Position Overview:

SentinelOne is looking for a Manager for the Security Engineering team. This person will work with the SOC Manager and the Vulnerability Manager to ensure the operations of the three security groups in close concert. The Security Engineering Manager reviews the Company’s security posture across the enterprise and maintains, improves and adapts solutions for all business units.  The successful candidate will use their skills to lead the security engineering and cloud security engineering efforts within the Information Security department. This role supervises cloud security engineers to help secure all of SentinelOne’s cloud provided SaaS services and infrastructure, across the globe. The person in this role works with SentinelOne’s R&D team, Cloud Ops, and DevOps to reduce risk and to “shift left”.  Additionally, this role advises and works with Finance, Purchasing and other business units to ensure secure operation of critical corporate infrastructure.  A strong belief in working to processes, encouraging others to follow processes, and continuous improvement of processes is a key requirement. 

The successful candidate should have experience in performing security reviews and working with the VP and C-Level in acquiring and deploying applications to support corporate strategies. This includes planning for and supporting multi-cloud architectures and working at a high level to set the entire company security policies, plans, and procedures working directly with the Director of Information Security. They will have the ability to think outside the box and work on complex problems that span many different information security domains, as well as be self-motivated and comfortable working in a very high paced and evolving environment. This pace will require them to understand what problems will be real, continued issues and which problems will evolve out of the system to prioritize work.

Responsibilities:

• Leads SentinelOne security engineering efforts, reviewing security technologies, tools and services for integration into SentinelOne across corporate, production and government systems.
• Works with the Information Security Architect and the other Security Engineering Managers.
• Participates in the security aspects of product design and participates in the implementation of cloud and on-prem security architectures for all of SentinelOne’s services and offerings.
• Drives the development of general security patterns and guidelines to enable applications to stay compliant. 
• Incentivizes greater adoption of the shift-left paradigm by championing IaC with internal and external teams.
• Champions security by design.
• Lead the FedRAMP environment security engineering team in a FedRAMP High environment, in compliance with all applicable regulations.
• Supervise a global team of Cloud Security Engineers, and Security Engineers performing annual reviews and other management tasks.

Desired Qualifications:

• Strongly prefer individuals coming from a Software or SaaS organization, with recent and relevant experitise leading a Security Engineering or Cloud Engineering team (either in a Technical Lead or Management capacity).
• 4 year degree in computer science, engineering, math or physics.
• 4+ years of working with at least two of AWS, GCP or Azure clouds as a senior security engineer, or security manager.
• 3+ years working in a global context as a Security Engineering Lead/Manager.
• Strong familiarity with Compute, IAM, KMS, VPC and other core cloud concepts.
• Experience with cloud networks that are highly scalable, highly available over many regions using VPCs, Gateways, Peering and VPNs.
• Proven experience and desire to operate as a self-starter and be comfortable working in a sometimes ambiguous, yet fast-paced, environment.
• Strong technical understanding to be able to lead a team to validate that an environment meets all security and compliance controls.
• Experience with GRC and Audits - SOC2, SOX and others where you are responsible for providing evidence and creating diagrams for auditors and assisting in the GRC processes.
• Experience with SOA Architecture, Application Security Firewalls, XML Firewalls, and IDS technologies.
• Experience with containers and microservices such as Docker, Kubernetes and Lambdas.
• Experience with SCA tooling (Veracode, Checkmarx) etc.
• Experience with IaC (Terraform, Ansible, Pulumi).
• Some high-level exposure to GCP.
• Proven certifications (past or present) such as  AWS Certified Solutions Architect, AWS Security Specialty,  Azure AZ-500, GCP Profession Cloud Security Engineer, CISSP.
• FedRAMP experience, SOC2 experience, or other familiarity working in regulated environments and passing certification audits (CNCF CKA, CNCF CKS.)

Why us?

You will work on real-world problems and make an impact by protecting our customers from cyber threats. You will be joining a cutting-edge project and will be able to influence the architecture, design, and structure of our core platform. You will tackle extraordinary challenges and work with the very BEST in the industry.

• Medical, Vision, Dental, 401(k), Commuter, Health and Dependent FSA
• Unlimited PTO
• Paid Company Holidays
• Paid Sick Time
• Gym membership reimbursement
• Cell phone reimbursement