• Design and lead enterprise Azure solutions across compute, networking, identity, storage, logging, and monitoring. • Architect secure Azure landing zones and hybrid cloud environments aligned with Microsoft best practices and organizational standards. • Lead cloud migration and modernization initiatives from on-premises or legacy platforms to Azure. • Design and implement Infrastructure as Code (IaC) using ARM, Bicep, and/or Terraform. • Design and support CI/CD pipelines to enable automated, repeatable, and compliant infrastructure deployments. • Embed security-by-design and Zero Trust principles into all Azure architectures. • Design and implement Azure-native security controls, including Azure Policy, Microsoft Defender for Cloud, Microsoft Sentinel, identity protection, and conditional access. • Perform cloud security posture reviews and environment readiness assessments. • Partner with infrastructure and operations teams to ensure secure operational handoff and long-term platform stability. • Serve as a senior advisor for cloud security and compliance initiatives aligned to ISO 27001, SOC 1/2, GDPR, TISAX, and similar regulatory frameworks. • Lead the interpretation, design, implementation, and operationalization of security and compliance controls within Azure environments. • Conduct compliance and risk gap assessments and translate regulatory requirements into Azure-native technical and operational controls. • Support audit readiness activities, including evidence preparation, control validation, and remediation planning. • Communicate compliance posture, risks, and remediation strategies to technical, operational, and executive stakeholders. • Serve as the Agile Product Owner for Azure infrastructure and security services. • Own and prioritize the product backlog, including infrastructure, security, and compliance epics and user stories. • Prioritize work based on business value, risk exposure, and regulatory requirements. • Develop and maintain Azure platform and security roadmaps. • Participate in Agile ceremonies including backlog refinement, sprint planning, and sprint reviews. • Ensure delivery teams execute consistently against defined architectural, security, and compliance standards. • Act as a trusted advisor to engineering teams, business leaders, and executive stakeholders. • Lead architecture reviews, security briefings, and compliance discussions. • Present complex technical and regulatory topics in clear, business-focused language. • Mentor engineers and architects on Azure architecture, security, and best practices. • Drive continuous improvement across cloud delivery, security posture, and operational processes.

This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description As a Senior Security Engineer I at Aledade, you will play a central role in enhancing the security posture of our enterprise, cloud-native environments, and applications. We are seeking a dedicated professional with in-depth knowledge of security principles, standards, and best practices to help safeguard our systems and support our security compliance initiatives. In this role, you will work to design, implement, and maintain robust security solutions across diverse platforms and technologies. You will collaborate closely with various teams to ensure alignment between security solutions and organizational requirements, enabling secure operations across the enterprise. Your ability to partner cross-functionally will be key to driving impactful security outcomes and strengthening our digital landscape. Your expertise will be crucial as we continue to mature our security capabilities and maintain our commitment to protecting critical systems and data. Primary Duties - Working cross-functionally to design, build, and operate solutions that improve and mature our security capabilities. - Leveraging data to understand trends, metrics, and opportunities to improve our security posture, researching options, and then making recommendations as options to secure those opportunities with stakeholders. - Leading and enhancing incident/issues response efforts, spearheading analysis, containment, and mitigation strategies in a cross-functional environment to ensure effective resolution and remediation of security incidents/issues. - Helping craft and refine security documentation pertinent to our Security Program, such as policies, standards, baselines, and standard operating procedures. Qualifications - BS / BTech (or higher) in Computer Science, Information Technology, Cybersecurity or a related field, 6 years security domain experience without degree. - 4+ years combined experience as a security engineer in an enterprise environment (preferably cloud) across multiple disciplines. - 3+ years of relevant work experience in security posture management. - 2+ years of experience acting as a trusted technical decision-maker in a team setting, solving for short-term and long-term business value. Requirements - Identity & Access Management experience with Identity & Access Management (IaM) systems and practices. - In-depth knowledge of authentication protocols, authorization mechanisms, and directory services. - Strong proficiency implementing IaM solutions within very complex environments. - Familiarity with regulatory compliance and security standards. - Experience generating automated metrics to measure service and program effectiveness and consistency. - Strong communication skills, both written and verbal, with the capability to articulate complex security issues to a diverse audience. - Experience with tools strongly preferred: Federated Identity - Okta/Entra ID/Ping Identity, IGA - Sailpoint/Saviynt/Omada, Cloud Platforms - AWS/Azure/GCP, Automation: Python, Terraform, Powershell. Physical Requirements - Sitting for prolonged periods of time. - Extensive use of computers and keyboard. - Occasional walking and lifting may be required. Benefits - Flexible work schedules and the ability to work remotely are available for many roles. - Health, dental and vision insurance paid up to 80% for employees, dependents and domestic partners. - Robust time-off plan (21 days of PTO in your first year). - Two paid volunteer days and 11 paid holidays. - 12 weeks paid parental leave for all new parents. - Six weeks paid sabbatical after six years of service. - Educational Assistant Program and Clinical Employee Reimbursement Program. - 401(k) with up to 4% match. - Stock options. - And much more!

• Collaborate with internal and external stakeholders to ensure secure data gathering, processing and management. • Analyze SQL statements, identify and help resolve potential performance issues for optimized database operations. • Designing secure network architectures, conducting penetration testing, managing security tools (e.g., SIEM, IDS/IPS), and establishing security policies. • Working with DevOps, IT, and software teams to integrate security into the development lifecycle (DevSecOps). • Deep knowledge of network protocols, operating systems (Linux/Windows), cloud security (AWS/Azure/GCP), and scripting/programming languages (Python, Bash). • Implement and uphold cloud data security technologies and best practices. • Operate independently, demonstrating proactive problem-solving skills and attention to detail. • Effectively communicate complex technical concepts through strong written and verbal skills. - Regularly report progress and security concerns to the Head of Security Engineering.

• Working cross-functionally to design, build, and operate solutions that improve and mature our security capabilities • Leveraging data to understand trends, metrics, and opportunities to improve our security posture, researching options, and then making recommendations as options to secure those opportunities with stakeholders • Leading and enhancing incident / issues response efforts, spearheading analysis, containment, and mitigation strategies in a cross-functional environment to ensure effective resolution and remediation of security incidents / issues • Helping craft and refine security documentation pertinent to our Security Program, such as policies, standards, baselines, and standard operating procedures