Cybersecurity Senior Engineer I

At Armanino, you determine your career path. This means it's possible to pursue challenges you are passionate about, in industries you care about.

Armanino is proud to be Among the top 20 Largest Accounting and Consulting Firms in the Nation and one of the Best Places to Work. We have a community of resources that are ready and willing to support your ideas, build your skills and expand your professional network. We want you to integrate all aspects of your life with your career. At Armanino, we know you don’t check-out of life when you check-in at work. That’s why we’ve created a unique work environment where your passions, work, and family & friends can overlap. We want to help you achieve growth by giving you access to a network of smart and supportive people, willing to listen to your ideas. 

Job Responsibilities

• Design and implement security controls across cloud and on-premises environments 

• Build security automation using PowerShell, Python, or infrastructure as code 

• Configure and optimize security tools (SIEM, EDR, DLP, CASB, vulnerability scanners) 

• Implement zero trust security principles across identity, network, and data 

• Partner with infrastructure, networking, and DevOps teams on secure designs 

• Secure Azure and AWS environments with native and third-party controls 

• Implement Microsoft Defender, Sentinel, Purview, and Entra ID security features 

• Design and enforce cloud security policies and governance 

• Monitor cloud security posture and remediate misconfigurations 

• Support secure AI/ML platform implementation 

• Configure and maintain network security controls (firewalls, DLP, IDS/IPS) 

• Implement network segmentation and micro-segmentation 

• Design secure network architecture for M&A integrations 

• Monitor network traffic for threats and anomalies 

• Support VPN, remote access, and secure connectivity solutions 

• Build detection rules and alerts in SIEM platforms 

• Develop incident response playbooks and automation 

• Perform threat hunting and security investigations 

• Conduct vulnerability assessments and penetration testing coordination 

• Analyze security logs and forensic artifacts 

• Evaluate, deploy, and maintain security technologies 

• Tune security tools to reduce false positives and improve detection 

• Create dashboards and reports for security metrics 

• Integrate security tools with ITSM and automation platforms 

• Document security tool configurations and procedures 

Requirements

• Minimum 3 years in cybersecurity engineering or security operations 

• Hands-on security tool implementation and configuration 

• Cloud security experience (Azure or AWS) 

• Network security and architecture experience 

• Scripting and automation experience 

• Security architecture and control frameworks (NIST, CIS) 

• Cloud security (Azure or AWS security services) 

• Network security technologies (firewalls, IDS/IPS, DLP, proxies) 

• Endpoint security (EDR, DLP, device management) 

• Identity and access management (Entra ID, Active Directory) 

• SIEM platforms and log analysis 

• Strong problem-solving and analytical thinking 

• Self-directed with ownership of technical domains 

• Clear technical communication to varied audiences 

• Collaboration across technical and business teams 

• Continuous learning mindset for evolving threats and technologies

Preferred Qualifications

• Microsoft security stack expertise (Defender, Sentinel, Purview, Entra ID) 

• Palo Alto, CrowdStrike, or similar enterprise security tools 

• Container and Kubernetes security 

• DevSecOps practices and CI/CD security 

• Penetration testing or red team experience 

• Professional services or consulting background 

• Certifications: CISSP, Azure Security Engineer, GIAC certifications, OSCP 

• Scripting (PowerShell, Python, Bash) 

• Infrastructure as code (Terraform, ARM templates, CloudFormation) 

"Armanino" is the brand name under which Armanino LLP and Armanino Advisory LLC, independently owned entities, provide professional services in an alternative practice structure in accordance with law, regulations, and professional standards. Armanino LLP is a licensed independent CPA firm that provides attest services, and Armanino Advisory LLC and its subsidiary entities provide tax, advisory, and business consulting services. Armanino Advisory LLC and its subsidiary entities are not licensed CPA firms.

Armanino provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, Armanino complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.  

Armanino expressly prohibits any form of workplace harassment based on race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, genetic information, disability, or veteran status. Improper interference with the ability of Armanino employees to perform their job duties may result in discipline up to and including discharge.  

Armanino does not accept unsolicited candidates, referrals, or resumes from any staffing agency, recruiting service, sourcing entity, or third-party paid service at any time. Any referrals, resumes, or candidates submitted to Armanino or any employee or owner of Armanino without a pre-existing agreement signed by both parties covering the submission will be considered the property of Armanino and not subject to any fees or charges. For existing agreements, a role must be approved and open to external search; otherwise, unsolicited and unapproved submittals and referrals will be considered Armanino property and free of fees. In addition, Talent Acquisition is the sole point of contact, and contacting others in our organization without Talent Acquisition’s knowledge will result in termination of contract. 

Certain states require us to disclose the pay range and benefits summary for job openings. For Colorado residents, the compensation range for this position: $95,000 - $143,800. For Washington residents, Illinois residents, New York residents, and Southern California residents, the compensation range for this position: $100,000 - $158,200. For Northern California residents, the compensation range for this position: $105,000 - $165,300. Compensation may vary based on skills, role, and location. Eligible employees at certain levels can participate in a discretionary long-term financial incentive plan, subject to plan participation rules.

Armanino has a robust offering of benefits, including: 

• Medical, dental, vision

• Generous PTO plan and paid sick time

• Flexible work arrangements

• 401K with Profit Sharing

• Wellness program

• Generous parental leave

• 11 paid holidays

For positions based in San Francisco, consistent with the SF Fair Chance Ordinance, an arrest and conviction record will not automatically disqualify a qualified applicant from consideration.  

For Individuals who would be working within the City of Los Angeles, Armanino will consider for employment all qualified applicants, including those with criminal histories, in a manner consistent with the requirements of applicable state and local laws, including the City of Los Angeles’ Fair Chance Initiative for Hiring Ordinance 

To view our Consumer Notice at Collection for job applicants, please visit: https://www.armanino.com/terms/ccpa-employee-notice/ 

We have a community of resources that are ready and willing to support your ideas, build your skills and expand your professional network.