current architecture, regulatory obligations, and operational workflows.
• Drive adoption of documented processes to promote consistency, accountability, and audit defensibility across the security engineering function.

• Partner with business leaders and technology teams to align security initiatives with enterprise priorities.
• Provide executive level reporting on cloud security posture, risk metrics, and remediation progress.
• Evaluate emerging technologies and recommend solutions that enhance security effectiveness and operational efficiency.

• US Citizenship Required
• Must possess, and be able tomaintaina Top Secret (TS) Clearance

• Bachelor’s degree in Cybersecurity, Information Technology, or a related discipline.
• A minimum of five years of progressive experience in cybersecurity or cloud security engineering, including at least three years of direct hands on experience designing and securing Azure, Google Cloud Platform, or hybrid cloud architectures.
• At least two years of demonstrated team leadership experience, including technical oversight, workload prioritization, mentorship, and accountability for…