Jobs · Engineering · California

Cyber Security Review Program Lead

Pacific Life · Newport Beach, CA · 1 wk ago
Engineering$118k–$145k/yrFull-time

About the role

The Senior Security Engineer plays a crucial role in identifying, assessing, and communicating cyber and IT risks to support effective enterprise risk management. They own the design, governance, and delivery of the Cyber Security Review program, ensuring consistent and scalable execution.

Responsibilities

  • Own the end-to-end design, governance, and continuous improvement of the Cyber Security Review program, including methodology, standards, intake processes, and review frameworks.
  • Lead reviews of new technology projects, purchases, and organizational changes, ensuring cyber and IT risk considerations are identified and addressed before implementation.
  • Conduct re-reviews of existing critical applications, identifying control gaps, emerging risks, and areas requiring remediation or formal risk acceptance.
  • Manage the relationship, execution, and oversight of our external managed service provider supporting the security review process.
  • Define and maintain meaningful program metrics, reporting, and stakeholder communications that create transparency into review activity, risk findings, and program performance.
  • Identify and execute on opportunities to improve program effectiveness through process innovation, tooling, automation, or the application of emerging technologies such as AI.
  • Partner with the Engineering Service Lead and Service Manager to align program strategy with broader service objectives, contributing to roadmaps and capability development.

Requirements

The ideal candidate should have 6+ years of experience in security engineering, risk management, or a related technical discipline within a large enterprise environment. Demonstrated experience owning or leading a security review, risk assessment, or related program, including responsibility for methodology design, process governance, and delivery outcomes is required.

  • Deep technical experience across a broad range of technologies to support thorough and effective security assessments.
  • Experience conducting security reviews of technology projects, system changes, or application portfolios, with the ability to identify control gaps, design weaknesses, and areas of elevated risk.
  • Strong process design and improvement experience, with the ability to build structured, repeatable, and scalable review processes from the ground up or mature existing ones.
  • Experience engaging independently with technical and non-technical stakeholders, balancing constructive partnership with objective, independent challenge.

Qualifications

Preferred qualifications include familiarity with project intake, change management, or architecture review processes, and experience with risk management frameworks such as NIST Cybersecurity Framework, COBIT 2019, or the NIST Privacy Framework. Previous experience as a senior individual contributor, acting lead, or subject matter authority, with a track record of influencing outcomes without formal people management responsibilities, is also desirable.

Skills

Strong interpersonal skills with the ability to establish credibility, build trust, and drive alignment across technical and business stakeholders are essential. Solution-oriented, focusing on practical and scalable outcomes, and executing quickly while maintaining appropriate rigor and risk awareness are desired behaviors.

Benefits

At Pacific Life, we prioritize your health and well-being, offering comprehensive benefits including medical, dental, vision, and wellbeing reimbursement accounts. We also provide generous paid time off options, paid parental leave, and an adoption assistance program. Our competitive 401(k) savings plan includes company match and an additional contribution regardless of participation.

Pay

The base pay range for the Senior Security Engineer role in Newport Beach is $137,000 - $168,000, while in Omaha it is $118,000 - $145,000. Most employees are eligible for additional incentive pay.

Schedule

This role is classified as hybrid, requiring four days per week on-site and one day remote. The location can be either Newport Beach, California or Omaha, Nebraska.

Similar jobs

Cyber Security Lead

Dunhill Professional Search & Government SolutionsGermantown, MD· 3 days ago
Information Technology$130k/yrapply on recruiterflow.com

Cyber Security Lead

SprezzaturaUnited States· 1 wk ago
RemoteEngineering$120k–$140k/yrapply on workforcenow.adp.com