Manager, Security Engineering

Responsibilities

• Team Leadership & People Management
• Manage, mentor, and grow a dedicated team of security engineers.
• Conduct continuous performance evaluations (quarterly and annually) to guide professional development and advocate for promotions.
• Technical Strategy & Roadmap Execution
• Define and execute a forward-looking security engineering roadmap aligned with Product Engineering needs and broader business initiatives, including the secure enablement of AI technologies.
• Translate high-level business direction into actionable quarterly deliverables for the team.
• Establish and measure team success against the completion of quarterly goals and the continuous improvement of annual compliance audit results.
• Application Security & Secure SDLC
• Champion shift-left security practices, including threat modeling, secure code review, and developer security training embedded in the software development lifecycle.
• Own and scale application security tooling-SAST, DAST, and SCA platforms-to systematically surface and remediate vulnerabilities across product codebases.
• Shift the security paradigm from manual operational cleanup to building automated solutions and guardrails that eliminate entire classes of vulnerabilities.
• Evidence-Based Engineering & Cloud Security Architecture
• Lead "research spikes" to proactively investigate cloud-native environments and identify systemic security gaps before they become incidents.
• Ensure all security initiatives are rooted in clear findings and deliver exact, architectural fixes (code or configuration) to resolve them.
• Define and enforce cloud security standards spanning IAM, API security, secrets management, and container workloads across AWS environments.
• Agentic AI & LLM Security
• Define and enforce security standards for internal enterprise AI systems, including LLM-based agents, RAG pipelines, and AI-integrated workflows-covering risks such as prompt injection, data exfiltration, and privilege escalation.
• Lead threat modeling for agentic AI systems where models have access to tools, APIs, or sensitive data.
• Partner with AI/ML engineering teams to embed security review into AI development lifecycles, from model selection through deployment.
• Evaluate and deploy AI-native security tooling to augment the team's detection, triage, and remediation capacity.
• Cross-Functional Collaboration & Influence
• Act as an internal consultant and advisory body to Product Engineering teams, guiding them on secure implementation practices.
• Communicate complex, highly technical security risks effectively to non-technical project managers and stakeholders.
• Influence and negotiate with software developers to prioritize and remediate vulnerabilities within their workflows.
• Serve as the primary technical bridge between Product Engineering and Security Operations, providing guidance on cloud and Kubernetes security configurations.
• Qualifications & Technical Requirements
• Application Security: Hands-on experience with SAST, DAST, and SCA tooling (e.g., Semgrep, Snyk, V

Additional Information

About Acquia Acquia empowers the world's most ambitious brands to create digital customer experiences that matter. With open source Drupal at its core, the Acquia Digital Experience Platform (DXP) enables marketers, developers, and IT operations teams at thousands of global organizations to rapidly compose and deploy digital products and services that engage customers, enhance conversions, and help businesses stand out. Headquartered in Boston, MA, Acquia is a Great Place to Work-CertifiedTM company, is listed as one of the world's top software companies by The Software Report, and is positioned as a market leader by the analyst community. We are Acquia. We are building for the future and we want you to be a part of it! Career Exploration at Acquia Our recruitment process is designed to empower you in making the most informed decisions. Acquia is committed to providing an inclusive, transparent, efficient, and educational interview experience that cultivates exploration into career opportunities at Acquia You will discover the opportunity to grow your career here and learn from a global team that empowers you to exceed boundaries and achieve the extraordinary. Role Overview As the Manager of Security Engineering, you lead a specialized team of security engineers focused on application security, cloud security, and AI system security across Acquia's product portfolio. Operating on an evidence-based engineering model, your team proactively researches and identifies systemic security gaps to build automated controls and guardrails. By securing cloud-native applications and services across AWS, you enable Acquia's Product teams to inherit a "secure by default" foundation. You act as the critical nexus between Security Operations and Product Engineering, translating complex technical risks into actionable roadmaps that align with overarching business objectives-including the secure adoption of AI technologies.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at acquia? Share your experience