Company OverviewSenior Security Engineer (Cloud & Identity Focus)
SiteOne Landscape Supply is the largest national distributor of landscaping products across the United States and Canada. As a leading supplier of wholesale goods for green industry professionals, we have a long history of serving those who design, build, and maintain outdoor spaces – from lawns and gardens to golf courses, sport fields and more. We pride ourselves on knowing our customers and their business better than anyone else and providing them with a one-stop shop of extensive inventory covering irrigation, lighting, turf and landscape maintenance, hardscapes, nursery, and pest control supplies.
At SiteOne, we are passionate about delivering an outstanding customer experience and will stop at nothing to help our customers win. We know that our associates are the key to this success, and our commitment to the SiteOne DNA and support for our associates through development programs, benefits, and perks align with our vision to "Be a Great Place to Work for Our Associates". We foster a culture of safety, teamwork, and continuous improvement. With over 700 locations and exciting expansion ahead, now is the perfect time to join SiteOne and grow Stronger Together™!
Position OverviewRole Summary
The Senior Security Engineer (Cloud & Identity Focus) reports to the Manager of Network & Cloud Security and serves as a senior engineer responsible for securing SiteOne’s cloud, identity, and enterprise technology environments.
While Cloud and Identity Security are the primary focus areas, this is not a narrowly scoped specialist role. At SiteOne, Security Engineers are expected to contribute across a broad range of security, infrastructure, operational, and business initiatives. The successful candidate must be equally comfortable leading strategic projects, responding to critical incidents, improving operational processes, and partnering with teams across the business to deliver practical security outcomes.
This position requires a security professional who can balance strong security practices with business enablement. Success in this role comes from understanding how to reduce risk while helping the business move forward, building trusted relationships, and continuously improving SiteOne’s security posture through thoughtful engineering, automation, and collaboration.
The ideal candidate is a self-starter who takes ownership, adapts to evolving priorities, and is comfortable maintaining direction in a fast-paced enterprise environment with minimal supervision.
What Success Looks Like
- You take ownership of complex security initiatives and drive them through completion.
- You are a trusted advisor and escalation point for both technical teams and business stakeholders.
- You identify opportunities to improve security, automate processes, and reduce operational friction.
- You can balance security requirements with business objectives and help teams achieve both.
- You contribute beyond your primary area of expertise and willingly step into new challenges as organizational needs evolve.
- You help mature SiteOne’s security capabilities, processes, and technologies while maintaining a practical, business-focused approach.
Key Responsibilities – Cloud & Identity Security
- Design, implement, and maintain secure cloud and identity solutions across SiteOne’s hybrid environment.
- Serve as a subject matter expert for Okta, Microsoft Entra ID / Azure, Microsoft 365, AWS, DLP technologies, and CASB/SaaS security platforms.
- Lead identity initiatives including SSO, MFA, lifecycle management, privileged access, and API security.
- Apply Zero Trust, least-privilege, and defense-in-depth principles.
- Identify opportunities for automation, simplification, and control enhancements.
Key Responsibilities – Security Engineering & Project Management
- Lead security initiatives from concept through implementation and operational support.
- Partner with Infrastructure, Architecture, Operations, and business teams to design secure and scalable solutions.
- Provide technical guidance during security reviews, technology evaluations, and major projects.
- Develop standards, documentation, and repeatable processes that mature the security program.
- Evaluate emerging technologies and provide guidance on security risks and controls.
Key Responsibilities – Security Operations & Incident Response
- Act as a senior escalation point for complex security incidents, investigations, and operational issues.
- Lead root cause analysis and remediation activities.
- Support vulnerability management, access management, and security monitoring activities.
- Ensure security solutions remain operationally effective, documented, and maintainable.
- Collaborate with internal teams and external partners to resolve issues impacting business operations.
Key Responsibilities – Security Program Maturity & Business Enablement
- Help advance SiteOne’s security program through process improvements, governance enhancements, and technology modernization.
- Build strong relationships with stakeholders to promote secure business outcomes.
- Provide practical, risk-based recommendations that support both security and business objectives.
- Assist with audit, compliance, and risk management activities as needed.
- Contribute to broader IT and business initiatives when security expertise is required.
Key Responsibilities – Emerging Technology & Innovation
- Assess security implications of AI, automation, and emerging technologies.
- Participate in designing secure approaches for new business capabilities and technology adoption.
- Evaluate emerging threats and recommend appropriate mitigations.
Skills We Are SeekingRequired Qualifications
- 7+ years of experience in Information Security, Cybersecurity Engineering, Cloud Security, Identity Management, or related fields.
- Demonstrated experience leading security projects and initiatives from planning through execution.
- Strong hands-on experience with Okta, Microsoft Entra ID / Azure, and Microsoft 365.
- Strong understanding of SSO, MFA, identity federation, SAML, OAuth, OIDC, identity lifecycle management, privileged access management, cloud security architecture, and DLP technologies.
- Experience supporting incident response, problem resolution, and operational security activities.
- Ability to communicate effectively with technical teams, leadership, and business stakeholders.
- Strong analytical, troubleshooting, and decision-making skills.
- Proven ability to work independently, manage competing priorities, and deliver results.
Preferred Qualifications
- Experience with AWS security services and cloud-native security controls.
- Experience with Prisma Cloud, CASB platforms, Microsoft Purview, or related technologies.
- Familiarity with NIST, ISO 27001, CIS Controls, COBIT, or ITIL frameworks.
- Knowledge of SOX, PCI-DSS, and data privacy regulations.
- Experience mentoring engineers and influencing security practices across teams.
- Exposure to AI security, data governance, or emerging technology risk management.
Education & Certifications
- Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or equivalent practical experience preferred.
- CISSP, CCSP, SecurityX (CASP+), SC-100, SC-300, or Okta certifications are a plus.
Compensation & Benefits:
- Compensation for this role starts from $120,000 annually, with final compensation determined by experience, skills, location, and internal equity. This position is also eligible for short- and long-term incentive bonuses/variable compensation
- Medical, Dental and Vision plans
- Paid Time Off, Paid Holidays
- DailyPay available!
- 401k with company match
- Tuition Reimbursement
- Lucrative Associate Referral Program
- Company Apparel and Work Boot Vouchers
- Opportunity for Advancement
- Paid Training and Business Certifications Available
- Free Counseling Services/Employee Assistance Program
- Life Insurance and Short- and Long-Term Disability Insurance
- Product Discounts
- Most Branches never work Sundays!
THE INFORMATION CONTAINED HEREIN IS NOT INTENDED TO BE AN EXHAUSTIVE LIST OF ALL RESPONSIBILITIES, DUTIES AND QUALIFICATIONS REQUIRED OF INDIVIDUALS PERFORMING THE JOB. THE QUALIFICATIONS DETAILED IN THIS JOB DESCRIPTION ARE NOT CONSIDERED THE MINIMUM REQUIREMENTS NECESSARY TO PERFORM THE JOB, BUT RATHER AS GUIDELINES. THEY MAY VARY FROM POSITION TO POSITION.
SiteOne Landscape Supply is strongly committed to providing equal employment opportunities for all associates and all applicants for employment. All employment decisions at SiteOne-including those relating to hiring, promotion, transfers, benefits, compensation, placement, and termination-will be made without regard to race, color, national origin, genetic information, creed, sex, sexual orientation, gender, gender identity, religion, age, veteran status, uniform service, pregnancy, disability, or any other factor protected by applicable law.
If you are ever unsure whether a message is really from SiteOne, here’s how to protect yourself from recruiting scams:
- SiteOne will never ask for payment, sensitive personal info, or documents over email, messaging apps., or interviews
- All SiteOne job openings and updates will be posted on our official careers page: https://careers.siteone.com/
- SiteOne job related emails will be sent with a @siteone.com. All other variations are likely fraudulent.
- You can always reach our SiteOne team directly at Recruiting@siteone.com to confirm
Starting pay will depend on factors such as location and experience and will always meet or exceed applicable state and local minimum wage laws.