Senior Cybersecurity Engineer

Aprio

Senior Cybersecurity Engineer at Aprio, a top CPA firm, improving cybersecurity controls and mentoring junior engineers. Leading cross-team initiatives and enhancing operational security measures.

Posted 6/9/2026full-timeRemote • 🇺🇸 United StatesSenior💰 $100,000 - $125,000 per yearWebsite

Tech Stack

Tools & technologies

AWSAzureCloudGoogle Cloud PlatformITSM

About the role

Key responsibilities & impact

You will own the operational health of one or two engineering domains, lead cross-team initiatives that touch multiple control areas, and design the patterns the rest of the team executes against.
You’re the engineer who can take a tool from “purchased” to “deployed, tuned, and instrumented,” the partner Cloud Ops and Identity call when they need a security pattern that actually works, and the senior who makes the Mid and Associate engineers better through pairing, code review, and clear standards.
You’ll also be a senior voice in architecture and decision conversations alongside the Principal Engineer and the Manager.
Lead initiatives that span Security, IT, Identity, Cloud Operations, and delivery teams — controlled rollouts, control set hardening, tool migrations. Land them without breaking production.
Design new control patterns and reference architectures. Write the decision records, runbooks, and standards the team executes against and the auditors review.
Lead the end-to-end deployment of new control sets (e.g., bringing a new EDR online, hardening a new cloud account, standing up new logging pipelines) — pilot, measure, expand, document.
Pair with Mid and Associate engineers, run design reviews, give substantive code/config review, and grow the next tier. Quality of output from less senior engineers is part of your scope.
Be the senior partner Cloud Ops, Identity, IT Service Management, GRC, and the SOC call when they need security engineering input. Solve problems with them, not at them.
Produce control evidence and architecture documentation that holds up under audit and peer review. Keep your domains’ evidence map current.

Requirements

What you’ll need

5+ years in security engineering, with hands-on responsibility for implementing controls across identity, network, cloud, endpoint, and/or monitoring.
Strong fundamentals in IAM, network segmentation, encryption / key management, and centralized logging / monitoring.
Experience with at least one major cloud platform (Azure, AWS, GCP) in a security-engineering capacity.
Ability to produce clear architecture documentation, runbooks, and decision records that hold up under audit and peer review.
Excellent written and verbal communication; able to explain tradeoffs across Security, IT, and delivery audiences in plain language.
Comfortable mentoring less senior engineers and owning quality-of-output for one or more domains.

Benefits

Comp & perks

Medical, Dental, and Vision Insurance on the first day of employment
Flexible Spending Account and Dependent Care Account
401k with Profit Sharing
9+ holidays and discretionary time off structure
Parental Leave – coverage for both primary and secondary caregivers
Tuition Assistance Program and CPA support program with cash incentive upon completion
Discretionary incentive compensation based on firm, group and individual performance
Incentive compensation related to origination of new client sales
Top rated wellness program
Flexible working environment including remote and hybrid options

ATS Keywords

✓ Tailor your resume

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

security engineeringIAMnetwork segmentationencryptionkey managementcentralized loggingmonitoringcloud securityarchitecture documentationrunbooks

Soft Skills

mentoringcommunicationcollaborationleadershipproblem-solvingcode reviewdesign reviewstandards enforcementquality assuranceclear documentation