Sr Cybersecurity Engineer

Your work days are brighter here.

Were obsessed with making hard work pay off for our people our customers and the world around us. As a Fortune 500 company and a leading AI platform for managing people money and agents were shaping the future of work so teams can reach their potential and focus on what matters most. The minute you join youll feel it. Not just in the products we build but in how we show up for each other. Our culture is rooted in integrity empathy and shared enthusiasm. Were in this together tackling big challenges with bold ideas and genuine care. We look for curious minds and courageous collaborators who bring sun-drenched optimism and drive. Whether youre building smarter solutions supporting customers or creating a space where everyone belongs youll do meaningful work with Workmates whove got your return well give you the trust to take risks the tools to grow the skills to develop and the support of a company invested in you for the long haul. So if you want to inspire a brighter work day for everyone including yourself youve found a match in Workday and we hope to be a match for you too.

About the Team

About the Role

As a Senior Cybersecurity Engineer on the Network Security team you will play a pivotal role in designing and delivering the security controls that protect Workdays customer data environments across AWS GCP and private cloud environments. You are both a builder and a leader architecting scalable security solutions while mentoring team members and consulting with partners across the organization to ensure security is embedded into everything we do.

In this role you will be responsible for:

• Architect and Build: Design and implement next-generation network security controls patterns and templates across AWS GCP and private cloud environments.

• Automate: Enhance the security of the enterprise by building scalable systems for effective continuous monitoring and enforcement of expected security posture using tools such as Terraform GoLang and Python.

• Mentor: Serve as a technical lead by driving initiatives forward and guiding team members in their development.

• Consult: Evaluate production infrastructure designs to determine security requirements and conduct rigorous network security assessments.

• Collaborate: Partner with Cybersecurity and Trust teams to develop policies standards and guidelines aligned with industry best practices (CIS NIST FedRAMP) and implement control enforcement against those standards.

• Operational Excellence: Provide operational support for critical security infrastructure including DDoS detection WAF and firewall controls (appliances and cloud-native) in a production environment.

About You

Basic Qualifications

• 7 years of progressively responsible experience in network security architecture and design

• Hands-on experience deploying network security controls across AWS and/or GCP including cloud-native security controls (e.g. AWS Network Firewall WAF GCP Cloud Armor)

• Proficient in at least one scripting language (Python Go) and automation tooling (Terraform Ansible or Consul)

Other Qualifications

• Deep understanding of public cloud environments (AWS GCP) with the ability to design deploy and manage secure network architectures across multi-cloud and hybrid infrastructure ensuring consistent security posture at scale

• Extensive experience with security platforms including industry-leading firewalls and web application firewall (WAF) controls with the ability to evaluate implement and operate these platforms to protect customer data environments effectively

• Strong foundation in information security including understanding of application system and network security threats attack techniques and mitigating controls with the ability to implement effective security policies and ensure compliance with data protection regulations

• Skilled in security engineering with experience designing and implementing secure network architectures managing encryption authentication intrusion detection and firewall technologies and developing incident response plans to address security breaches

• Demonstrated commitment to security by design with the ability to integrate security measures into the architecture of systems from the outset including risk assessment methodologies and the design of systems that can resist tolerate and recover from security events

• Proven ability to leverage AI and agentic capabilities to streamline processes and deliver engineering and security solutions at scale. Experience using these evolving toolsets to ensure consistency of control implementation across disparate systems is a strong differentiator.

• Experience with host-based network security systems (e.g. Illumio Calico) and large-scale data center networking

• Experience supporting DDoS detection IPS/IDS tooling and participating in an on-call rotation for production networks

• Ability to align security programs with industry standards such as CIS NIST and FedRAMP

• Organized thorough problem solver with the ability to build consensus among multiple partners and document complex security architectures clearly

• Excellent written and verbal communication skills with the ability to build and leverage positive relationships across the organization

Workday Pay Transparency Statement (For EU Locations Only)

Listed below is the base salary range applicable to this position. Workday pay ranges (and the precise pay offered to the successful candidate) are based on a number of objective criteria such as relevant experience and skills and educational qualifications level of responsibility demands of the role work location and business need. As a part of the total compensation package this role may be eligible for the Workday Bonus Plan or a role-specific commission/bonus as well as annual refresh stock grants awarded by Workday Inc. For more information regarding Workdays comprehensive benefits please click here.

Our Approach to Flexible Work

With Flex Work were combining the best of both worlds: in-person time and remote. Our approach enables our teams to deepen connections maintain a strong community and do their best work. We know that flexibility can take shape in many ways so rather than a number of required days in-office each week we simply spend at least half (50%) of our time each quarter in the office or in the field with our customers prospects and partners (depending on role). This means youll have the freedom to create a flexible schedule that caters to your business team and personal needs while being intentional to make the most of time spent together. Those in our remote home office roles also have the opportunity to come together in our offices for important moments that matter.

Pursuant to applicable Fair Chance law Workday will consider for employment qualified applicants with arrest and conviction records.

Workday is an Equal Opportunity Employer including individuals with disabilities and protected veterans.

At Workday we are committed to providing an accessible and inclusive hiring experience where all candidates can fully demonstrate their skills. If you require assistance or an accommodation at any point please email .

Are you being referred to one of our roles If so ask your connection at Workday about our Employee Referral process!

At Workday we value our candidates privacy and data security. Workday will never ask candidates to apply to jobs through websites that are not Workday Careers.

Please be aware of sites that may ask for you to input your data in connection with a job posting that appears to be from Workday but is not.

In addition Workday will never ask candidates to pay a recruiting fee or pay for consulting or coaching services in order to apply for a job at Workday.