We're in alpha · Starting with US & Canada · Shipping weekly — your feedback shapes RiseMe
RiseMe
LoginSign Up
Delinea logo
Delinea Verified
Cybersecurity, Software, Identity & Access Management, SaaS

Manager, Cloud Engineering Governance - FedRAMP

Redwood City, California, United StatesRemoteContractPosted todayVisa sponsorship available

About Delinea:
Delinea is a pioneer in securing human and machine identities through intelligent, centralized authorization, empowering organizations to seamlessly govern their interactions across the modern enterprise. Leveraging AI-powered intelligence, Delinea’s leading cloud-native Identity Security Platform applies context throughout the entire identity lifecycle – across cloud and traditional infrastructure, data, SaaS applications, and AI. It is the only platform that enables you to discover all identities – including workforce, IT administrator, developers, and machines – assign appropriate access levels, detect irregularities, and respond to threats in real-time. With deployment in weeks, not months, 90% fewer resources to manage than the nearest competitor, and a 99.995% uptime, Delinea delivers robust security and operational efficiency without compromise. Learn more about Delinea on Delinea.com, LinkedIn, X, and YouTube.

Join our passionate, global team at Delinea and help us make the world a safer and more secure place. Our success is driven by world-class product leadership, outstanding engineers, and strategic investment from TPG. We value diversity, innovation, and a culture of respect and fairness. If you're ready to push boundaries and challenge the status quo in security, we want to hear from you.

Apply today to help us achieve our mission.

Summary:

We are seeking an experienced Manager of Cloud Governance to lead a team of cloud engineers responsible for governing, securing, and optimizing our multi-cloud, multi-tenant environment. This role combines people management with hands-on technical leadership across multiple Microsoft Entra tenants, our AWS Organization, cloud policy enforcement, cost optimization, and vendor relationships. The ideal candidate will own day-to-day team operations, backlog execution, and cross-functional coordination, enabling the Director to focus on strategy and stakeholder engagement.

What You'll Do:

  • Directly manage a small team of cloud engineers; handle hiring, coaching, performance reviews, career development, and administrative tasks (time-off, expense approvals)
  • Facilitate team stand-ups, planning, and backlog refinement; break down Director-defined initiatives into well-scoped, actionable work items with the team
  • Produce weekly status reports for leadership covering progress, blockers, and upcoming priorities
  • Serve as primary point of contact for cloud governance requests, escalations, and issues from Engineering and other departments; collect requirements and feedback when implementing new systems, guardrails, or CSP configurations; communicate policy changes and best practices to development teams
  • Develop, implement, and enforce cloud governance frameworks and policies across Azure, AWS, and SaaS platforms to meet regulatory and industry requirements
  • Define and manage RBAC, tagging, and naming standards across cloud service providers
  • Create and enforce policies using IaC and policy-as-code tooling (e.g., Azure Policy, AWS SCPs, Cloud Custodian, Terraform); design break-glass access and JIT privilege elevation workflows
  • Oversee multiple Microsoft Entra tenants used by Engineering and other departments, including cross-tenant synchronization, identity lifecycle management (provisioning, deprovisioning, attribute-based scoping), and SAML/OIDC authentication for SaaS applications and CSPs
  • Oversee hardware security key (YubiKey) lifecycle management - procurement, provisioning, and phishing-resistant authentication policies - for the FedRAMP environment
  • Conduct security assessments and audits; perform root cause analysis on governance-related incidents; support compliance initiatives in regulated and compliance-heavy environments, including audit readiness and evidence collection
  • Manage vendor relationships for cloud service providers and SaaS platforms within a shared responsibility model - including billing, contract negotiation, authentication configuration, and delegation to end users
  • Monitor cloud usage and spending; identify and implement cost optimization strategies; evaluate licensing models and SKU options; provide regular reports on cloud costs and usage trends to senior leadership and Finance
  • Contribute hands-on work as needed - writing Terraform, PowerShell, or Python for policy enforcement, automation, and infrastructure management; review infrastructure-as-code pull requests from the team; develop CI/CD pipelines for cloud policy and governance tooling deployment

What You'll Bring:

  • 7+ years in cloud engineering, operations, or governance with a strong focus on Azure and AWS
  • 3+ years of direct people management experience leading technical teams
  • Expert-level Microsoft Entra knowledge across Entra ID, Conditional Access, Identity Protection, Privileged Identity Management (PIM), Identity Governance, and multi-tenant / cross-tenant architectures
  • Strong IAM fundamentals: SAML, OIDC, RBAC, and JIT privilege elevation
  • Proficiency with infrastructure-as-code (Terraform preferred) and scripting (PowerShell, Python, Bash)
  • Experience with cloud policy frameworks (Azure Policy, AWS SCPs, Cloud Custodian) and tagging/naming governance
  • Experience with cloud cost optimization and financial reporting, plus vendor management for CSPs and SaaS (contracts, billing)
  • Familiarity with Agile methodologies and experience with Azure DevOps; excellent written and verbal communication with the ability to translate complex technical concepts for non-technical stakeholders

We'd Love to See:

  • Experience in regulated or compliance-heavy environments (e.g., FedRAMP, SOC 2, NIST 800-53)
  • Experience with Microsoft Government Cloud (GCC High, Azure Government)
  • Experience with AWS Organizations, consolidated billing, and multi-account governance
  • Familiarity with Zero Trust security frameworks and Azure Virtual Desktop or Windows 365 deployments
  • Familiarity with Jira Service Management (JSM) for ticketing and request workflows
  • Relevant certifications such as Microsoft Certified: Identity and Access Administrator, Azure Solutions Architect Expert, or AWS Certified Solutions Architect
  • Experience with KQL, Azure Resource Graph, or similar query and reporting tools

For this Job, Delinea is not considering candidates that need any type of US work authorization now or in the future. This includes, but is not limited to: F1-OPT, F1-CPT, H-1B, TN, L-1, J1, etc.

Why work at Delinea?

  • We're passionate problem-solvers helping the world's largest organizations protect what matters most: their human and machine identities.
  • We invest in people who are smart, self-motivated, and collaborative.
  • What we offer in return is meaningful work, a culture of innovation and great career progression.

At Delinea, our core values are STRONG and guide our behaviors and success:

  • Spirited - We bring energy and passion to everything we do
  • Trust - We act with integrity and deliver on our commitments
  • Respect - We listen, value different perspectives, and work as one team
  • Ownership - We take initiative and follow through
  • Nimble - We adapt quickly in a fast-changing environment
  • Global - We embrace diverse people and ideas to drive better outcomes

We believe weaving these core values into our day-to-day actions, and our process for hiring, evaluating, and promoting employees, helps us cultivate a work environment that embraces collaboration and camaraderie.

We take care of our employees. We offer competitive salaries, a meaningful bonus program, and excellent benefits, including healthcare insurance, as well as pension/retirement matching, comprehensive life insurance, an employee assistance program, time off plans, and paid company holidays.

*Delinea is an Equal Opportunity and Affirmative Action employer and prohibits discrimination and harassment of any type with regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.*

*Upon conditional offer of employment, candidates are required to complete comprehensive criminal background check, verification of education, and verification of employment, per employment policy. In addition, all publicly posted social media sites may be reviewed.*

Ready to apply?
You'll be redirected to Delinea's application page.