About the Team
The Network Security team delivers innovative solutions to sophisticated problems, serving as a critical component of the Workday Security organization's mission to guarantee the security and safety of Workday customers, users, and their data. We design, build, and operate critical security controls for customer data environments, overcoming constantly shifting - and exciting - technical challenges to ensure trust in the Workday service.

Our team is responsible for operating the systems and controls that we build, advising other Workday business units on ways to securely implement services and infrastructure. We partner with our information security team to ensure policy compliance and address gaps. We operate data centers and cloud environments across the globe and are constantly tackling new challenges as we seek to improve our network security posture and capabilities.

About the Role

This role will support one or more direct or indirect contracts with the U.S. Federal Government which, due to federal government security requirements, mandates that all Workday personnel working on the contracts be United States citizens (naturalized or native).

As a Senior Cybersecurity Engineer, you will be responsible for designing and implementing systems and security controls in production environments, developing automation for deployment and validation tasks, partnering with internal customers to drive projects forward, and researching new technologies and opportunities for improving how we operate.

This is a technical role that will require collaboration with team members across the world, bringing to bear a strong ability to communicate, detail, and document ideas and work. It's expected to have a taste for challenging yourself - and hopefully the team! It is expected that you are a self-starter, able to lead sophisticated initiatives and have organizational impact.

You'll be encouraged to improve your skills with training, conferences, and domain-specific workshops. Other members of the team will be available to mentor and support, and there are opportunities for stretch projects outside of normal work responsibilities. You will have the flexibility of a hybrid schedule.

About You

This role may require a security clearance at the TS/SCI w/CI Poly level. Applicants must have the ability to obtain and maintain a U.S. government issued security clearance. An active TS/SCI w/CI Poly is preferred.

May be required to be on site at client locations in the DC, MD, and VA (DMV) area.

Basic Qualifications

• 7+ years of direct, technical experience related to network, platform, or infrastructure security
• 2+ years crafting, deploying, and operating web application firewall controls (WAF)
• Operational experience supporting DDoS detection, WAF, and IPS in a production environment
• Expertise with Terraform, GoLang or Python, Kubernetes operators and familiarity with using these and/or other tools to deliver consistent, scalable security solutions

Other Qualifications

• Preferred DoD 8570/8140 compliant with at least IAT Level II certification, including a current Computing Environment (CE) credential and one approved specialty certification (e.g., CompTIA CySA+, GICSP, CASP+)
  Experience deploying infrastructure components, and application and network security systems in AWS and GCP
• Proven understanding of public cloud network security concepts and hands-on experience documenting and implementing security controls of the same
• Understanding of application, system, and security threats, attack techniques and mitigating controls in public cloud and containerized environments
• Demonstrated experience designing, implementing, and maintaining network security controls within the context of audited compliance frameworks - such as FedRAMP and DoD IL4

Workday Pay Transparency Statement

The annualized base salary ranges for the primary location and any additional locations are listed below. Workday pay ranges vary based on work location. As a part of the total compensation package, this role may be eligible for the Workday Bonus Plan or a role-specific commission/bonus, as well as annual refresh stock grants. Recruiters can share more detail during the hiring process. Each candidate's compensation offer will be based on multiple factors including, but not limited to, geography, experience, skills, job duties, and business need, among other things. For more information regarding Workday's comprehensive benefits, please click here.

Primary Location: USA.VA.Reston

Primary Location Base Pay Range: $159,600 USD - $239,400 USD

Additional US Location(s) Base Pay Range: $144,400 USD - $258,000 USD

Our Approach to Flexible Work

With Flex Work, we're combining the best of both worlds: in-person time and remote. Our approach enables our teams to deepen connections, maintain a strong community, and do their best work. We know that flexibility can take shape in many ways, so rather than a number of required days in-office each week, we simply spend at least half (50%) of our time each quarter in the office or in the field with our customers, prospects, and partners (depending on role). This means you'll have the freedom to create a flexible schedule that caters to your business, team, and personal needs, while being intentional to make the most of time spent together. Those in our remote "home office" roles also have the opportunity to come together in our offices for important moments that matter.