Lead Cybersecurity Engineer

Lead Cybersecurity Engineer This position currently follows a hybrid work schedule, with three in-office days. Tuesday and Thursday are Company anchor days, and the third day will be worked out with your manager. Organizational Impact This role establishes a centralized cybersecurity execution capability within IT, ensuring that security is embedded into operations, incident response, and technology transformation initiatives. The position enables the organization to modernize its systems and expand cloud adoption while maintaining a strong, resilient, and well-governed security posture. Role Summary The Lead Cybersecurity Engineer is a senior individual contributor responsible for driving cybersecurity execution across the organization. This role ensures that security controls, operational practices, and architectural considerations are effectively embedded across infrastructure, applications, cloud platforms, and data initiatives. The role connects cybersecurity strategy with execution by translating CIO direction, in collaboration with the vCISO, into actionable controls, while supporting secure modernization across Microsoft 365, data platforms, and enterprise systems. Key Responsibilities Planning and Delivery Security Operations and Risk Management

• Own and drive cybersecurity operations across endpoints, servers, and enterprise systems
• Establish and enforce security baselines, hardening standards, and best practices
• Lead vulnerability management lifecycle including identification, prioritization, and remediation tracking
• Define and monitor patch management compliance in partnership with infrastructure teams
• Continuously assess and reduce organizational attack surface Security Architecture and Modernization Enablement
• Provide security guidance for system upgrades and modernization initiatives
• Participate in architecture reviews and solution design discussions
• Define and promote secure design patterns and standards
• Ensure security is embedded across infrastructure, applications, and data platforms Cloud Security and Microsoft Ecosystem
• Provide security oversight for Microsoft 365, SharePoint, Teams, Power BI, and emerging platforms such as Microsoft Fabric
• Guide implementation of identity, access control, and data protection capabilities
• Enforce Zero Trust principles including strong authentication, least privilege, and device posture validation
• Secure Development and Technology Enablement
• Promote secure development lifecycle practices
• Evaluate security considerations in new technologies, platforms, and integrations Identity, Access, and Data Protection
• Promote identity-first security practices across the organization
• Support data classification, data loss prevention, and secure data sharing standards Communication & Culture Enablement Incident Response and Coordination
• Serve as primary coordinator during cybersecurity incidents
• Lead cross-functional response efforts across infrastructure, applications, support, and external partners in coordination with senior company leadership
• Ensure timely containment, remediation, and recovery
• Maintain incident response plans, escalation procedures, and playbooks
• Conduct post-incident reviews and drive corrective actions Training and Preparedness
• Design and execute cybersecurity tabletop exercises to strengthen organizational preparedness and response capabilities
• Simulate scenarios such as ransomware, phishing compromise, and data breaches
• Identify gaps in response readiness and drive remediation efforts
• Ensure protection of sensitive data across business and analytics platforms
• Manage enterprise security awareness program
• Conduct training, phishing simulations, and targeted campaigns
• Track training completion and effectiveness metrics
• Deliver periodic awareness sessions for employees and IT teams Cross Functional Enablement
• Partner with infrastructure, application development, and support teams to embed security practices
• Ensure alignment between operational execution and policies defined by the vCISO and legal teams Leadership and Advisory
• Act as a trusted advisor on cybersecurity best practices
• Advise on application security, code review practices, and vulnerability remediation
• Support evaluation of third-party vendors from a cybersecurity standpoint
• Review security controls and risks associated with external solutions
• Partner with procurement and leadership to ensure appropriate risk visibility
• Advise on secure collaboration, external sharing, and data governance practices
• Collaborate with IT team, vCISO, and Legal functions to develop and formalize enterprise cybersecurity policies, SOC documentation, and responses to regulators, auditors, and external stakeholders.
• Maintain and govern a centralized repository for all related artifacts and records. Business Insight and Analytics & Reporting
• Develop and maintain cybersecurity metrics and dashboards
• Report on vulnerabilities, patch compliance, incidents, and training outcomes
• Provide regular updates to senior leadership on risk posture and emerging threats
• Translate technical risks into business impact Required Qualifications Experience
• Total IT experience: 8 to 12 years
• Cybersecurity-focused experience: 5 to 8 years
• Experience spanning security operations, incident response, and infrastructure or cloud environments
• Prior involvement in cloud adoption or modernization initiatives preferred
• Experience in regulated industries such as insurance or financial services is advantageous Technical Skills
• Endpoint security and EDR platforms
• Vulnerability management tools and processes
• Patch management and system hardening
• Identity and access management, including modern authentication and access controls
• Cloud security fundamentals, particularly Microsoft 365 and Azure environments
• Data protection technologies including data classification and data loss prevention
• Familiarity with logging, monitoring, and detection concepts Frameworks and Standards
• Experience working with or implementing security frameworks such as: o NIST Cybersecurity Framework o CIS Critical Security Controls o ISO 27001 or similar standards
• Ability to translate framework requirements into practical controls and operational processes Core Competencies
• Ability to lead cross-functional initiatives without direct authority
• Strong incident coordination and decision-making capability under pressure
• Solid understanding of security architecture principles
• Ability to balance hands-on execution with strategic advisory responsibilities Communication and Influence
• Strong ability to engage with both technical teams and senior leadership
• Effective presentation and reporting skills to technical and non-technical audiences
• Ability to translate cybersecurity risks into business context Emerging Technology Awareness
• Awareness of security considerations related to emerging technologies including AI, advanced analytics, and cloud-native platforms
• Ability to assess and communicate risks introduced by new technologies Success Metrics
• Reduction in vulnerability exposure and remediation timelines
• High compliance with patching and security standards
• Effective incident response with reduced impact and recovery time
• Measurable improvement in employee security awareness
• Strong alignment of security controls with modernization and cloud initiatives

Salary Range:

$125,000 - $160,000 per year. This range is a good faith estimate which reflects the annual salary we reasonably expect to pay for this specific full-time position at the time of posting. The actual salary offered will be based on several factors including the candidate's experience and qualifications.