Sr. Staff Enterprise Security Engineer

Business Area:

Seniority Level:

Job Description:

At Cloudera, we empower people to transform complex data into clear and actionable insights. With as much data under management as the hyperscalers, we're the preferred data partner for the top companies in almost every industry. Powered by the relentless innovation of the open source community, Cloudera advances digital transformation for the world's largest enterprises.

About Our Team: Join a pivotal role within our Information Security team, where you will be instrumental in safeguarding our critical on-premises and cloud infrastructure. We are a collaborative and innovative group committed to building a robust security posture, driving best practices, and protecting our organization's assets in a rapidly evolving threat landscape.

Position Summary: We are seeking a highly experienced and technically adept Sr. Staff Enterprise Security Engineer to lead and manage the security of our hybrid IT environment, encompassing both on-premises data centers and diverse cloud platforms (AWS, Azure, GCP, etc.). This role requires a strong blend of hands-on technical expertise, strategic thinking, and leadership capabilities. You will work closely with IT Operations, Product Security, and other stakeholders to implement, maintain, and enhance enterprise-wide security controls, acting as a technical lead and mentor within the Enterprise Security team.

As a Sr. Staff Security Engineer, you will:

• Security Architecture & Design: Lead the design, implementation, and optimization of security controls, architectures, and solutions across on-premises infrastructure, cloud environments (IaaS, PaaS, SaaS), and hybrid deployments.

• Technical Leadership: Act as a technical lead within the Enterprise Security team, providing guidance, mentorship, and expert-level support to junior and mid-level engineers. Drive technical discussions and decision-making for complex security challenges.

• Cloud Security Management: Implement, manage, and monitor security configurations and posture across major cloud providers (e.g., AWS, Azure, GCP). This includes securing cloud networks, identities, data storage, serverless functions, and containerized workloads.

• On-Premises Security Management: Oversee and enhance security controls for on-premises infrastructure, including network security (firewalls, IDS/IPS), endpoint security and virtualization platforms.

• Vulnerability Management: Drive the identification, assessment, and remediation of vulnerabilities across the enterprise. Work closely with IT Operations and development teams to prioritize and track remediation efforts.

• Identity & Access Management (IAM): Lead the implementation and enforcement of robust IAM policies and solutions for both on-prem and cloud environments, including SSO, MFA, privileged access management (PAM), and role-based access control (RBAC).

• Incident Response Support: Provide expert technical support during security incidents, contributing to containment, eradication, recovery, and post-incident analysis.

• Security Tooling & Automation: Evaluate, implement, and integrate security tools and technologies. Drive automation initiatives to enhance security operations efficiency and effectiveness.

• Collaboration & Partnership: Work closely with IT Operations to ensure secure infrastructure deployment and management. Collaborate with Product Security to align enterprise security practices with product development lifecycle security. Engage with other internal teams to ensure comprehensive security coverage.

• Policy & Compliance: Contribute to the development, implementation, and enforcement of security policies, standards, and procedures. Ensure compliance with relevant industry regulations and frameworks (e.g., ISO 27001, SOC 2, PCI DSS, FedRAMP).

We are excited about you if you have:

• Bachelor's degree in Computer Science, Cybersecurity, Information Systems, or a related technical field.

• 7+ years of progressive experience in cybersecurity engineering, with a strong focus on enterprise-level security architecture and operations.

• Hands-on experience securing major public cloud platforms (AWS, Azure, or GCP), including a deep understanding of their security services and best practices.

• Demonstrable experience managing security controls in traditional on-premises data center environments.

• Proven experience acting as a technical lead or mentor within a security engineering team.

• Expertise in network security (firewalls, WAF, IDS/IPS, VPN), endpoint security, and data protection.

• Strong understanding of Identity and Access Management (IAM) concepts and technologies (e.g., Okta, PAM solutions).

• Experience with scripting and automation (e.g., Python, PowerShell, Terraform, CloudFormation).

• Familiarity with vulnerability management processes and tools.

• Solid understanding of common security frameworks and regulatory compliance requirements.

• Excellent problem-solving, analytical, and communication skills, with the ability to articulate complex technical concepts to both technical and non-technical audiences.

• Relevant industry certifications such as CISSP, CCSP, AWS Security Specialty, Azure Security Engineer Associate, GCP Professional Cloud Security Engineer are highly desirable.

This role is not eligible for immigrationsponsorship

What you can expect from us:

• Generous PTO Policy

• Support work life balance with Unplugged Days

• Flexible WFH Policy

• Mental & Physical Wellness programs

• Phone and Internet Reimbursement program

• Access to Continued Career Development

• Comprehensive Benefits and Competitive Packages

• Paid Volunteer Time

• Employee Resource Groups

EEO/VEVRAA

#LI-SZ1

#LI-Remote