Manager, Security Engineering

HireRight is the premier global background screening and workforce solutions provider. We bring clarity and confidence to vetting and hiring decisions through integrated, tailored solutions, driving a higher standard of accuracy in everything we do. Combining in-house talent, personalized services, and proprietary technology, we ensure the best candidate experience possible. PBSA accredited and based in Nashville, TN, we offer expertise from our regional centers across 200 countries and territories in The Americas, Europe, Asia, and the Middle East. Our commitment to get it right every time, everywhere, makes us the trusted partner of businesses and organizations worldwide.

This role leads the Security Engineering function, responsible for the design, implementation, and continuous improvement of technical security controls across infrastructure, applications, and cloud environments.

The position focuses on strengthening control effectiveness, driving automation, and embedding security into engineering and operational workflows. This role partners closely with Security Operations, Infrastructure, DevOps, and GRC to reduce risk and support business growth.

This role is focused on Security Engineering and does not directly own, but an contribute to, Security Operations or Incident Response functions.

Platform Ownership & Control Maturity

• • • Endpoint Security (EDR)
    • Email Security & Data Protection
    • Web Proxy & DLP
    • Web Application Firewall (WAF)
    • Encryption & Key Management
    • Vulnerability Management
    • IAM Governance (UARs, RBAC support)
    • Increasing maturity and effectiveness in all security controls
    • Policy governance and tuning
    • Reducing false positives and operational friction
    • Transitioning controls from monitoring to enforcement
    • Ensuring scalability and documentation

DevSecOps & Cloud Security

• Embed security into CI/CD pipelines and cloud provisioning workflows
• Drive adoption of secure-by-default standards (CIS benchmarks, secure images)
• Evaluate and implement application security tooling (Snyk, SAST, IaC scanning)
• Partner with engineering teams to reduce risk early in development

Vulnerability & Risk Reduction

• Own vulnerability management strategy and execution
• Prioritize remediation based on exploitability and business risk
• Improve automation and tracking (e.g., Qualys to Jira integration)
• Reduce repeat findings and systemic issues

Security Metrics & Reporting

• Define and implement KPI framework across Security Engineering
• Establish dashboards to track risk reduction, platform health, and operational efficiency
• Provide reporting to leadership on program effectiveness
• Drive a metrics-based culture focused on outcomes

Operational Excellence

• Improve service delivery for security-related requests and escalations
• Reduce manual processes through automation
• Establish and maintain runbooks and documentation
• Ensure continuity across all supported platforms

Vendor & Tool Strategy

• Manage security tooling lifecycle (selection, implementation, renewal)
• Rationalize overlapping tools and reduce cost
• Lead adoption of strategic tools

• Bachelor’s degree in Cybersecurity, Engineering, or equivalent practical experience
• 5+ years of experience in security engineering, infrastructure security, or related technical roles
• Strong hands-on experience with endpoint security, network security, and system hardening
• Experience with enterprise security technologies such as WAF, secure web gateways/proxies, email security platforms, and encryption mechanisms.
• Experience collaborating with Infrastructure, Cloud, IT, and SOC teams in a production environment
• Familiarity with security and compliance frameworks such as SOC 2, ISO 27001, and NIST

Preferred Skills:

• Experience implementing and operating enterprise security controls across multiple domains (endpoint, email, network, cloud)
• Experience integrating security into CI/CD pipelines and cloud environments
• Familiarity with data protection and DLP strategies across multiple channels (endpoint, web, email)
• Experience with vulnerability management and risk prioritization at scale
• Experience supporting or partnering with compliance and audit programs (SOC2, ISO, PCI, etc.)
• Strong ability to translate security requirements into practical engineering solutions

HireRight offers a competitive benefit package which includes:

• Medical
• Dental
• Vision
• Paid Life/AD&D Insurance
• Voluntary Life Insurance
• Short & Long Term Disability
• Flexible Spending Accounts
• 401K
• Generous Vacation and Sick Program
• 10 Paid Holidays
• Education Assistance Program
• Business Casual Attire
• Generous Referral Program
• Employee Discounts and Rewards
• And much more!
• All resumes are held in confidence. Only candidates whose profiles closely match requirements will be contacted during this search.
  
  
  

HireRight, LLC is an Equal Opportunity Employer

Minorities / Females / Veterans / Disabilities

HireRight does not accept unsolicited resumes through or from search firms or staffing agencies. All unsolicited resumes will be considered the property of HireRight and HireRight will not be obligated to pay a placement fee

This job description in no way states or implies that these are the only duties to be performed by a team member’s occupying this position. Team members may be required to perform other related duties as assigned, to ensure workload coverage. Team members are required to follow any other job-related instructions and to perform any other job-related duties requested by their supervisor. This job description does not constitute an employment agreement between the employer and team member and is subject to change by the employer as the organizational needs and requirements of the job change. This job description is subject to change at any time.