Lead Cybersecurity Engineer

Plan A Technologies is seeking a Lead Cybersecurity Engineer to design, implement, and support cloud network security infrastructure and enhance overall cybersecurity posture. This role involves technical leadership in security architecture, tooling, threat detection, identity and access management, and incident response. The ideal candidate will have deep experience in cloud security, Zero Trust identity solutions, endpoint security, and modern security observability platforms, with a minimum of 8 years in security engineering or operations and demonstrated leadership.

Must Have

• Design, implement, and maintain cloud network security infrastructure across AWS.
• Architect and manage IDS/IPS solutions, firewalls, WAF, and other core security technologies.
• Lead IAM strategy and operations with Okta, Beyond Identity, and Zero Trust.
• Own operational oversight of security tools including Datadog, SIEM, endpoint security platforms.
• Lead triage, investigation, and resolution of security incidents and vulnerabilities.
• Partner with engineering teams to secure WebApp platforms, backend services, and cloud-native architectures.
• Implement and maintain secure CI/CD practices and infrastructure-as-code security controls.
• Manage security workstreams and tracking through JIRA.
• 8+ years of security engineering or cybersecurity operations experience.
• Demonstrated leadership experience in cybersecurity teams.
• Strong hands-on experience with AWS security (IAM, VPC, Security Groups, Route 53, CloudTrail, GuardDuty, KMS).
• Proven expertise with Okta, Beyond Identity, IAM concepts, SSO/MFA, and identity lifecycle management.
• Deep technical knowledge of network security, IDS/IPS, firewalls, VPN, WAF, and Zero Trust architectures.
• Experience with WebApp and API security, including authentication flows, token management, and secure application design.
• Proficiency with security monitoring platforms such as Datadog, SIEM tools, EDR/endpoint security.
• Solid understanding of incident response processes, forensics basics, threat detection, and vulnerability management.
• Strong documentation skills.
• Strong communication skills and ability to collaborate across cross-functional teams.
• Solid written and verbal English skills.

Good to Have

• BS in Computer Science, Software Engineering or equivalent practical experience.
• Relevant certifications (CISSP, CISM, CCSP, GIAC, AWS Security Specialty).
• Experience securing modern development pipelines (GitHub, GitLab, Terraform, containers, Kubernetes).
• Familiarity with Jira workflows and structured project management frameworks.

Perks & Benefits

• Generous vacation schedule
• Brand New Laptop
• Great colleagues and an upbeat work environment
• Work From Home 100% of the time, or come in to one of our global offices

JOB OVERVIEW

Plan A Technologies is looking for a Lead Cybersecurity Engineer. In this role, you will be responsible for designing, implementing, and supporting cloud network security infrastructure and overall cybersecurity posture. This role serves as a technical leader and subject-matter expert, driving security architecture, tooling, threat detection, identity and access management, and incident response within established SLAs. The ideal candidate has deep experience across cloud security, Zero Trust identity solutions, endpoint security, and modern security observability platforms.

Please note: you must have at least 8+ years of security engineering or cybersecurity operations experience and demonstrated leadership experience to be considered for this role.

JOB RESPONSIBILITY

Security Architecture & Engineering:

• Design, implement, and maintain cloud network security infrastructure across AWS and related environments.
• Architect and manage IDS/IPS solutions, firewalls, WAF, and other core security technologies.
• Oversee and enhance the security technology stack, evaluating new tools and optimizing existing ones.
• Implement “defense-in-depth” strategies across cloud, endpoint, identity, and application layers.
• Ensure secure configurations, segmentation, and monitoring of cloud networking components.

Identity and Access Management:

• Lead IAM strategy and operations with a strong focus on Okta, Beyond Identity, and associated Zero Trust authentication technologies.
• Maintain and enforce least-privilege access models, SSO, MFA, lifecycle management, and access review processes.
• Collaborate with application and engineering teams to integrate identity services into internal and external applications.

Threat Detection, Monitoring & Incident Response:

• Own operational oversight of security tools, including Datadog, SIEM, IDS/IPS, endpoint security platforms, and log pipelines.
• Lead triage, investigation, and resolution of security incidents and vulnerabilities within defined SLAs.
• Develop and maintain runbooks, playbooks, and escalation processes.
• Guide security automation initiatives to improve alert fidelity, response time, and repeatability.

Cloud & Application Security

• Partner with engineering teams to secure WebApp platforms, backend services, and cloud-native architectures.
• Implement and maintain secure CI/CD practices and infrastructure-as-code security controls.
• Support application security initiatives such as threat modeling, code review, and vulnerability scanning.

Operational Support & Collaboration

• Manage security workstreams and tracking through JIRA, ensuring clear prioritization and timely execution.
• Collaborate cross-functionally using Slack, engineering meetings, and other communication channels.
• Provide expert input for compliance audits, risk assessments, and policy development.
• Mentor junior engineers and influence best practices across the organization.

EXPERIENCE

• BS in Computer Science, Software Engineering or equivalent practical experience
• 8+ years of security engineering or cybersecurity operations experience.
• Demonstrated leadership experience in cybersecurity teams.
• Strong hands-on experience with cloud security, especially AWS (IAM, VPC, Security Groups, Route 53, CloudTrail, GuardDuty, KMS, etc.).
• Proven expertise with Okta, Beyond Identity, IAM concepts, SSO/MFA, and identity lifecycle management.
• Deep technical knowledge of network security, IDS/IPS, firewalls, VPN, WAF, and Zero Trust architectures.
• Experience with WebApp and API security, including authentication flows, token management, and secure application design.
• Proficiency with security monitoring platforms such as Datadog, SIEM tools, EDR/endpoint security.
• Solid understanding of incident response processes, forensics basics, threat detection, and vulnerability management.
• Relevant certifications (CISSP, CISM, CCSP, GIAC, AWS Security Specialty, etc.) will be preferred.
• Experience securing modern development pipelines (GitHub, GitLab, Terraform, containers, Kubernetes).
• Strong documentation skills.
• Familiarity with Jira workflows and structured project management frameworks.
• Strong communication skills and ability to collaborate across cross-functional teams.
• Have solid written and verbal English skills.
• Ability to maintain a positive work attitude.
• Initiative and drive to do great things.

ABOUT THE COMPANY/BENEFITS

Plan A Technologies is an American software development and technology advisory firm that brings top-tier engineering talent to clients around the world. Our software engineers tackle custom product development projects, staff augmentation, major integrations and upgrades, and much more. The team is far more hands-on than the giant outsourcing shops, but still big enough to handle major enterprise clients.

Read more about us here: www.PlanAtechnologies.com .

Location: Work From Home 100% of the time, or come in to one of our global offices. Up to you.

Great colleagues and an upbeat work environment: You'll join an excellent team of supportive engineers and project managers who work hard but don't ever compete with each other.

Benefits: You’ll get a generous vacation schedule, Brand New Laptop, and other goodies.