Program Manager - Cloud Security
Upload My Resume
Drop here or click to browse · PDF, DOCX, DOC, RTF, TXT
Requirements
• 5+ years of IT security auditing experience, including working knowledge of: • Security Development Lifecycle (SDL) • Static and dynamic analysis tools • Threat modeling practices • 5+ years of experience in cloud security or network security • 2+ years of experience with at least one programming language, such as: • C#, JavaScript, C++, Java, Python • 1+ year of hands‑on experience with agentic AI and AI prompt creation • Strong technical communication skills and the ability to work directly with engineering teams. • Ability to analyze complex technical environments and validate secure development practices. • Security certifications such as: • SANS SEC401 Security Essentials • Deep understanding of cloud computing, web platforms, networking, and modern AI systems. • Experience with: • C#, JavaScript, or other modern development languages • Familiarity with secure development practices, including: • Application security testing • Static/dynamic analysis • Threat modeling • Ability to quickly ramp up on new security tools, technologies, and workflows.
Responsibilities
• You will support a large-scale Security Development Lifecycle (SDL) program that spans thousands of engineering teams building cloud services used globally across mission‑critical industries. Your work will directly influence the security posture of high‑impact cloud technologies by conducting audits of technical security controls, validating secure development practices, and developing automation that improves security oversight. This position offers the opportunity to make a meaningful individual contribution in an environment where trust, security, and engineering excellence are paramount. • Audit & Assessment • Audit & Assessment • Conduct audits of selected security controls by reviewing assessment responses and validating technical details within engineering work items. • Interface directly with engineering teams to gather additional data, perform interviews, and assess adherence to SDL expectations. • Execute the audit plan, document findings, report results, and provide clear guidance for remediation and security improvements. • Ensure engineering teams meet required SDL milestones, KPIs, and SLAs. • Security Program Support & Automation • Develop automation, durable controls, and process improvements to support the security auditing function and the broader SDL program. • Contribute to the creation and refinement of policies, best practices, and procedures used across thousands of engineering teams. • Support initiatives that strengthen secure development practices across cloud, networking, and platform services. • Operational Rhythm • Operational Rhythm • ~30% reviewing assessment submissions and validating technical implementation details. • ~20% conducting interviews with engineering teams and collecting additional evidence. • ~50% developing automation, security controls, or process enhancements for the SDL program.
Benefits
• At Blueprint, we strive to offer competitive pay that reflects the value of our team members. Compensation for this role is influenced by a variety of factors, including skills, education, responsibilities, experience, and geographic market. • For candidates based in Washington State, the anticipated salary range is $110,000 to $120,000 annually. Please note that we typically do not hire new employees at the top of the posted range. Actual starting pay will be determined based on experience, skills, and internal equity. The final salary and job title may vary depending on the selected candidate’s qualifications and could fall outside the stated range. • $110,000 to $120,000 annually