Sr Cloud Security Engineer

SiteOne Landscape Supply is the largest national distributor of landscaping products across the United States and Canada. As a leading supplier of wholesale goods for green industry professionals, we have a long history of serving those who design, build, and maintain outdoor spaces – from lawns and gardens to golf courses, sport fields and more. We pride ourselves on knowing our customers and their business better than anyone else and providing them with a one-stop shop of extensive inventory covering irrigation, lighting, turf and landscape maintenance, hardscapes, nursery, and pest control supplies.

At SiteOne, we are passionate about delivering an outstanding customer experience and will stop at nothing to help our customers win. We know that our associates are the key to this success, and our commitment to the SiteOne DNA and support for our associates through development programs, benefits, and perks align with our vision to "Be a Great Place to Work for Our Associates". We foster a culture of safety, teamwork, and continuous improvement. With over 700 locations and exciting expansion ahead, now is the perfect time to join SiteOne and grow Stronger Together!

Role Summary

The Senior Cloud & Identity Security Engineer reports to the Cloud and Network Security Manager and serves as a technical owner and delivery lead for security initiatives across SiteOne’s hybrid cloud and on‑premises environments. This role goes beyond day‑to‑day administration and requires a senior‑level professional who can lead security projects end‑to‑end, make sound architectural decisions, and take ownership of outcomes with minimal supervision.

While the primary focus is cloud and identity security, this role is intentionally broad. The successful candidate will wear multiple hats, adapt to evolving priorities, and expand into adjacent security domains as needed — owning those areas from design through execution. This role partners closely with Infrastructure, Architecture, Operations, and business stakeholders to enable secure, scalable solutions that support SiteOne’s growth.

This position offers a dynamic workday that includes leading security initiatives, resolving complex security issues that impact business operations, mentoring others, and continuously improving SiteOne’s security posture in a fast‑paced enterprise environment.

What Success Looks Like in This Role

• You take ownership of security initiatives and drive them to completion
• You are trusted as an escalation point
• You proactively improve security, not just react to issues
• You adapt to new challenges and confidently expand into new security domains

Key Responsibilities

Cloud & Identity Security (Primary Focus)

• Own and secure SiteOne’s hybrid cloud and identity environments using Zero Trust, least‑privilege, and defense‑in‑depth principles
• Serve as the senior subject matter expert and technical owner for:
• • Okta (OIE & Classic)
  • Azure / Entra ID
  • Microsoft 365 & SharePoint
  • CASB
  • AWS
  • Prisma / Cortex Cloud
  • DLP platforms
• Lead identity and access strategy including SSO, MFA, lifecycle management, and API access
• Identify opportunities for automation, simplification, and control improvement, and drive those enhancements to completion

Architecture, Engineering & Project Ownership

• Design, implement, and evolve scalable security architectures aligned to business needs
• Act as project owner for security initiatives — defining scope, driving execution, coordinating stakeholders, and delivering results
• Partner with Infrastructure, Architecture, and Operations teams to solve complex security challenges
• Provide senior‑level guidance and technical leadership during design reviews and major initiatives

Operations, Incident Response & Escalation

• Serve as the final escalation point for complex identity, access, and cloud security issues
• Lead security investigations and incident response efforts when required
• Own access‑related troubleshooting across platforms, coordinating with technical teams and business owners
• Ensure operational security controls remain effective, documented, and well‑maintained

AI & Emerging Technology Security

• Contribute to the security of AI‑enabled and agentic systems using modern threat‑modeling and defense‑in‑depth approaches
• Evaluate emerging technologies and identify security risks, mitigations, and governance needs

Broader Security Ownership

• Expand into and own additional security domains as priorities evolve (e.g., data protection, endpoint, SaaS security, governance)
• Take accountability for security outcomes, not just individual tasks

Required Qualifications

• 5–7+ years of senior‑level experience implementing and administering cloud and identity platforms in an enterprise environment
• Demonstrated experience acting as a technical lead or project owner, not just an individual contributor
• Strong hands‑on expertise with:
• • Okta, Azure / Entra ID, and Microsoft 365 (required)
• Deep understanding of identity, access, and device trust concepts, including:
• • Okta Identity Engine (OIE) and Classic
  • SSO, MFA
  • Lifecycle Management (OIM/OIG)
  • SAML, OIDC, OAuth
  • API Access Management
• Strong experience with Data Loss Prevention (DLP), including:
• • Information protection and data classification
  • Endpoint, network, and cloud DLP
  • Insider risk / threat management
• Ability to communicate complex security concepts clearly to both technical and non‑technical audiences
• Comfortable working independently, making decisions, and owning results

Preferred Qualifications

• Experience with security and IT frameworks such as NIST, ISO 27001, COBIT, or ITIL
• Knowledge of SOX, PCI, and data privacy regulations
• Familiarity with modern attack techniques, including AI‑driven threats
• Experience mentoring junior engineers or influencing security practices across teams

Education

• Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or equivalent practical experience preferred
• Relevant certifications such as CISSP, CCSP, or CompTIA SecurityX are a plus

Compensation & Benefits:

• Competitive Compensation
• Medical, Dental and Vision plans
• Paid Time Off, Paid Holidays
• DailyPay available!
• 401k with company match
• Tuition Reimbursement
• Lucrative Associate Referral Program
• Company Apparel and Work Boot Vouchers
• Opportunity for Advancement
• Paid Training and Business Certifications Available
• Free Counseling Services/Employee Assistance Program
• Life Insurance and Short- and Long-Term Disability Insurance
• Product Discounts
• Most Branches never work Sundays!

THE INFORMATION CONTAINED HEREIN IS NOT INTENDED TO BE AN EXHAUSTIVE LIST OF ALL RESPONSIBILITIES, DUTIES AND QUALIFICATIONS REQUIRED OF INDIVIDUALS PERFORMING THE JOB. THE QUALIFICATIONS DETAILED IN THIS JOB DESCRIPTION ARE NOT CONSIDERED THE MINIMUM REQUIREMENTS NECESSARY TO PERFORM THE JOB, BUT RATHER AS GUIDELINES. THEY MAY VARY FROM POSITION TO POSITION.

SiteOne Landscape Supply is strongly committed to providing equal employment opportunities for all associates and all applicants for employment. All employment decisions at SiteOne-including those relating to hiring, promotion, transfers, benefits, compensation, placement, and termination-will be made without regard to race, color, national origin, genetic information, creed, sex, sexual orientation, gender, gender identity, religion, age, veteran status, uniform service, pregnancy, disability, or any other factor protected by applicable law.

If you are ever unsure whether a message is really from SiteOne, here’s how to protect yourself from recruiting scams:

• SiteOne will never ask for payment, sensitive personal info, or documents over email, messaging apps., or interviews
• All SiteOne job openings and updates will be posted on our official careers page: https://careers.siteone.com/
• SiteOne job related emails will be sent with a @siteone.com. All other variations are likely fraudulent.
• You can always reach our SiteOne team directly at 

  Recruiting@siteone.com

   to confirm

Starting pay will depend on factors such as location and experience, and will always meet or exceed applicable state and local minimum wage laws.