Director, Cybersecurity Engineering
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
Director of Cybersecurity Engineering leading enterprise cybersecurity design and strategy at Convera. Operating in a highly regulated financial environment with a focus on advanced security practices.
Responsibilities:
- Lead and evolve the enterprise cybersecurity engineering program, aligning with business objectives, risk appetite, and regulatory requirements.
- Define and execute security architecture, engineering standards, and roadmaps to mature cybersecurity toolsets across infrastructure, cloud, applications, and data.
- Drive adoption of modern security practices including Zero Trust, secure-by-design, and automation including AI.
- Lead engineering teams responsible for deploying and maintaining cybersecurity engineering controls including but not limited to endpoint detection and response (EDR), security information event management (SIEM), cloud-native application protection platform (CNAPP), firewalls, and the suite of Vulnerability Detection and Management controls
- Lead engineering teams responsible for deploying and maintaining Identity & Access management controls including but not limited to directory services, privileged access management solutions, Multi-factor Authentication services, VPN, and Password Managers.
- Own global Cybersecurity Engineering and Identity Management strategy.
- Work across teams in Product and Tech to secure our Product Development Lifecycle
- Promote engineering excellence, automation, and DevSecOps best practices.
- Ensure availability, resilience, and scalability of security services globally.
- Work with Cybersecurity Program management to ensure controls are followed and pass regulatory audits, and support audits, regulatory exams, and remediation efforts.
- Partner closely with Risk, Audit, and Compliance teams to ensure adherence to financial regulatory requirements.
- Support incident response efforts as required 24x7x365 with a globally dispersed team and operations schedule.
- Work across our supply chain to ensure secure remote access for required Vendors and Contractors
- Act as a trusted advisor to senior leadership on cyber risk, identity strategy, and security investments.
Requirements:
- 10+ years of experience in security engineering and operations.
- Bachelor’s degree in Computer Science, Information Security, or related field (Master’s preferred).
- Relevant certifications such as CISSP, CISA, CEH, OSCP, or other industry recognized security certification(s) are preferred.
- Have experience with all the common cybersecurity and IAM solutions reference in the role requirements
- Have engineering leadership experience at large, complex, and regulated organizations (financial services preferred)
- Familiar working with industry-standard regulatory requirements (SOC2, PCI, ISO 27001, etc.) and technical standards (CIS, NIST, STIG, etc.)
- Proven experience managing global teams and security operations at scale.
- Deep knowledge and experience managing cybersecurity in the Cloud
- Experience deploying AI solutions automating cybersecurity operations.
- Experience implementing and leading a Zero Trust program preferred.
- Strategic thinker with the ability to translate vision into execution.
- Strong communication and executive presence.
- Proven ability to influence across technical and business stakeholders.
Benefits:
- Health insurance (medical, dental, vision)
- Retirement savings plan
- Paid time off, holidays, and parental leave
- Wellness programs and mental health resources
Similar Jobs
Director, Security Delivery – Physical Security
Director overseeing end-to-end post-sale security delivery operations for Genea. Leading teams for physical security and access control while driving growth and customer success.
Information System Security Officer – Cloud Data Platform
Information System Security Officer responsible for cybersecurity and compliance in Microsoft Azure cloud platform for federal client. Leading security activities and ensuring compliance with federal frameworks.
Security Compliance Policy and Guide Writer
Seeking Security Compliance Policy and Guide Writer to document cybersecurity controls for government client. A role ensuring compliance with federal security requirements and producing operational documentation.
Information Systems Security Officer – Part-time
Information Systems Security Officer managing IT security and protecting sensitive information for federal clients. Leading risk management and compliance efforts while collaborating with various stakeholders.
Security & Compliance Engineer
Security & Compliance Engineer for ARGO-HYTOS Group. Ensuring information security and compliance in a global IT environment.
Virtual Chief Information Security Officer – vCISO
Virtual Chief Information Security Officer leading information security and compliance initiatives at a healthcare platform. Ensuring secure technology systems and serving as a strategic advisor to leadership.
Senior Security Engineer
Senior Security Engineer focused on securing infrastructure through technology deployment and incident response for a digital asset protection at ARC-One Solutions.
Azure Solutions, Security Architect
Azure Solutions Architect leading security-focused Azure cloud solutions at Ascend Technologies. Designing scalable architectures, ensuring compliance, and mentoring teams in Agile environments.
Presales Security Expert – National Partners
Presales Security Expert supporting and enabling Fortinet's Canadian partners with solutions and technical improvements. Involving multi-team collaboration and direct partner engagement for effective results.
Senior Information Security Engineer
Senior Information Security Engineer responsible for implementing security solutions for enterprise environments. Collaborating with teams to enhance security architecture and manage stakeholder relationships.
Intern, Blue Team
Internship position in Cyber Security at It4us focusing on Blue Team operations and security analysis. Supporting various tasks involving Linux, development, and threat monitoring.
Security Engineer – Client Consulting
Threat Protection Security Engineer at Cyclotron deploying Microsoft Defender and Sentinel for enterprise organizations. Collaborating with security engineers to improve protection of Microsoft-based assets in cloud and on-premises environments.
Security Controls Assessor – OSCAL, Part Time
Security Controls Assessor conducting security compliance assessments and reports for U.S. Government and Commercial clients. Required experience with OSCAL and NIST guidelines.
Security Controls Assessor
Security Controls Assessor developing compliance frameworks for federal clients using NIST, RMF, and FISMA. Conducting assessments and creating security plans with a focus on continuous improvement.
Senior Security Engineer
Senior Security Engineer managing Microsoft 365 security stack for compliance and threat detection. Collaborating cross-functionally to enhance security controls and respond to incidents.
Mid-level Cybersecurity Engineer
Cybersecurity Engineer focusing on offensive security and penetration testing in a fully remote role. Requiring extensive experience in web applications and modern environments.
AI Engineer – Offensive Security
AI Engineer designing and building LLM-powered systems for offensive security work. Collaborating on agent architecture and integration of security tools in a remote setting.
Senior Strategic Account Manager, Data Center – Security
Strategic Account Manager for integrated security solutions at Johnson Controls. Focused on expanding relationships with contractors and driving revenue growth in security systems.
Network Security Architect, Cybersecurity Expert, Palo Alto certified
Senior Network Engineer specializing in Palo Alto security solutions for Kapres Technology. Working fully remote from Morocco with expertise in Fortinet and cybersecurity.
Security and Compliance Manager
Security and Compliance Manager overseeing compliance and assurance at Semaphore. Ensuring audit readiness and maintaining security processes within a remote-first software company.