Job Description
Over the last 20 years, Ares’ success has been driven by our people and our culture. Today, our team is guided by our core values – Collaborative, Responsible, Entrepreneurial, Self-Aware, Trustworthy – and our purpose to be a catalyst for shared prosperity and a better future. Through our recruitment, career development and employee-focused programming, we are committed to fostering a welcoming and inclusive work environment where high-performance talent of diverse backgrounds, experiences, and perspectives can build careers within this exciting and growing industry. Job Description JOB FAMILY: Cybersecurity Engineering REPORTING RELATIONSHIPS Reports to: Principal, Cybersecurity Engineering Manager Direct Reports: None Position Summary Statement We are looking for a Cybersecurity Engineer – Cloud Security to help shape and strengthen our cloud, platform, and AI security posture. You will design, implement, and continuously enhance the security controls that protect our most advanced technologies—spanning cloud-native services, enterprise applications, CI/CD pipelines, and AI/ML systems. You will collaborate closely with engineering, architecture, data, legal/compliance, and operations teams to embed secure‑by‑design principles into everyday engineering practices. In this role, you will lead risk assessments, architect robust and scalable security patterns, and ensure that our environments meet the highest standards of compliance, resilience, and operational excellence. Your work will protect the platforms that power our innovation and ensure that our adoption of cloud and AI technologies is responsible, resilient, and aligned with organizational values. We value diverse backgrounds, perspectives, and experiences, and we are committed to building a team where everyone feels they belong. We especially encourage candidates from underrepresented communities in cybersecurity and technology to apply. Our interview process focuses on problem-solving ability, practical skills, and collaborative mindset. Detailed Responsibilities/Duties Cloud, Platform & Application Security Design, implement, and maintain security controls across cloud environments (AWS, Azure, GCP) and enterprise platforms. Lead threat modeling, risk assessments, and architecture reviews for new and existing systems. Ensure alignment with CIS, HIPAA, SOC2, FedRAMP, and other regulatory or internal standards. Develop secure reference architectures and reusable guardrails for engineering teams. AI Security & Responsible AI Develop and advance foundational controls for AI/ML—including LLM usage, ML pipelines, model governance, and AI‑enabled applications. Work with stakeholders to ensure AI adoption is secure, responsible, and aligned with our ethical and regulatory commitments. Security Automation & DevSecOps Build secure-by-default tooling and CI/CD guardrails enabling developers to move quickly and safely. Automate security tasks such as vulnerability scanning, compliance checks, policy enforcement, and incident response. Integrate security telemetry into pipelines to enable continuous monitoring and automated control validation. Cross-Functional Collaboration Partner with development, operations, data, legal/compliance, and enterprise architecture to embed security into every stage of engineering. Act as a bridge across dev, security, and ops cultures, translating speed, safety, and stability needs. Communicate effectively with technical and non-technical audiences. Leadership & Influence Drive a culture of secure-by-design engineering, automation, and continuous improvement. Provide thought leadership on emerging security threats, cloud patterns, and AI risks. Mentor teams in security engineering best practices and modern automation approaches. Supervisory Responsibilities None Required Qualifications Significant experience in Cybersecurity (typically 8+ years), including hands-on experience in cloud and AI security or equivalent practical expertise gained through nontraditional paths Hands-on experience with cloud environments (AWS, Azure, GCP) and associated security frameworks. Experience designing and implementing cloud-native security controls and guardrails. Experience with CI/CD security, DevSecOps tooling, and automation-first engineering. Experience supporting on-prem and cloud (Azure preferred) distributed applications, with a deep understanding of optimal architecture supporting high availability, performance, and security Strong anal