Cybersecurity Engineer

At Armanino, you determine your career path. This means it's possible to pursue challenges you are passionate about, in industries you care about.

Armanino is proud to be Among the top 20 Largest Accounting and Consulting Firms in the Nation and one of the Best Places to Work. We have a community of resources that are ready and willing to support your ideas, build your skills and expand your professional network. We want you to integrate all aspects of your life with your career. At Armanino, we know you don’t check-out of life when you check-in at work. That’s why we’ve created a unique work environment where your passions, work, and family & friends can overlap. We want to help you achieve growth by giving you access to a network of smart and supportive people, willing to listen to your ideas. 

Job Responsibilities

• Design and implement security controls across cloud and hybrid (on‑premises) environments 

• Build and maintain security automation using PowerShell, Python, or Infrastructure as Code (IaC) 

• Configure and optimize security platforms (SIEM, EDR, DLP, CASB, vulnerability scanners) 

• Implement Zero Trust principles across identity, network, and data environments 

• Partner with Infrastructure, Networking, and DevOps teams to design secure solutions 

• Secure Azure and AWS environments using native and third‑party security controls 

• Implement Microsoft Defender, Sentinel, Purview, and Entra ID security capabilities 

• Design and enforce cloud security policies and governance frameworks 

• Monitor cloud security posture and remediate misconfigurations 

• Configure and maintain network security technologies (e.g., firewalls, IDS/IPS, DLP) 

• Implement network segmentation and secure connectivity solutions (VPN, remote access) 

• Develop SIEM detection rules, threat alerts, and automated incident response playbooks 

• Perform threat hunting, vulnerability assessments, and support penetration testing 

• Monitor and analyze security logs, network activity, and forensic artifacts 

• Evaluate, deploy, tune, and integrate security technologies; create dashboards and documentation 

Requirements

• Bachelor's Degree in Computer Information Systems, Cybersecurity, or a related field or equivalent experience. 

• Minimum of 3 years of experience in cybersecurity engineering or security operations to include but not limited to the following: 

• Hands‑on implementation and administration of enterprise security tools (e.g., SIEM, EDR, DLP) 

• Proven cloud security experience in Azure and/or AWS 

• Experience with network security architecture and technologies (e.g., firewalls, IDS/IPS, DLP) 

• Scripting or automation experience (e.g., PowerShell, Python, Bash) 

Preferred Qualifications

• Microsoft Security Stack expertise (Defender, Sentinel, Purview, Entra ID) 

• Experience with enterprise security platforms (e.g., Palo Alto, CrowdStrike) 

• Container and Kubernetes security experience 

• DevSecOps practices and CI/CD pipeline security 

• Professional services or consulting background 

• Infrastructure as Code tools (e.g., Terraform, ARM, CloudFormation) 

• Security tool integration with ITSM or automation platforms 

• Relevant certifications (e.g., CISSP, Azure Security Engineer Associate, GIAC, OSCP) 

"Armanino" is the brand name under which Armanino LLP and Armanino Advisory LLC, independently owned entities, provide professional services in an alternative practice structure in accordance with law, regulations, and professional standards. Armanino LLP is a licensed independent CPA firm that provides attest services, and Armanino Advisory LLC and its subsidiary entities provide tax, advisory, and business consulting services. Armanino Advisory LLC and its subsidiary entities are not licensed CPA firms.

Armanino provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, Armanino complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.  

Armanino expressly prohibits any form of workplace harassment based on race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, genetic information, disability, or veteran status. Improper interference with the ability of Armanino employees to perform their job duties may result in discipline up to and including discharge.  

Armanino does not accept unsolicited candidates, referrals, or resumes from any staffing agency, recruiting service, sourcing entity, or third-party paid service at any time. Any referrals, resumes, or candidates submitted to Armanino or any employee or owner of Armanino without a pre-existing agreement signed by both parties covering the submission will be considered the property of Armanino and not subject to any fees or charges. For existing agreements, a role must be approved and open to external search; otherwise, unsolicited and unapproved submittals and referrals will be considered Armanino property and free of fees. In addition, Talent Acquisition is the sole point of contact, and contacting others in our organization without Talent Acquisition’s knowledge will result in termination of contract. 

Certain states require us to disclose the pay range and benefits summary for job openings. For Colorado residents, the compensation range for this position: $95,000 - $143,800. For Washington residents, Illinois residents, New York residents, and Southern California residents, the compensation range for this position: $100,000 - $158,200. For Northern California residents, the compensation range for this position: $105,000 - $165,300. Compensation may vary based on skills, role, and location. Eligible employees at certain levels can participate in a discretionary long-term financial incentive plan, subject to plan participation rules.

Armanino has a robust offering of benefits, including: 

• Medical, dental, vision

• Generous PTO plan and paid sick time

• Flexible work arrangements

• 401K with Profit Sharing

• Wellness program

• Generous parental leave

• 11 paid holidays

For positions based in San Francisco, consistent with the SF Fair Chance Ordinance, an arrest and conviction record will not automatically disqualify a qualified applicant from consideration.  

For Individuals who would be working within the City of Los Angeles, Armanino will consider for employment all qualified applicants, including those with criminal histories, in a manner consistent with the requirements of applicable state and local laws, including the City of Los Angeles’ Fair Chance Initiative for Hiring Ordinance 

To view our Consumer Notice at Collection for job applicants, please visit: https://www.armanino.com/terms/ccpa-employee-notice/ 

We have a community of resources that are ready and willing to support your ideas, build your skills and expand your professional network.