[Hiring] Senior Cybersecurity Engineer, Advanced Security @Presidio

Role Description

Join Presidio’s Cybersecurity Advanced Security team as a Senior Cybersecurity Engineer. This role is a customer-facing technical authority within the Cybersecurity Advanced Security Services organization. Responsibilities include:

• Architecting, deploying, and optimizing solutions that provide edge security, Zero Trust, Network Threat Analytics, and enhanced performance.
• Supporting broader Secure Service Edge (SSE) and Secure Access Service Edge (SASE) delivery engagements.
• Serving as a trusted technical advisor to enterprise customers, guiding architectural decisions across various security domains.
• Contributing to multi-vendor SSE/SASE architectures.
• Mentoring new talent and collaborating with global experts.

Travel Requirements: This is a remotely based role within the Continental US with 10% associated travel as required.

Responsibilities Include

• Lead high-profile delivery engagements across solutions such as Cloudflare.
• Serve as a senior technical escalation point for complex security, performance, and availability challenges.
• Lead enterprise migrations to Cloudflare and SSE/SASE platforms.
• Define phased migration strategies with rollback planning and risk mitigation.
• Produce and maintain reference architectures, technical documentation, and delivery artifacts.
• Lead the design, deployment, and optimization of Cloudflare-based security and performance solutions.
• Execute complex security engagements, including:
  • Web Application Firewall (WAF) and API security (API Shield, schema validation, JWT, mTLS)
  • Layer 3/4 and Layer 7 DDoS mitigation
  • Zero Trust Network Access (Access, Gateway, WARP, Tunnels)
  • Secure Web Gateway (SWG) and DNS-layer security
  • Global Load Balancing, Argo Smart Routing, and traffic steering
• Support the delivery of SSE and SASE architectures in collaboration with Advanced Security, Network, and Cyber Advisory teams.
• Apply working knowledge of SSE components, including:
  • Secure Web Gateway (SWG)
  • Cloud Access Security Broker (CASB) concepts
  • Zero Trust Network Access (ZTNA)
  • Data protection and inspection in transit
• Contribute to SASE architectures that integrate:
  • Cloud-delivered security services
  • Identity-first access models
  • SD-WAN and branch connectivity (where applicable)
• Architect solutions leveraging global anycast networks, CDN caching hierarchies, and distributed edge compute.
• Apply deep expertise in:
  • TCP/IP and OSI layers 1–7
  • BGP, global routing, and traffic engineering
  • DNS, DNSSEC, and edge-based traffic control
  • HTTP/2, HTTP/3, QUIC, and TLS 1.2/1.3
• Design hybrid and multi-cloud origin architectures optimized for security, performance, and resiliency.
• Design and deploy solutions across AWS, Azure, and GCP environments.
• Automate security and network configurations using Terraform, APIs, and CI/CD pipelines.
• Develop Cloudflare Workers using JavaScript/TypeScript for edge logic, security controls, and performance optimization.
• Integrate Cloudflare services with SIEM, SOAR, IAM, and security operations platforms.
• Collaborate with Cyber Engineering team members globally to ensure service consistency, share best practices, and deliver with excellence across regions.
• Act as a multi-platform subject matter expert, advising clients on architecture, platform optimization, and operational best practices.
• Troubleshoot and resolve complex issues during deployment and post-implementation across all supported platforms.
• Create high-quality technical documentation, including solution designs, runbooks, and as-built records.
• Mentor junior engineers to elevate team-wide technical capability.

Qualifications

• Bachelor’s degree in Cybersecurity, Computer Science, or related field, or equivalent work experience and/or military experience.
• 5–8 years’ experience in progressively senior cybersecurity roles, with demonstrable expertise in Application security and Zero Trust transformation projects.
• 5-8 years’ experience in senior customer-facing technical roles (Solutions Architect, Senior Engineer, Technical Consultant).
• 3 years demonstrated threat intelligence and incident response experience.
• Demonstrated success delivering enterprise-scale security, networking, or cloud security solutions.
• Experience supporting Fortune 500 or large enterprise customers strongly preferred.
• Minimum 2 years hands-on experience with at least two of the following: Cloudflare and Zscaler.
• Technical expertise in SASE, SSE, ZTNA, SWG, CASB, DLP, SD-WAN, and Email Security.
• Proven track record delivering complex, multi-platform security projects in enterprise environments.
• Strong communication skills, capable of engaging technical and executive stakeholders alike.

Requirements

• Multi-platform administration and optimization.
• Hands-on experience with one or more of the following:
  • TCP/IP, OSI layers 1–7, BGP, DNS
  • CDN, anycast, and edge architectures
  • WAF, DDoS mitigation, API security
  • Zero Trust and identity-centric security
  • Python, PowerShell, Terraform, JavaScript, and CI/CD Pipelines
  • Zero-Trust solution, CDN, and WAF deployment at scale
• Strong troubleshooting and root cause analysis skills in complex environments.
• Ability to translate security strategy into actionable technical designs.

Desired Skills and Professional Experience

• Vendor certifications such as Operate Cloudflare DNS, Cloudflare Zero Trust 301, Cloudflare Zero Trust 401, ZDTA, ZDTE, ZDXA.
• Experience with hybrid/multi-cloud deployments (AWS, Azure, GCP).
• Familiarity with emerging threats and adversary tradecraft.
• Advanced certifications highly valued.