Key skills
AIAWSGCPKubernetesDockerPostgresSaaSLeadership
About this role
Clari + Salesloft is building the next era of enterprise revenue through AI and real signals. The Manager, Security Engineering and Operations will lead a team of Security Analysts and Engineers to build and maintain a robust security infrastructure and oversee the vulnerability management lifecycle.
Responsibilities:
- Lead and Mentor: Manage a hybrid team of analysts and engineers, providing technical guidance, career development, and performance coaching
- Program Oversight: Oversee the vulnerability management lifecycle, ensuring that scanning, triaging, and remediation efforts are executed with precision
- Bridge the Gap: Ensure that Security Engineering is building the preventive/detective controls that Security Operations actually needs to be effective
- Strategic Automation: Drive the 'Automation and AI' mindset, moving the team away from manual triage toward automated detection, response, and remediation
- Incident & Infrastructure Leadership: Serve as the escalation point for incidents while simultaneously overseeing the design and deployment of our security stack (SIEM, CNAPP, SWG, EDR, Vulnerability Scanners)
- Cross-Functional Influence: Partner with Engineering and Infrastructure to integrate security into the Salesloft architecture, ensuring our production environment is 'secure by default.'
- Executive Visibility: Translate technical engineering projects and operational risks into business context for the CISO and executive leadership
- Security Operations: Assist with the team’s security operations work load as needed
Requirements:
- 8+ years of overall experience in Security Engineering or Operations
- Professional working knowledge of our stack (AWS, GCP, Kubernetes, Docker, Linux, Postgres) sufficient to architect solutions and conduct deep-dive architecture risk reviews
- Experience building or maturing a vulnerability management program across source code, open source dependencies, containers, and cloud infrastructure
- An innovative mindset dedicated to driving AI-centric improvements across the security stack
- Ability to analyze security metrics (MTTR, vulnerability burn-down rates, etc) to drive continuous improvement
- Proven ability to manage upward effectively, providing proactive updates and results rather than requiring constant management oversight
- Experience identifying Indicators of Compromise (IOCs) and turning them into actionable alerting for the Ops team
- Deep familiarity with SaaS environments and evidencing controls for SOC 2, ISO 27001, and GDPR
- Strong ability to communicate technical risk to non-technical stakeholders and influence cross-functional outcomes
- Ability to design and execute on projects via trackable work product and consistent methodology
- CISSP, AWS Security Specialty, or GCIH/GCIA are highly preferred
- Ability to mentor and lead the engineering team in conducting threat modeling and risk reviews of constantly evolving technical infrastructure