Position

The Security Engineer will architect, implement, and operate secure solutions across cloud, data, application, AI, and identity domains. This role will drive engineering excellence, leveraging deep technical expertise to safeguard distributed systems, public cloud infrastructure, and sensitive data. This role is hands-on, focused on building, automating, and scaling security controls that enable business innovation while minimizing risk.

Responsibilities

• Design, build, and maintain secure cloud environments, ensuring robust protection for applications, data, and AI workloads.
• Engineer and automate security controls for identity & access management, data protection, and application security across hybrid and multi-cloud platforms.
• Develop and integrate security automation into CI/CD pipelines, infrastructure-as-code, and cloud-native services.
• Implement and optimize detection, response, and monitoring capabilities using SIEM, SOAR, and threat intelligence platforms.
• Collaborate with engineering, architecture, and product teams to embed security into software development, cloud operations, and AI/ML initiatives.
• Lead technical investigations, incident response, and remediation efforts for cloud, data, and application security events.
• Continuously assess emerging threats, vulnerabilities, and regulatory changes; adapt controls and processes to maintain resilience and compliance.
• Document and communicate technical risks, solutions, and best practices to technical and non-technical stakeholders.

Qualifications

• 8-15 years of fundamental engineering experience in security, systems, and software
• Deep knowledge of networking, operating systems (Windows, Linux, Unix), and distributed/cloud architectures
• Expertise in identity & access management (OAuth, OpenID), encryption, and data protection controls
• Experience with application security, vulnerability management, and secure software development lifecycle
• Knowledge of security frameworks (NIST, MITRE) and cloud security standards (CSA, CIS)
• Experience with AI/ML security, cloud-native data protection, and automation of security operations
• Familiarity with security monitoring, incident response, and threat intelligence in cloud environments

Skills

• Hands-on experience with public cloud infrastructure and security (Azure preferred; AWS/GCP a plus)
• Proficiency in scripting and automation (Python, PowerShell, Bash, etc.)
• Proficiency in security automation tools, CI/CD, infrastructure-as-code (Terraform, GitHub)
• Ability to communicate complex technical concepts clearly and collaborate across teams
• Track record of engineering excellence, integrity, and continuous learning

Compensation Range

The anticipated base salary range for this role is $175,000 to $200,000. Base salary for the role will depend on several factors, including a candidate’s qualifications, skills, competencies, and experience, and may fall outside of the range shown. In addition, this role may be eligible for a discretionary bonus. Rockefeller Capital Management offers a comprehensive benefit package including health coverage, vacation time, paid leave, retirement plan, and more. Visit careers.rockco.com to learn more about additional opportunities and benefits offerings.