Talent.com
Lead Cybersecurity Engineer

Lead Cybersecurity Engineer

Dutch Bros.Tempe, AZ, United States
21 hours ago
Job type
  • Full-time
Job description

It's fun to work in a company where people truly believe in what they are doing. At Dutch Bros Coffee, we are more than just a coffee company. We are a fun-loving, mind-blowing company that makes a difference one cup at a time.

Position Overview :

We're looking for a Lead Cybersecurity Engineer to drive the design, implementation, and automation of advanced security controls across our enterprise. This role will help shape our Zero Trust and Secure Service Edge (SSE) strategy, partner closely with software and infrastructure teams, and ensure our technology environment remains resilient, scalable, and secure.

The ideal candidate combines deep hands-on technical expertise with strong problem-solving skills and a passion for continuous improvement. You'll work at the intersection of security engineering, cloud architecture, and automation to help us stay ahead of evolving threats.

  • Design, implement, and maintain enterprise-grade security solutions aligned with Zero Trust and SSE principles.
  • Lead development and automation of security controls using Python, REST APIs, and modern DevOps pipelines (CI / CD, IaC, SOAR).
  • Engineer integrations between security platforms, infrastructure, and applications to improve visibility, detection, and response capabilities.
  • Collaborate with cross-functional teams (infrastructure, software, IAM, DevOps) to embed security into architecture and development workflows.
  • Manage and optimize SIEM, EDR, Vulnerability Management, and DLP platforms.
  • Support configuration and governance of IAM and PIM platforms (Entra ID, Okta, CyberArk, Auth0).
  • Provide technical leadership in evaluating, deploying, and tuning Zero Trust and SSE platforms (Cloudflare, Cisco, Microsoft, Palo Alto Networks).
  • Drive continuous improvement in automation, detection engineering, and response playbooks.
  • Contribute to compliance initiatives (PCI DSS, SOX, NIST, CIS 18) through engineering, documentation, and evidence collection.
  • Research and prototype the use of Large Language Models (LLMs) and prompt engineering for cybersecurity automation and analysis.
  • Mentor junior engineers and contribute to security standards, processes, and technical documentation.

Job Qualifications :

  • 6+ years of hands-on experience in security engineering roles
  • 1+ year of hands-on experience in software engineering.
  • Strong understanding of security principles, software development, IAM, networking, and application security.
  • Extensive hands-on experience with :

    • Zero Trust methodologies and SSE platforms (Cloudflare, Cisco, Microsoft, Palo Alto Networks)

  • Python, REST APIs, and data formats (JSON, CSV, XML)
  • Security automation (SOAR, CI / CD, IaC)
  • Azure and AWS environments
  • IAM / PIM solutions (Entra ID, CyberArk, Okta, Auth0
  • Linux and Windows administration
  • SIEM platforms (Microsoft Sentinel, Splunk, Rapid7)
  • Vulnerability Management platforms (Qualys, Rapid7, Tenable)
  • Experience with :

    • DevOps methodologies and principles

  • Next-Generation Firewalls (Palo Alto, Fortinet, Sophos, Checkpoint)
  • Compliance frameworks (PCI DSS, SOX, NIST, CIS 18)
  • EDR platforms (Microsoft, CrowdStrike, SentinelOne)
  • DLP solutions (Microsoft Purview, Symantec, Trellix)
  • Large Language Models (LLMs) and prompt engineering concepts
  • Strong problem-solving, communication, and documentation skills.
  • Proven ability to collaborate with cross-functional technical teams.

    • Certifications

  • Preferred / Highly Desired :

    • CISSP, CCSP, OSCP

  • AWS Certified Solutions Architect - Associate
  • AWS Certified Security - Specialty
  • Microsoft Certified : Azure Security Engineer Associate
  • CCNA
  • HashiCorp Certified : Terraform Associate

    • Location Requirement :

    This role is located in Tempe, Arizona. This position is required to be in office 4 days per week (Mon-Thurs); Fridays are optional remote work days.

    Key Result Areas (KRAs) :

    Secure Access Service Edge (SASE) Implementation & Optimization

    Objective : Establish a unified, cloud-delivered security and networking architecture to protect users, devices, and applications across our HQ and Shops :

  • Design and deploy SASE components (SWG, CASB, ZTNA, SD-WAN) achieving ≥ 95% policy enforcement consistency across locations and devices.
  • Migrate ≥ 80% of remote user traffic through SASE. Deprecate VPN models
  • Achieve centralized policy visibility and reporting for all edge traffic through a single management console (e.g., Cloudflare, Palo Alto, Cisco).

    • Microsoft Security Ecosystem Integration

    Objective : Maximize protection and ROI from the Microsoft 365 E5 and Entra security stack :

  • Achieve ≥ 90% coverage of Conditional Access and PIM enforcement across Entra
  • Deploy Microsoft Defender suite (Endpoint, Cloud Apps, Identity) to ≥ 95% of eligible assets.
  • Integrate Sentinel SIEM with all major data sources (SASE, EDR, IAM, vulnerability management) for unified threat detection.
  • Reduce mean time to detect (MTTD) and respond (MTTR) to incidents by ≥ 30% through automation and correlation within Sentinel.

    • Security Automation and AI-driven Operations

    Objective : Leverage AI and automation to streamline detection, response, and compliance workflows :

  • Automate ≥ 60% of repetitive SOC tasks using SOAR, AI models, and scripted playbooks (Python, Logic Apps).
  • Deploy LLM-based enrichment and triage for security alerts, reducing ops review time by ≥ 40%.
  • Integrate automated patch validation and remediation workflows using IaC and CI / CD pipelines.
  • Implement anomaly detection models for user and entity behavior, improving proactive risk identification accuracy by ≥ 25%.

    • Zero Trust Maturity Advancement

    Objective : Achieve a measurable increase in Zero Trust maturity across identity, device, application, and data layers :

  • Engineer data pipelines to aggregate authentication, device posture, and access logs from Entra ID, SASE, and EDR into centralized telemetry (e.g., Sentinel, Splunk).
  • Develop automation scripts to continuously validate compliance of users and devices with Zero Trust policies (MFA, device health, network segmentation).
  • Create dashboards and analytics to measure Zero Trust posture (policy coverage, noncompliance rates, anomalous access trends).
  • Integrate validation outcomes into CI / CD or SOAR workflows for real-time remediation and reporting.

    • Skills :

  • Change Management
  • Budgetary Responsibility
  • Business Plan Development
  • Collaborative
  • Communication
  • Critical Problem Solving
  • Delegation

    • Physical Requirements :

  • In-Office Environment : Must be able to work in a busy, crowded, and loud office with frequent distractions and interruptions

    • Must be able to collaborate in-person with occasional impromptu in-person meetings

  • Office Conditions : Adaptability to typical office conditions, which may include exposure to air conditioning, heating, artificial lighting, and varying noise levels
  • Mobility : Ability to sit, stand, reach, twist, stretch, and work at a desk for long stretches. Must be able to occasionally move or lift office items up to 25 pounds
  • Hearing Requirements : Hearing must be sufficient or correctable to ensure clear understanding of spoken information, including participating in virtual meetings and phone calls. Use of hearing aids or other assistive devices is acceptable if needed.
  • Reading and Writing Proficiency : Ability to read and write in English is essential for processing documents, drafting reports, and following up on necessary actions. Proficiency in written communication is required to handle job-related tasks effectively.
  • Vision Requirements : Vision must be adequate or correctable to perform essential job duties, such as reading documents on a computer screen and using other visual tools. Use of corrective lenses or other measures to meet visual requirements is expected if needed.
  • Technology Proficiency : Must be proficient in operating a computer and other office productivity tools such as printers, scanners, and collaboration software.
  • Effective Communication : Must possess strong verbal and written communication skills to interact effectively with team members, clients, and other stakeholders via email, video conferencing, and other in office communication tools.

    • Compensation : DOE

    If you like wild growth and working in a unique and fun environment, surrounded by positive community, you'll enjoy your career with us!

    Create a job alert for this search

    Cybersecurity Engineer • Tempe, AZ, United States

    Related jobs
    • Promoted
    Retention Rep (Six-Figure Opportunity)

    Retention Rep (Six-Figure Opportunity)

    EchoStarCASA GRANDE, Arizona, United States
    Full-time
    Are you highly competitive, motivated by results, and looking for a role where your earning potential has no limits? Our award-winning Inside Sales & Retention teams excel at driving customer decis...Show moreLast updated: 1 day ago
    • Promoted
    Offensive Cybersecurity Engineer (Web and Cloud)

    Offensive Cybersecurity Engineer (Web and Cloud)

    ViasatTempe, AZ, United States
    Full-time
    At Viasat, we're on a mission to deliver connections with the capacity to change the world.For more than 35 years, Viasat has helped shape how consumers, businesses, governments and militaries arou...Show moreLast updated: 12 days ago
    • Promoted
    Offensive Cybersecurity Engineer (Hardware)

    Offensive Cybersecurity Engineer (Hardware)

    ViasatTempe, AZ, United States
    Full-time
    At Viasat, we're on a mission to deliver connections with the capacity to change the world.For more than 35 years, Viasat has helped shape how consumers, businesses, governments and militaries arou...Show moreLast updated: 12 days ago
    • Promoted
    Cybersecurity Technical Account Manager (TAM)

    Cybersecurity Technical Account Manager (TAM)

    Lumifi CyberScottsdale, AZ, United States
    Full-time
    Cybersecurity Technical Account Manager.We are looking for a dedicated, ambitious and self-driven Technical Account Manager (TAM) with Exabeam experience and knowledge. As a Technical Account Manage...Show moreLast updated: 12 days ago
    • Promoted
    Lead Information Security Engineer- Certificate Management Services

    Lead Information Security Engineer- Certificate Management Services

    Wells FargoChandler, AZ, United States
    Full-time
    Wells Fargo is seeking a Lead Information Security Engineer in Technology as part of the Chief Technology Office (CTO).Learn more about the career areas and lines of business at wellsfargojobs.The ...Show moreLast updated: 12 days ago
    • Promoted
    Director of Global Operations

    Director of Global Operations

    GrowTech Industries, LLCGoodyear, AZ, US
    Full-time
    GTI Energy is seeking a dynamic and results-driven Director of Operations to lead and scale our manufacturing and operational capabilities. This role is responsible for overseeing all day-to-day ope...Show moreLast updated: 30+ days ago
    • Promoted
    • New!
    Insider Risk Engineer - Cyber

    Insider Risk Engineer - Cyber

    Software ResourcesPhoenix, AZ, United States
    Permanent
    Software Resources has an immediate, direct hire job opportunity for an Insider Risk Engineer - Cyber with a major corporation in Phoenix, AZ. User Entity Behavior Analytics (UEBA).Must be able to i...Show moreLast updated: 17 hours ago
    • Promoted
    Lead Adversarial Security Engineer

    Lead Adversarial Security Engineer

    TrellixPhoenix, AZ, United States
    Full-time
    Lead Adversarial Security Engineer.Trellix, the trusted CISO ally, is redefining the future of cybersecurity and soulful work. Our comprehensive, GenAI-powered platform helps organizations confronte...Show moreLast updated: 1 day ago
    • Promoted
    Retention Rep - High Earning Potential

    Retention Rep - High Earning Potential

    EchoStarCASA GRANDE, Arizona, United States
    Full-time
    Are you highly competitive, motivated by results, and looking for a role where your earning potential has no limits? Our award-winning Inside Sales & Retention teams excel at driving customer decis...Show moreLast updated: 1 day ago
    • Promoted
    Cyber Security Risk Management Engineer

    Cyber Security Risk Management Engineer

    ViasatTempe, AZ, United States
    Full-time
    At Viasat, we're on a mission to deliver connections with the capacity to change the world.For more than 35 years, Viasat has helped shape how consumers, businesses, governments and militaries arou...Show moreLast updated: 30+ days ago
    • Promoted
    Remote Sales & Trading Associate - AI Trainer ($50-$60 / hour)

    Remote Sales & Trading Associate - AI Trainer ($50-$60 / hour)

    Data AnnotationMaricopa, Arizona
    Remote
    Full-time +1
    We are looking for a finance professional to join our team to train AI models.You will measure the progress of these AI chatbots, evaluate their logic, and solve problems to improve the quality of ...Show moreLast updated: 10 days ago
    • Promoted
    Lead Information Security Engineer - Palo Alto Firewalls

    Lead Information Security Engineer - Palo Alto Firewalls

    Wells FargoChandler, AZ, United States
    Full-time
    Wells Fargo is seeking a Lead Information Security Engineer - Palo Alto Firewalls to join our Chief Technology Office (CTO). Learn more about the career areas and business divisions at wellsfargojob...Show moreLast updated: 1 day ago
    • Promoted
    Leader, Solutions Engineer, Global Enterprise Security

    Leader, Solutions Engineer, Global Enterprise Security

    CiscoPhoenix, AZ, United States
    Full-time
    Location : Territory is Central and West U.We have an exciting opportunity to join our leadership team as a Solutions Engineering Leader within our Global Security Sales Organization! We are searchi...Show moreLast updated: 1 day ago
    • Promoted
    Remote Finance Director - AI Trainer ($50-$60 / hour)

    Remote Finance Director - AI Trainer ($50-$60 / hour)

    Data AnnotationMaricopa, Arizona
    Remote
    Full-time +1
    We are looking for a finance professional to join our team to train AI models.You will measure the progress of these AI chatbots, evaluate their logic, and solve problems to improve the quality of ...Show moreLast updated: 30+ days ago
    • Promoted
    Inbound Retention Rep - Career Growth

    Inbound Retention Rep - Career Growth

    EchoStarCASA GRANDE, Arizona, United States
    Full-time
    Are you highly competitive, motivated by results, and looking for a role where your earning potential has no limits? Our award-winning Inside Sales & Retention teams excel at driving customer decis...Show moreLast updated: 1 day ago
    • Promoted
    Cloud Cyber Security Solutions & Advisory - VP

    Cloud Cyber Security Solutions & Advisory - VP

    MUFGTempe, AZ, United States
    Full-time
    Do you want your voice heard and your actions to count?.Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world’s leading financial groups. Across the globe, we’re 150...Show moreLast updated: 12 days ago
    • Promoted
    Inbound Sales Representative - Unlimited Commission

    Inbound Sales Representative - Unlimited Commission

    EchoStarMARICOPA, Arizona, United States
    Full-time
    Are you highly competitive, motivated by results, and looking for a role where your earning potential has no limits? Our award-winning Inside Sales & Retention teams excel at driving customer decis...Show moreLast updated: 1 day ago
    • Promoted
    Cyber Warfare Technician

    Cyber Warfare Technician

    US NavyMesa, Arizona, United States
    Part-time
    Languages are more than just communication-they're cultural codes that need to be analyzed and in some cases, broken.As a Cryptologic Technician Interpretive (CTI) you're more than a linguist-you'r...Show moreLast updated: 30+ days ago