Senior Manager of Cloud Network Engineering & Security leading enterprise - wide network evolution. Hands - on technical leadership focusing on cloud networking in AWS and Azure from Dallas headquarters.
About the role
- Senior Security Engineer securing cloud infrastructure, AI platforms, and applications for Medical Guardian. Leading security initiatives and incident response efforts in a hybrid work environment.
Responsibilities
- Design and implement secure architecture patterns across Azure and AWS cloud environments, as well as on-prem and hybrid infrastructures
- Lead security design reviews for infrastructure and application initiatives
- Engineer and optimize enterprise security controls across endpoint protection, threat detection and response, network security, email security, data protection, cloud access governance, and privileged access management
- Define and implement Zero Trust principles
- Harden Azure security posture including Entra ID governance, RBAC design, Conditional Access, PIM, Defender for Cloud, and Private Link architecture
- Implement and manage cloud posture management and cloud workload protection capabilities, including CSPM and CNAPP tooling
- Secure Kubernetes and containerized workloads
- Automate security guardrails using infrastructure as code such as Terraform, Bicep, and CloudFormation
- Implement enterprise data classification, DLP, encryption, and tenant-level controls across Microsoft 365 and Azure to prevent data exfiltration and unauthorized AI service access
- Design, implement, and enforce security controls for enterprise AI platforms including Azure OpenAI, Microsoft Copilot, Azure Machine Learning, and related AI services
- Secure AI model training data, inference endpoints, APIs, and service principals while enforcing governance controls to prevent exposure of sensitive or regulated data
- Develop guardrails to detect and prevent shadow AI adoption
- Evaluate third-party AI tools for security, privacy, and data residency risks
- Partner with Legal and Compliance teams to support responsible AI governance and regulatory requirements
- Partner with DevOps and Engineering teams to integrate automated application security testing, including static analysis, dynamic testing, and secret detection, into CI and CD pipelines prior to deployment
- Perform threat modeling and architecture risk assessments
- Serve as incident response lead for security events, coordinating internal response teams and activating third-party incident response partners as needed
- Lead containment, eradication, and recovery efforts during security incidents
- Enhance detection engineering use cases within SIEM and develop automated response playbooks
- Lead post-incident reviews and root cause analysis
- Lead and facilitate regular incident response tabletop exercises and coordinated response simulations to validate detection, escalation, and cross-functional readiness
- Oversee enterprise vulnerability management including scanning, risk-based prioritization, and remediation tracking
- Develop metrics and reporting for executive visibility
- Support regulatory requirements including HIPAA, HITRUST, SOC 2, and PCI-DSS as applicable
- Assist with audits and evidence collection
- Develop and maintain security policies and standards
- Perform third-party risk assessments
- Oversee MDR detection coverage, alert tuning, escalation workflows, service level adherence, and integration of logging and telemetry between internal systems and third-party providers
- Collaborate with the MSP on infrastructure security hardening, patching strategy, endpoint protection, and configuration management
- Drive continuous improvement through regular performance reviews and security posture assessments with external partners
- Provide technical guidance and drive security best practices across IT and Engineering initiatives
- Serve as escalation point for complex security issues
Requirements
- Must be legally authorized to work in the United States without the need for employer sponsorship now or in the future.
- 5 or more years of progressive experience in cybersecurity engineering
- Strong experience in Azure security architecture and hands-on implementation of controls including Entra ID, Conditional Access, PIM, Defender for Cloud, and Private Endpoints
- Deep understanding of network security, identity and access architecture, endpoint protection, and security monitoring and detection engineering principles
- Experience securing AI and ML platforms or cloud-native AI services
- Experience implementing enterprise data protection controls including DLP, Purview, labeling, encryption, and key management
- Experience with infrastructure as code and automation using Python, PowerShell, Terraform, Bicep, or similar tools
- Experience securing CI and CD pipelines and containerized environments
- Strong knowledge of security frameworks including NIST, CIS, and ISO 27001
- Experience managing third-party security operations relationships and holding vendors accountable to defined service levels.
- Experience in regulated industries such as healthcare (preferred)
- Experience implementing Zero Trust architectures (preferred)
- Security certifications such as CISSP or CCSP strongly preferred. Azure security certifications including AZ-500 highly valued. GIAC certifications such as GCED or GCIA and OSCP are considered a plus.
Benefits
- Health Care Plan (Medical, Dental & Vision)
- Paid Time Off (Vacation, Sick Time Off & Holidays)
- Company Paid Short Term Disability and Life Insurance
- Retirement Plan (401k) with Company Match
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
No Education Requirement
Tech skills
Location requirements
Light Maintenance Security Officer handling routine maintenance tasks and event setups for Ohio Support Services. Assisting building engineers and ensuring facility operations meet standards.
IT Intern at AVIXA supporting cybersecurity, networking, and user support for a non - profit. Engaging in hands - on experience while working closely with the IT team during summer.
Security Specialist evaluating and mitigating risks for PNC's cybersecurity posture. Collaborating on security policies and procedures to enhance compliance and safeguard information.
Security Officer ensuring safety and security of staff, patients, and visitors at Kent Hospital in Warwick, RI. Involves monitoring premises and enforcing policies and procedures.
Technical Specialist in Cybersecurity managing endpoint protection, email filtering, and workload security. Collaborating with SOC teams and presenting findings effectively.
Technical Lead in Cybersecurity focusing on threat monitoring and vulnerability assessments for the company. Collaborate with analysts and stakeholders to enhance cybersecurity measures.
Facility Security Officer managing Industrial Security at Curtiss - Wright. Overseeing physical, personnel, and information security while ensuring compliance with government regulations.
Cybersecurity Engineer protecting organizational systems and data at Legends Global. Designing secure infrastructures and automating security tooling in a dynamic tech environment.
Security Architect providing expertise to secure software development ecosystems including CI/CD pipelines and code repositories. Ensuring security principles are integrated throughout the Software Development Lifecycle (SSDL).