Senior Director Cybersecurity Engineering

Exceed the expectations of our residential mortgage borrowers & business partners through superior service, simple processes, and effective communications.

We deliver on this mission by empowering our employees by encouraging and recognizing superior performance and innovative solutions, by promoting teamwork and divisional cooperation.
 

POSITION SUMMARY

We are seeking a strategic and technically proficient Sr Director of Cybersecurity Engineering to lead our security engineering function. This role will be responsible for designing, implementing, and managing security technologies across both on-premises and cloud environments, with a long-term vision of achieving a Zero Trust architecture.

You will lead a growing team of security engineers, including onshore and offshore resources, and play a critical role in shaping the future of cybersecurity at Newrez.

DESCRIPTION

Duties and Responsibilities

• Lead Cybersecurity Engineering Operations: Oversee the design, deployment, and maintenance of security technologies across on-premises and cloud environments (AWS, Azure), ensuring alignment with enterprise security strategy and compliance requirements.
• Team Leadership & Development: Manage and mentor a team of cybersecurity engineers, including onshore FTEs and offshore contractors. Foster a high-performance culture focused on innovation, accountability, and continuous improvement.
• On-Call Management: Own and manage the cybersecurity engineering on-call rotation. This role is expected to participate in the on-call schedule and provide escalation support for critical security incidents.
• Endpoint Detection & Response (EDR): Lead the deployment, tuning, and ongoing maintenance of EDR solutions across the enterprise. Ensure EDR tools are effectively integrated with SIEM and incident response workflows.
• SIEM & Log Engineering: Drive the development of detection rules, log parsing, and enrichment pipelines using platforms like Cribl. Ensure high-fidelity alerting and visibility across all environments.
• Security Automation: Champion the use of automation and AI-driven tools to streamline security operations, including threat detection, response, and compliance reporting. Develop scripts and tools (e.g., Python) to reduce manual effort and improve response times.
• Infrastructure Collaboration: Partner closely with infrastructure and operations teams to implement security best practices, including:
  • CIS benchmark hardening for servers, containers, and cloud workloads
  • Secure configuration management
  • Network segmentation and firewall policy audits
• Vulnerability Management: Oversee the implementation and operation of vulnerability management platforms. Ensure timely identification, prioritization, and remediation of vulnerabilities across all assets.
• Security Architecture & Zero Trust: Contribute to the strategic roadmap for achieving Zero Trust architecture. Provide guidance for secure system design, access control, and data protection.
• Incident Response Support: Act as a senior technical resource during security incidents. Provide forensic analysis, root cause investigation, and post-incident reviews.
• Policy & Compliance: Support the development and enforcement of security engineering standards, policies, and procedures. Ensure alignment with regulatory requirements and internal audit findings.

Qualifications and Education Requirements

• Bachelor’s degree in computer science, Cybersecurity, Information Systems, or a related technical field.
• 10+ years of progressive experience in cybersecurity, with at least 5 years in a leadership or senior engineering role.
• Demonstrated experience managing and scaling cybersecurity engineering teams in hybrid environments (on-premises and cloud).
• Industry certifications such as CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), CISA (Certified Information Systems Auditor), or CEH (Certified Ethical Hacker) are preferred.

Skills, Abilities, and Knowledge

• Deep expertise in cloud security architecture and operations (AWS, Azure).
• Strong proficiency in container security and orchestration (Kubernetes).
• Advanced knowledge of endpoint detection and response (EDR) platforms.
• Hands-on experience with SIEM platforms, log parsing, and data pipeline tools (e.g., Cribl).
• Proficient in scripting and automation (Python preferred); familiarity with AI-driven security tools.
• Strong understanding of network security principles, including firewall management and network segmentation.
• Experience with vulnerability management platforms and remediation workflows.
• Familiarity with secure configuration standards (e.g., CIS Benchmarks).
• Proven ability to lead and scale high-performing cybersecurity engineering teams.
• Experience managing hybrid teams (onshore and offshore).
• Strong project management and prioritization skills in a fast-paced environment.
• Ability to develop and execute strategic roadmaps (e.g., Zero Trust architecture).
• Skilled in cross-functional collaboration, especially with infrastructure, IT, and compliance teams.
• Strong analytical thinking and troubleshooting skills.
• Ability to assess complex security challenges and design scalable, effective solutions.
• Capable of conducting root cause analysis and post-incident reviews.
• Excellent verbal and written communication skills, including the ability to convey technical concepts to non-technical stakeholders.
• Strong interpersonal skills with the ability to influence and build consensus across departments.
• Experience contributing to board-level reporting.

REVISION HISTORY

Last Updated: 6/3/2025

Additional Information:

While this description is intended to be an accurate reflection of the position’s requirements, it in no way implies/states that these are the only job responsibilities. Management reserves the right to modify, add or remove duties and request other duties, as necessary.

All employees are required to have smart phones that meet Company security standards with the ability to install apps such as Okta Verify and Microsoft Authenticator. Employment will be contingent on this requirement.

Company Benefits:

Newrez is a great place to work but we are only as strong as our greatest asset, our employees, so we believe in rewarding them!

• Medical, dental, and vision insurance

• Health Savings Account with employer contribution

• 401(k) Retirement plan with employer match

• Paid Maternity Leave/Parental Bonding Leave

• Pet insurance

• Adoption Assistance

• Tuition reimbursement

• Employee Loan Program

• The Newrez Employee Emergency and Disaster Fund is a new program to support our team members

Newrez NOW:

• Our Corporate Social Responsibility program, Newrez NOW, empowers employees to become leaders in their communities through a robust program that includes volunteering, philanthropy, nonprofit grants, and more

• 1 Volunteer Time Off (VTO) day, company-paid volunteer day where all eligible employees may participate in a volunteer event with a nonprofit of their choice

• Employee Matching Gifts Program: We will match monetary employee donations to eligible non-profit organizations, dollar-for-dollar, up to $1,000 per employee

• Newrez Grants Program: Newrez hosts a giving portal where we provide employees an abundance of resources to search for an opportunity to donate their time or monetary contributions

Equal Employment Opportunity 
We're proud to be an equal opportunity employer- and celebrate our employees' differences, including race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, and Veteran status. Different makes us better.

CA Privacy Policy

CA Notice at Collection