Director of Security Engineering
Location: Chicago or Dallas (hybrid 3-days onsite per week).
Glocomms are partnered with a leading Financial Services firm in the search for a technical/hands-on Director, Security Engineering to lead and manage key projects within the firm's Cloud Services, covering both AWS and Azure platforms, while overseeing tool integration and conducting security architecture reviews. The ideal candidate will have a keen eye for detail, work well with stakeholders across Security and IT teams, and stay informed on the latest regulatory and compliance requirements affecting the organization.
Key Responsibilities:
To be successful in this role, you must be able to perform each of the following responsibilities effectively:
- Offer expert guidance to the organization and key stakeholders on the status, objectives, functionality, and progress of Security initiatives.
- Communicate complex information related to Infrastructure as Code (IaC), Cloud Security, and Application Security, serving as a subject matter expert.
- Lead a diverse team of engineers, consultants, and staff, providing senior-level guidance across the organization.
- Manage complex deliverables across security and IT teams, ensuring deadlines, objectives, and requirements are met.
Leadership & Management Responsibilities:
- Provide detailed project status updates using industry-standard tools like Jira, Confluence, and ServiceNow.
- Mentor and develop staff through training, guidance, and alignment with critical service delivery goals for AWS, Azure, and security tool implementation.
- Ensure teams remain focused on high-priority tasks to ensure the successful delivery of key services.
Qualifications:
The following are the required qualifications for this role. Reasonable accommodations may be provided to individuals with disabilities to perform essential functions.
- Strong consultative, communication, teamwork, and analytical skills, as you will be regularly interacting with various teams across the organization.
- Proven experience managing multiple teams in different technology areas.
- Highly motivated to stay informed on the latest trends, security best practices, and industry developments.
- Ability to thrive in a fast-paced, deadline-driven environment while maintaining a calm and focused approach under pressure.
- Strong understanding of AWS and Azure security reference architectures.
- In-depth knowledge of DevOps and DevSecOps practices, along with current leading services and systems.
- Subject matter expertise in the full software development lifecycle, including requirements gathering, security considerations, and implementation.
- Practical experience in application security, including code scanning, remediation processes, and security capabilities.
Technical Skills:
AWS Expertise:
- AWS Multi-Account Relationships
- AWS IAM Roles, Policies, Permissions
- AWS Authentication Mechanisms
- AWS Network Firewall
- AWS Firewall Manager
- AWS Lambda
- AWS Networking Models
- Control Tower
- Security Hub
Azure Expertise:
- Azure AD Sync
- M365 Authentication
- Conditional Access
- Event Hub
- Azure Security Policies
- Entra ID (Formerly Azure AD)
- PIM (Privileged Identity Management)
- Azure Subscriptions and Permissions
- Multi-factor Authentication
DevOps Expertise:
- Hashi Vault
- EKS / Kubernetes
- Terraform / TFE
- Jenkins
- Rancher
- Service Mesh
- Container Methodology
Application Security Expertise:
- GitOps / GitLab / GitHub
- CI/CD Processes and Methodologies
- Veracode
- Blackduck
