Senior Manager, Cloud Engineering Governance - FedRAMP

About the role

We are seeking an experienced Manager of Cloud Governance to lead a team of cloud engineers responsible for governing, securing, and optimizing our multi-cloud, multi-tenant environment. This role combines people management with hands-on technical leadership across multiple Microsoft Entra tenants, our AWS Organization, cloud policy enforcement, cost optimization, and vendor relationships. The ideal candidate will own day-to-day team operations, backlog execution, and cross-functional coordination, enabling the Director to focus on strategy and stakeholder engagement.

Responsibilities

• Directly manage a small team of cloud engineers; handle hiring, coaching, performance reviews, career development, and administrative tasks (time-off, expense approvals)
• Facilitate team stand-ups, planning, and backlog refinement; break down Director-defined initiatives into well-scoped, actionable work items with the team
• Produce weekly status reports for leadership covering progress, blockers, and upcoming priorities
• Serve as primary point of contact for cloud governance requests, escalations, and issues from Engineering and other departments; collect requirements and feedback when implementing new systems, guardrails, or CSP configurations; communicate policy changes and best practices to development teams
• Develop, implement, and enforce cloud governance frameworks and policies across Azure , AWS, and SaaS platforms to meet regulatory and industry requirements
• Define and manage RBAC, tagging, and naming standards across cloud service providers
• Create and enforce policies using IaC and policy-as-code tooling (e.g., Azure Policy, AWS SCPs, Cloud Custodian, Terraform); design break-glass access and JIT privilege elevation workflows
• Oversee multiple Microsoft Entra tenants used by Engineering and other departments, including cross-tenant synchronization, identity lifecycle management (provisioning, deprovisioning, attribute-based scoping), and SAML/OIDC authentication for SaaS applications and CSPs
• Oversee hardware security key (YubiKey) lifecycle management - procurement, provisioning, and phishing-resistant authentication policies - for the FedRAMP environment
• Conduct security assessments and audits; perform root cause analysis on governance-related incidents; support compliance initiatives in regulated and compliance-heavy environments, including audit readiness and evidence collection
• Manage vendor relationships for cloud service providers and SaaS platforms within a shared responsibility model - including billing, contract negotiation, authentication configuration, and delegation to end users
• Monitor cloud usage and spending; identify and implement cost optimization strategies; evaluate licensing models and SKU options; provide regular reports on cloud costs and usage trends to senior leadership and Finance
• Contribute hands-on work as needed - writing Terraform, PowerShell, or Python for policy enforcement, automation, and infrastructure management; review infrastructure-as-code pull requests from the team; develop CI/CD pipelines for cloud policy and governance tooling deployment

Requirements

• 7+ years in cloud engineering, operations, or governance with a strong focus on Azure and AWS
• 3+ years of direct people management experience leading technical teams
• Expert-level Microsoft Entra knowledge across Entra ID, Conditional Access, Identity Protection, Privileged Identity Management (PIM), Identity Governance, and multi-tenant / cross-tenant architectures
• Strong IAM fundamentals : SAML, OIDC, RBAC, and JIT privileg

Benefits

Additional Information

About Delinea: Delinea is a pioneer in securing human and machine identities through intelligent, centralized authorization, empowering organizations to seamlessly govern their interactions across the modern enterprise. Leveraging AI-powered intelligence, Delinea's leading cloud-native Identity Security Platform applies context throughout the entire identity lifecycle - across cloud and traditional infrastructure, data, SaaS applications, and AI. It is the only platform that enables you to discover all identities - including workforce, IT administrator, developers, and machines - assign appropriate access levels, detect irregularities, and respond to threats in real-time. With deployment in weeks, not months, 90% fewer resources to manage than the nearest competitor, and a 99.995% uptime, Delinea delivers robust security and operational efficiency without compromise. Learn more about Delinea on Delinea.com , LinkedIn , X , and YouTube . Join our passionate, global team at Delinea and help us make the world a safer and more secure place. Our success is driven by world-class product leadership, outstanding engineers, and strategic investment from TPG. We value diversity, innovation, and a culture of respect and fairness. If you're ready to push boundaries and challenge the status quo in security, we want to hear from you. Apply today to help us achieve our mission.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at delinea? Share your experience