Own the strategy and maturity roadmap for corporate security engineering, including baseline configuration standards, vulnerability management oversight, SaaS security governance, and automation priorities.
Lead and develop the Vulnerability Management Specialist and System Security Engineers through coaching, structured feedback, and clear technical ownership boundaries.
Strengthen configuration enforcement, reduce security drift, and improve automation across endpoints, SaaS platforms, browsers, identity systems, and enterprise tooling.
Partner with Security Operations, IT, Engineering, and Compliance to ensure corporate systems and commercial infrastructure are deployed securely and remain compliant with regulatory requirements.
Establish structured workflows for baseline reviews, configuration drift monitoring, vulnerability remediation oversight, and POA&M tracking.

6–10+ years of experience in security engineering, systems security, or enterprise security architecture
2+ years leading engineers or technical security teams
Hands-on experience with endpoint security tooling (e.g., MDM platforms, browser enterprise management, secure web gateways such as Zscaler)
Strong experience implementing and enforcing configuration baselines aligned to NIST 800-53, CMMC 2.0, DISA STIGs, or similar frameworks
Experience overseeing or operating vulnerability management programs and defining remediation SLAs
Demonstrated experience driving automation to prevent configuration drift and improve control coverage
Strong understanding of SaaS security configuration, identity hardening, and enterprise access controls
Experience partnering with Compliance teams to provide audit evidence and defensible documentation
Proven ability to translate regulatory requirements into enforceable technical controls
Sound judgment, strong technical credibility, and the ability to balance enforcement with enablement.

Corporate Security Engineering Manager

Key skills