Key skills
CybersecurityApplication SecurityZero TrustThreat IntelligenceIncident ResponseEnterprise Security SolutionsCloud SecurityCloudflareZscalerSASESSEZTNASWGCASBDLPSD-WANEmail SecurityTCP/IPOSI ModelBGPDNSCDNAnycastEdge ArchitecturesWAFDDoS MitigationAPI SecurityIdentity-centric SecurityPythonPowerShellTerraformJavaScriptCI/CD PipelinesHybrid CloudMulti-cloudAWSAzureGCPTypeScriptAIIAMJWTCachingPerformance OptimizationLoad BalancingCI/CDCommunicationCollaborationFirewall
About this role
Presidio is at the forefront of a global technology revolution, transforming industries through cutting-edge digital solutions and next-generation AI. They are seeking a Senior Cybersecurity Engineer to serve as a technical authority within the Cybersecurity Advanced Security Services organization, responsible for architecting and optimizing security solutions for enterprise customers.
Responsibilities:
- Lead high-profile delivery engagements across solutions such as Cloudflare with the opportunity to develop resilient architecture and guide clients through operational handoff
- Serve as a senior technical escalation point for complex security, performance, and availability challenges
- Lead enterprise migrations to Cloudflare and SSE/SASE platforms, including DNS cutovers and Zero Trust onboarding
- Define phased migration strategies with rollback planning and risk mitigation
- Produce and maintain reference architectures, technical documentation, and delivery artifacts
- Lead the design, deployment, and optimization of Cloudflare-based security and performance solutions across enterprise environments
- Execute complex security engagements, including: Web Application Firewall (WAF) and API security (API Shield, schema validation, JWT, mTLS), Layer 3/4 and Layer 7 DDoS mitigation, Zero Trust Network Access (Access, Gateway, WARP, Tunnels), Secure Web Gateway (SWG) and DNS-layer security, Global Load Balancing, Argo Smart Routing, and traffic steering
- Support the delivery of SSE and SASE architectures in collaboration with Advanced Security, Network, and Cyber Advisory teams
- Apply working knowledge of SSE components, including: Secure Web Gateway (SWG), Cloud Access Security Broker (CASB) concepts, Zero Trust Network Access (ZTNA), Data protection and inspection in transit
- Contribute to SASE architectures that integrate: Cloud-delivered security services, Identity-first access models, SD-WAN and branch connectivity (where applicable)
- Architect solutions leveraging global anycast networks, CDN caching hierarchies, and distributed edge compute
- Apply deep expertise in: TCP/IP and OSI layers 1–7, BGP, global routing, and traffic engineering, DNS, DNSSEC, and edge-based traffic control, HTTP/2, HTTP/3, QUIC, and TLS 1.2/1.3
- Design hybrid and multi-cloud origin architectures optimized for security, performance, and resiliency
- Design and deploy solutions across AWS, Azure, and GCP environments
- Automate security and network configurations using Terraform, APIs, and CI/CD pipelines
- Develop Cloudflare Workers using JavaScript/TypeScript for edge logic, security controls, and performance optimization
- Integrate Cloudflare services with SIEM, SOAR, IAM, and security operations platforms
- Collaborate with Cyber Engineering team members globally to ensure service consistency, share best practices, and deliver with excellence across regions
- Act as a multi-platform subject matter expert, advising clients on architecture, platform optimization, and operational best practices
- Troubleshoot and resolve complex issues during deployment and post-implementation across all supported platforms
- Create high-quality technical documentation, including solution designs, runbooks, and as-built records
- Mentor junior engineers to elevate team-wide technical capability
Requirements:
- Bachelor's degree in Cybersecurity, Computer Science, or related field, or equivalent work experience and/or military experience
- 5–8 years' experience in progressively senior cybersecurity roles, with demonstrable expertise in Application security and Zero Trust transformation projects
- 5-8 years' experience in senior customer-facing technical roles (Solutions Architect, Senior Engineer, Technical Consultant)
- 3 years demonstrated threat intelligence and incident response experience
- Demonstrated success delivering enterprise-scale security, networking, or cloud security solutions
- Experience supporting Fortune 500 or large enterprise customers strongly preferred
- Minimum 2 years hands-on experience with at least two of the following: Cloudflare and Zscaler
- Technical expertise in SASE, SSE, ZTNA, SWG, CASB, DLP, SD-WAN, and Email Security
- Proven track record delivering complex, multi-platform security projects in enterprise environments
- Strong communication skills, capable of engaging technical and executive stakeholders alike
- Multi-platform administration and optimization
- Hands on experience with one or more of the following: TCP/IP, OSI layers 1–7, BGP, DNS
- CDN, anycast, and edge architectures
- WAF, DDoS mitigation, API security
- Zero Trust and identity-centric security
- Python, PowerShell, Terraform, JavaScript, and CI/CD Pipelines
- Zero-Trust solution, CDN, and WAF deployment at scale
- Strong troubleshooting and root cause analysis skills in complex environments
- Ability to translate security strategy into actionable technical designs
- Vendor certifications such as Operate Cloudflare DNS, Cloudflare Zero Trust 301, Cloudflare Zero Trust 401, ZDTA, ZDTE, ZDXA
- Experience with hybrid/multi-cloud deployments (AWS, Azure, GCP)
- Familiarity with emerging threats and adversary tradecraft
- Advanced certifications highly valued