- Lead Associate Principal, Security Engineering
The focus is on Cloud AWS security
The technical skills: they need to have knowledge of DevOps practices, PKI public key infrastructure, and as much privileged access management experience as possible whether it is CyberArk, Hashicorp, or Active Directory the more the better
SALARY: $190k - $200k plus 15% bonus
LOCATION: Coppell, TX
Hybrid 3 days onsite and 2 days remote
SELLING POINTS: LEAD CLOUD SECURITY Engineer managing day to day cloud security. Devops activities and testing AWS identity authentications architectures across cert based OA auth2/OIDC IAM AD K8s Kerberos cyberark hashicrop vault active directory certificate services ADCS HSM PKIs terraform ansible python groovy bash golang
In this role, you'll be responsible for driving critical security related projects, managing day-to-day cloud security engineering tasks, cloud-based initiatives, and DevOps development for security related endeavors. You will help manage privileged access systems that protect our most critical assets, implement AI-based security capabilities, and help shape our security architecture.
Manage ongoing critical cloud service rollouts and automation Lead end-to-end deployment of mission-critical cloud services while developing and maintaining automation pipelines that streamline provisioning, configuration, and compliance enforcement across cloud environments.
Support, grow, and advance current processes and tools Continuously assess existing security processes and toolsets, driving improvements that mature the organization's cloud security posture through automation, documentation, and operational efficiency. Develop and implement system improvements that expand automated integrations and accelerate detection and remediation of functional and technical issues.
Demonstrate in-depth knowledge of security controls and standards across cloud security, architecture, and security testing Apply expertise in industry frameworks (CIS, NIST CSF, CSA CCM) to design, implement, and validate security controls spanning cloud architecture, identity and access management, data protection, and security testing including vulnerability assessments and penetration testing.
Manage multiple complex projects simultaneously under strict deadlines Prioritize and execute across a dynamic portfolio of concurrent security initiatives, consistently delivering high-quality outcomes on time while maintaining rigorous attention to detail and adherence to organizational standards.
Qualifications:
Seven Years Experience with Security Engineering activities and testing.
Five years of experience with DevOps processes
Five years experience with AWS architecture and services.
Advanced knowledge in identity and authentication architectures across cert-based, OAuth2/OIDC, IAM, AD, k8s, and Kerberos implementations
Advanced knowledge and experience designing secure CI/CD and IaC ecosystems with Terraform, Ansible, and Jenkins at enterprise scale.
Effective oral and written communication, analytical, judgment and collaboration skills.
Ability to effectively communicate in both formal and informal review settings with all levels of management.
Technical Skills:
Proficiency providing operational and engineering support for one or more of the following: CyberArk, HashiCorp Vault, Active Directory Certificate Services (ADCS), HSMs, and Public Key Infrastructure (PKI).
Expertise in DevOps and DevSecOps practices and tooling. Hands-on expertise across CI/CD pipeline development and automation tools such as Jenkins, GitHub Actions, or GitLab CI, leveraging infrastructure-as-code frameworks (Terraform, Ansible) and scripting languages (Python, Groovy, Bash, GoLang) to embed security controls throughout the software development lifecycle.
Expert level knowledge of privileged access management methodologies and techniques for on-prem and Cloud implementation.
Education and/or Experience:
Experience in one or more of the following disciplines: security operations, development, engineering, or architecture
Experience supporting privileged access management and access controls programs.
Professional or personal experience using AI coding agents such as OpenAI Codex, Claude Code, or Gemini CLI.
Never miss an opportunity! Create an alert based on the job you applied for.
