Role Description The Senior Cyber Security Engineer is a hands-on technical leader responsible for designing, building, and owning Virtuoso’s security infrastructure in a cloud-first environment anchored in Microsoft Azure. This role moves well beyond monitoring and reporting — the engineer architects Zero Trust security controls, drives DevSecOps adoption across engineering teams, and owns the full lifecycle of security tooling from evaluation through production. The Sr. Cybersecurity Engineer leads vulnerability management, incident response capabilities, and SIEM/SOAR operations, while maintaining ISO 27001 and PCI-DSS compliance programs and delivering executive-level security intelligence to leadership. This individual is the primary technical authority for protecting Virtuoso’s data, systems, and cloud workloads — a builder who makes the environment demonstrably more secure every quarter. Essential Duties and Responsibilities - Cloud Security Architecture & Engineering - Design and architect security controls across Virtuoso’s Azure-primary cloud environment, including network segmentation, encryption standards, and identity boundaries. - Architect and implement Zero Trust security principles across cloud, hybrid, and SaaS environments. - Own Microsoft Defender for Cloud and Azure Policy configurations — design guardrails, enforce compliance baselines, and remediate posture findings. - Design and implement Azure Firewall rules, network security groups, and Cato Networks SASE policies. - SIEM / SOAR & Incident Response - Architect, implement, and continuously improve Virtuoso’s SIEM/SOAR platform — own analytics rules, playbooks, workbooks, and data connector onboarding. - Design and lead incident response capabilities: build runbooks, lead tabletop exercises, and drive post-incident reviews that produce measurable hardening. - Operate and tune endpoint detection and response (EDR) platforms; investigate and contain endpoint threats with full ownership through closure. - Vulnerability Management & Threat Intelligence - Own the enterprise vulnerability management program end-to-end: tooling selection, scan cadence, automation of remediation tracking, and SLA enforcement with asset owners. - Lead the threat intelligence program — ingest, analyze, and operationalize threat feeds into detection rules and preventive controls. - Conduct and coordinate penetration testing activities; translate findings into prioritized engineering remediation plans. - Identity & Access Management Security - Own identity security in Microsoft Entra ID (Azure AD): design Conditional Access policies, Privileged Identity Management (PIM) workflows, and enforce least-privilege across the environment. - Define and enforce authentication standards (MFA, phishing-resistant authenticators, passwordless) across all workforce and privileged accounts. - DevSecOps & Security Automation - Lead DevSecOps integration — embed automated security gates (SAST, DAST, SCA, secrets scanning) into Azure DevOps and GitHub Actions CI/CD pipelines. - Build and maintain security automation using PowerShell, Python, and Azure-native tools (Logic Apps, Azure Functions) to reduce manual effort and accelerate response. - Own Infrastructure as Code (Terraform, Bicep, ARM templates) security practices — design secure templates and enforce policy-as-code. - Compliance, Audit & Data Platform Security - Support ISO 27001 and PCI-DSS compliance programs — maintain control documentation, manage evidence collection, and lead internal audit cycles without external handholding. - Support GDPR and CPRA compliance requirements, translating regulatory obligations into technical controls. - Design and maintain security monitoring, access controls, and data masking configurations for the Snowflake data platform. - Evaluate, implement, and own security tooling decisions; manage vendor relationships and license optimization for the security stack. - Reporting & Community Engagement - Produce executive-level security metrics, dashboards, and risk reports that translate technical posture into business-relevant language for leadership and the board. - Engage with the security community through threat intelligence sharing, industry groups, and continuous learning; bring external insights back to improve Virtuoso’s defenses. Qualifications - 5–7 years of progressive cybersecurity experience with demonstrated ownership of engineering-level deliverables (not just monitoring or support functions). - Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or a related field — or equivalent practical experience with professional certifications. - Proven track record of designing and shipping security capabilities in cloud environments, not solely operating inherited tooling. Requirements - AZ-500 — Microsoft Azure Security Engineer Associate (Highly Preferred): Directly validates the Azure-native security engineering skills central to this role. - CISSP — Certified Information Systems Security Professional: Validates breadth of security knowledge and engineering-level thinking across domains. - CCSP — Certified Cloud Security Professional: Validates cloud security architecture knowledge essential for a cloud-first environment. - OSCP — Offensive Security Certified Professional: Demonstrates hands-on penetration testing capability and attacker mindset. - CompTIA Security+ / PenTest+: Accepted as a foundational certification for candidates building toward CISSP or OSCP. Benefits - Competitive salary and full benefits package, including medical/dental/vision/life. - 401(k) savings plan. - Equal opportunity employer, dedicated to promoting a diverse workforce. Travel Requirements - Occasional travel (up to 10%) may be required for vendor meetings, security conferences, or audit activities. - Travel will be primarily domestic but may include some international. Type/Nature of Contacts - External: Regular contact with security vendors and managed service providers, PCI-DSS QSA auditors and ISO 27001 certification body, and threat intelligence sharing communities and industry groups. - Internal: Key job contacts include both clerical, technical staff and managers within the job’s immediate work unit/department, as well as regular cross-departmental work.

• Develop detections and other analytics to identify threats across cloud, corporate, and edge environments • Lead security investigations and perform deep-dive analysis across complex log sources and telemetry to identify root causes • Research, evaluate, implement, and maintain a variety of custom and commercial security tools, such as EDR, SOAR, and SIEM • Build custom tooling and automations to improve the detection lifecycle and security incident response • Develop and maintain incident response playbooks and other detection and response documentation • Conduct threat hunts to discover unknown malicious activity across our environment • Participate in our on-call rotations

• Act as the security architect for public applications hosted on AWS; • Define security standards for edge security, identity, segmentation, observability, and application resilience; • Influence the corporate cloud security strategy, balancing security, scalability, and operational efficiency; • Collaborate with cloud architects and DevOps teams to identify and remediate insecure configurations; • Develop strategies for implementing WAF, CNAPP, and CSPM integrated into the organization’s security framework; • Evaluate new AWS security services and capabilities and translate them into architecture and governance standards; • Establish security guidelines and best practices for software development based on industry frameworks; • Serve as the technical reference for application security during corporate projects; • Work with development teams to integrate security throughout all phases of the SDLC; • Identify, prioritize, and define mitigation strategies for application vulnerabilities; • Integrate security tools, processes, and automations into the DevOps pipeline (DevSecOps); • Define robust authentication and authorization requirements, including privilege and access controls; • Continuously monitor threats, public vulnerabilities, and trends in the security community; • Actively participate in projects, technical forums, and change processes to ensure security by design; • Promote secure design practices and data integrity across users, applications, and infrastructure; • Develop and strengthen a culture of security champions within development teams; • Participate in and lead technical discussions in security forums and meetings; • Build relationships with stakeholders to sustain security initiatives; • Engage in information security projects following leadership guidance.

Role Description Guild is hiring a Security Engineer. The Information Security team is looking to add a highly motivated and technically inclined individual to work as a Cloud Security Engineer. We are looking for a candidate that is comfortable working in an exciting and fast-paced environment. This individual’s responsibilities will mainly focus on ensuring protection of Guild’s various cloud resources and environments. These efforts will ultimately allow Guild to fulfill its mission while also meeting business objectives and compliance requirements. - Identify security issues and risks with Guild’s systems and environments. - Develop and execute remediation/mitigation plans that provide long-term risk reduction. - Collaborate with cross-functional engineering teams to integrate and advance security standards within a comprehensive enterprise application security program. - Serve as a strategic partner to engineering squads, providing expert guidance on the integration and remediation of findings from SAST, DAST, and SCA tools. - Design and enforce robust security architectures across the company’s AWS ecosystem. - Architect and implement security controls for agentic AI systems, including identity, network, and runtime-level defenses (e.g., sandboxing, policy enforcement). - Develop comprehensive threat models and conduct realistic threat simulations across Guild's offerings, including LLMs, AI agents, and MCP components. - Develop and tune security policy within various security tools and platforms (CNAPP, EDR, Email Gateway, Vulnerability Management, SIEM, etc.). - Maintain SOC-2 compliance and assist with audit/client related requests. - Assist with incident response and investigation activities. - Fulfill regular on-call responsibilities as part of a team rotation. Qualifications - Thorough understanding of Integrated Development Environment (IDE) and Continuous integration / Continuous Delivery (CI/CD) Pipeline tools and processes. - Proven experience with software development methodologies and secure coding practices. - 5+ years of industry experience in security engineering, with meaningful focus on cloud security and application security. - Excellent problem-solving and analytical skills. - Strong communication skills, both written and verbal, for collaborating with technical and non-technical teams. - Ability to work independently, prioritize tasks, and manage multiple security projects simultaneously. Requirements - Solid understanding of LLMs, AI architecture patterns, machine learning models, and related technologies (e.g., MCP, RAG, agentic frameworks). - Experience with container security, kernel-level hardening, and modern isolation techniques. - AWS Certifications. Benefits - Access to low-cost, high-quality health care options through Collective Health and Kaiser (due to coverage limitations, Kaiser is currently only available in CA & CO). - Access to a 401k to help save for the future. - Vacation policy to rest and recharge. - 8 days of fully-paid sick leave, to take the time to heal and or recover. - Family-friendly benefits, including 12 weeks of parental leave for non-birthing parents and 18-20 weeks for birthing parents; 2-week ramp-up period for when employees return from a leave of 6 weeks or more; as well as employer-paid short-term and long-term disability, employer-sponsored life insurance, fertility and caregiving benefits. - Well-rounded wellness benefits including free and low-cost mental health resources and financial wellbeing support services. - Education benefits and tuition assistance to help your future development and growth.