Lead Cyber Security Engineer
United States
Full Time
6 days ago
H1B Sponsor
Key skills
AWSCloudCyber SecurityTerraformCloudFormationIAMSaaSCI/CDLeadershipOWASPNetwork Security
About this role
Role Overview
- Own the technical execution of the cybersecurity program
- Provide leadership to a team of cybersecurity engineers, including performance coaching, workload prioritization, and professional development
- Design and operate security controls across AWS environments
- Implement and maintain IAM, encryption, secrets management, and network security
- Define and enforce secure API and application security standards
- Integrate security tooling into CI/CD pipelines (SAST, DAST, dependency scanning)
- Perform threat modeling, vulnerability assessments, and remediation
- Monitor security events and lead technical incident response
- Support SOC 2, PCI DSS, and related audit and compliance activities
- Conduct security reviews of vendors, partners, and third-party integrations
- Act as a security subject-matter expert and advisor to engineering teams
Requirements
- BA or BS Degree in Computer Science or related degree is preferred
- High School Diploma or GED required
- Minimum of 6–10 years of experience in cybersecurity, cloud infrastructure, or software engineering is required
- 2–4 years in a senior or lead security engineering role
- Hands-on experience securing cloud-native, SaaS or FinTech platforms
- Direct experience with AWS-based, API-heavy architectures
- Strong hands-on experience with: AWS IAM, VPC, KMS, Security Hub, GuardDuty, CloudTrail
- Secure API design (OAuth2, JWTs, mTLS)
- Infrastructure-as-Code (Terraform or CloudFormation)
- CI/CD security and DevSecOps practices
- Solid understanding of OWASP Top 10 and API Security Top 10
- Strong technical judgment and ownership mindset
- Ability to communicate security risks clearly to engineers and leadership
- Pragmatic, risk-based approach to security
- Comfortably operating independently and remaining deeply hands-on
- AWS Certified Security – Specialty certification is a plus
- CISSP, CCSP, CISM, or GIAC certifications are preferred
- Experience in regulated FinTech or financial services environments preferred
Tech Stack
- AWS
- Cloud
- Cyber Security
- Terraform
Benefits
- Competitive compensation and benefits
- Hybrid work schedule allows for three (3) core days in the office and two (2) remote workdays