Vice President, Cloud Security Engineering & Operations

Our Company

Oaktree is a leader among global investment managers specializing in alternative investments, with about $200 billion in assets under management. The firm emphasizes an opportunistic, value-oriented and risk-controlled approach to investments in credit, private equity, real assets and listed equities. The firm has over 1,200 employees and offices in 24 cities worldwide.

We are committed to cultivating an environment that is collaborative, curious, inclusive and honors diversity of thought. Providing training and career development opportunities and emphasizing strong support for our local communities through philanthropic initiatives are essential to our culture.

For more information, visit:

Role Summary

As the Vice President of Cloud Security Engineering & Operations, you will provide strategic and technical leadership to secure the enterprise's cloud environments-primarily Azure-and lead a team responsible for the design, implementation, monitoring, and continuous improvement of cloud-native security capabilities. You will act as the key interface between cloud platform teams, enterprise architecture, security operations, and compliance, ensuring alignment to risk management, regulatory requirements, and business enablement.

You will help shape and enforce a secure cloud operating model in a fast-paced, regulated investment environment, driving visibility, automation, and proactive defense across multi-cloud workloads.

Responsibilities

Strategic Cloud Security Leadership

• Define and lead the strategic direction of cloud security engineering and operations, ensuring alignment with enterprise risk posture, regulatory expectations, and business transformation objectives.
• Serve as the executive point of accountability for securing cloud-native platforms, including IaaS, PaaS, SaaS, containers, and serverless computing.
• Oversee the selection, implementation, and lifecycle of cloud security tools and services (e.g., Microsoft Defender suite, Azure Policy, SIEM/SOAR, CSPM, CIEM, encryption, PAM, etc.).

Security Architecture & Engineering Oversight

• Collaborate with enterprise architects and infrastructure leads to embed security by design across cloud workload architecture and identity models (Zero Trust, least privilege, role-based access).
• Govern secure configuration baselines, landing zone hardening, and automated policy enforcement through IaC and CI/CD integration.
• Lead enterprise decisions on identity federation, multi-tenant segmentation, cloud-native logging, vulnerability exposure, and encryption key lifecycle.

Cloud Security Operations & Incident Readiness

• Direct posture management, threat detection, incident readiness, and playbook integration across cloud platforms with SecOps, IR, and threat intelligence teams.
• Oversee metrics-driven continuous monitoring of misconfigurations, attack surface, drift, and identity risk using Azure-native tools and third-party platforms.
• Enable maturity of SOC and detection engineering through automation, advanced analytics (KQL, ML-based threat models), and attack simulation.

Governance, Risk & Compliance

• Ensure compliance with global regulatory frameworks (e.g., SEC, SOX, GDPR, NYDFS, NIST, ISO 27001) through control design and attestation support.
• Partner with legal, risk, and audit to manage evidence collection, remediation planning, policy exceptions, and external assessments.
• Drive enterprise cloud security risk management practices, including risk register ownership, cloud-specific control assessments, and program-level reporting to senior stakeholders.

Cross-Functional Leadership & Business Engagement

• Lead and mentor high-performing security engineers and technical SMEs; foster a learning and innovation culture.
• Build strong partnerships with Cloud, DevOps, Infrastructure & Operations, and GRC teams to ensure integrated cloud lifecycle protection.
• Educate business and technology leaders on cloud risks, responsibilities, and trade-offs, influencing risk-informed decision-making.

Budgeting and Cost Management

• Lead the development, forecasting, and oversight of the annual cloud budget to ensure alignment with organizational strategy and financial objectives.
• Monitor expenditures, drive cost efficiency, and implement optimization strategies. Leverage vendor negotiations and process improvements to reduce spend without compromising service quality or performance.

Qualifications

• 10+ years in information security, including 5+ years of cloud security leadership experience (preferably in Azure).
• Proven success building and leading cloud security engineering or operations programs at scale.
• In-depth expertise with Microsoft Azure security services, architecture, and policy enforcement. Experience with AWS/Google Cloud Platform is a plus.
• Demonstrated understanding of Zero Trust principles, identity security (CIEM/PIM), network segmentation, encryption, DevSecOps, and cloud-native detection & response.
• Deep familiarity with regulatory and control frameworks such as NIST 800-53, ISO 27001, COBIT, SEC OCIE, and CIS benchmarks.
• Track record of leadership in regulated industries, especially investment management, financial services, or global enterprises.
• Strong executive communication skills, with the ability to translate technical risk into business impact and lead cross-functional collaboration.

Personal Attributes

• Technically curious and self-motivated with a passion for continuous learning and staying ahead of the threat landscape.
• Excels under pressure and with time constraints in complex, fast-paced environments.
• High integrity with strong professional and personal ethics, particularly when handling highly confidential information.
• Pragmatic problem-solver who balances stringent security requirements with business enablement and operational needs.
• Team-oriented with strong collaboration skills, able to bridge silos and foster teamwork across departments.
• Outstanding organizational skills with high attention to detail.
• Demonstrated ability to lead by doing, providing hands-on technical guidance and contributing directly to technical solutions.

Education

• Bachelor's degree required
• Preferred certifications: Microsoft Certified: Azure Solutions Architect or Security Engineer, CISSP, CISM, CCSP, or equivalent.

Base Salary Range

$170,000 - $200,000

In addition to a competitive base salary, you will be eligible to receive discretionary bonus incentives, a comprehensive benefits package and a flexible work arrangement. The base salary offered will be commensurate with experience and/or qualifications, industry knowledge and expertise, as well as prior training and education.

Equal Opportunity Employment Policy

Oaktree is committed to diversity and to equal opportunity employment. Oaktree does not make employment decisions on the basis of race, creed, color, ethnicity, national origin, citizenship, religion, sex, sexual orientation, gender identity, gender expression, age, past or present physical or mental disability, HIV status, medical condition as defined by state law (genetic characteristics or cancer), pregnancy, childbirth and related medical conditions, veteran status, military service, marital status, familial status, genetic information, domestic violence victim status or any other classification protected by applicable federal, state and local laws and ordinances. This policy applies to hiring, placement, internal promotions, training, opportunities for advancement, recruitment advertising, transfers, demotions, layoffs, terminations, recruitment advertising, rates of pay and other forms of compensation and all other terms, conditions and privileges of employment. This policy applies to all Oaktree applicants, employees, clients, and contractors. Staff members wishing to report violations or suspected violations of this policy should contact the head of their department or Human Resources.

For positions based in Los Angeles

For those applying for a position in the city of Los Angeles, the firm will consider for employment qualified applicants with a criminal history in a manner consistent with applicable federal, state and local law.