Sarai Rosenberg

Engineering Manager

San Francisco, California, United States15 yrs 6 mos experience
Highly Stable

Key Highlights

  • Transformed cloud security operations from reactive to strategic.
  • Scaled security operations to meet anticipated business needs.
  • Built partnerships to influence cloud security capabilities.
Stackforce AI infers this person is a Cloud Security Expert specializing in Infrastructure Security and Risk Management.

Contact

LinkedIn

Skills

Core Skills

Cloud SecurityPeople ManagementIamSecurity ControlsThreat ModelingRisk ManagementSecurity EngineeringIncident Response

Other Skills

RBACABACIaCRisk ReductionSecurity StrategyPKISecurity Software DevelopmentCross-Functional Relationship BuildingLeadershipPair ProgrammingPythonAlgorithmsTechnical WritingMathematicsStatistics

About

As an infrastructure security manager, I've grown teams into organizations by creating new team functions and capabilities to meet anticipated business needs. I scaled security operations to shift teams from reactive towards proactive investment modes, without getting stuck in firefighting. I coached teams to balance buying down tech debt strategically while developing new self-service IAM features and templated RBAC & ABAC capabilities that enable cloud security tooling to scale far beyond our headcount. I collaborated with platform engineering teams to align our approaches and share context proactively, building shared secure-by-default infrastructure strategies together. As an infrastructure security engineer, I've performed wide infrastructure security risk assessments, developed roadmaps for security controls on new, globally distributed bare metal infrastructure, and built org relationships from engineering and customer support to product and legal in order to provide security perspectives, identify high-leverage security opportunities, and align security work with engineering and product goals. I excel at hiring world-class talent, building partnerships, conflict resolution, and influencing systemic change to build security culture and inclusion. I have experience with bare metal infrastructure security, key management, incident response, and broad cross-functional collaboration. I have experience building vendor relationships with AWS leaders to influence getting the cloud security capabilities we need.I invest in iterative improvement (e.g., reducing false positives for on-call health), and I love teams that share knowledge routinely. I look for organizations that invest in building a healthy atmosphere of collaboration, teamwork, and mentoring.

Experience

15 yrs 6 mos
Total Experience
3 yrs 10 mos
Average Tenure
--
Current Experience

Netflix

2 roles

Manager, Cloud Security

Promoted

Jun 2023Jan 2026 · 2 yrs 7 mos · Los Gatos, California, United States

  • Scope: Responsible for Netflix's cloud security posture, from secure defaults for cloud resources to IAM ABAC & RBAC strategy & operations via IaC. Maintains over 60 critical software tools for IAM lifecycle, account lifecycle, & asset visibility, including OSS ConsoleMe.
  • People manager for Cloud Infrastructure Security and Cloud Architecture and Tooling Security teams
  • Grew Cloud Security into 2 teams of 12 reports
  • Developed and executed a Cloud Security org vision to scale into novel anticipated needs
  • Scaled increased operations load without firefighting
  • Responsible for AWS relationship with security org, successfully influenced AWS to address pain points with new features and changes
  • Created cross-functional visibility and proactive engagement that transformed cloud security operations from reactive to strategic
  • Rebuilt alignment between security and engineering leading to landing shared goals enabling business investments in platform infra & GenAI infrastructure
People ManagementCloud Security

Security Partner, Infrastructure

Oct 2020Jun 2023 · 2 yrs 8 mos · Los Gatos, California, United States

  • Led Netflix CDN security, including bare metal deployments for streaming, Live, and Cloud Gaming
  • Identified and executed on high-leverage risk reduction opportunities
  • Rebuilt trust in strained relationships to buy security a chair at the table
  • Wrote threat models, security strategies, and gap analyses to motivate prioritization of security capability roadmaps for new infrastructure
  • Designed strategic cryptographic controls for data protection in tandem with detection canaries
  • Cross-functional collaboration with stakeholders across infosec, multiple engineering orgs, legal, program management, and product management
  • On-call for Product Security Incident Response
Threat ModelingSecurity Controls

Pagerduty

Security Engineer

Apr 2018Oct 2020 · 2 yrs 6 mos · San Francisco Bay Area

  • Designed and built internal PKI: an x509 TLS certificate hierarchy with RBAC used for service-to-service communication
  • Developed and led a squad-based peer mentorship program
  • Developed and led a security learning circle for casual security education & awareness & questions over lunch
  • Gave a talk at internal "PagerCon" on Threat Modeling
  • Topics: PKI, secret management, threat modeling, incident response, vulnerability management, security education
  • Responsibilities: incident response, configuration management (Chef), maintaining security services, code reviews, design reviews, project leadership, mentoring junior engineers, interviewing
  • Languages: Python, Ruby, Elixir, Golang
  • Tools: Chef, Terraform, Vault, AWS, Splunk/Sumologic (SIEM)

Agiloft

2 roles

Implementation Team Manager

Jan 2016Oct 2016 · 9 mos · San Francisco Bay Area

  • Advised and reviewed security design changes, cipher suite changes, and upgrading deprecated technologies.
  • Managed security documentation, training on social engineering, and third-party audits, and responded to security questions from customers.
  • Led a team of implementers (front end devs) to build business process management software for customers.
  • Built automated reports from SQL DB to track KPI.
  • Advised team on access control, risk mitigation, agile development, escalation management, contract management system design, and on handling customer concerns effectively and tactfully.
  • Improved accuracy of budget quotes by revising our consultation quote process and project plan templates to accurately reflect our experiences with customer projects.
  • Increased revenue from team contributions 31% through process improvement.

Security / Analyst / Implementer

Jan 2015Jan 2016 · 1 yr · San Francisco Bay Area

  • Advised company on security and compliance standards we should pursue.
  • Managed security documentation, training on social engineering, and third-party audits, and responded to security questions from customers.
  • Improved performance for customers for save record actions taking more than 2 seconds from 7% to 0.6%.
  • Designed and built customer projects and enhancements to our default configuration, including a streamlined company and contact entry system that was specifically requested by customers.
  • ETL of customer data, led requirements gathering, designed data models, and built maintainable algorithms for workflow automation.

Folsom lake college

Adjunct Instructor

Jan 2008Jan 2014 · 6 yrs · Folsom, CA

  • Planned and instructed mathematics courses on arithmetic, algebra, geometry, trigonometry, precalculus, business mathematics, math discovery, and linear algebra.
  • Wrote lecture notes, worksheets, quizzes, and exams in LaTeX.
  • Assembled a collection of printed and digital LaTeX worksheets.

Education

Haverford College

B.S. with Honors — Mathematics

Hackbright Academy

Full-time Fellowship

Jan 2018Jan 2018

Stackforce found 100+ more professionals with Cloud Security & People Management

Explore similar profiles based on matching skills and experience

SK

Sachin Kanaujia

Solutions Architect

at Google

Delhi, India21 yrs 10 mos exp
Solution ArchitectureGoogle MapsAgile Project ManagementGeographic Information Systems (GIS)Product Management
WP

Wilton Pangoria

Category Manager

at HP

India24 yrs 9 mos exp
Sales ManagementBusiness DevelopmentProduct Management
NB

Nitesh.G Bhat

Transition and Transformation Manager

at HCLTech

Bengaluru, India23 yrs 9 mos exp
Cloud MigrationProject ManagementAutomation
AM

Avdhesh Mathur

Manager HRBP

at Paytm

North Delhi, India11 yrs 8 mos exp
HR OperationsRecruitmentEmployee EngagementTalent Acquisition
AU

Anamika Upadhyay

DevOps Engineer

at Paytm

Noida, India4 yrs exp
DevOpsCloud Computing
PC

Priyarha Chowdary

Senior Product Manager

at Microsoft

Bengaluru, India8 yrs 10 mos exp
Product StrategyData-driven Decision Making
Terry Rodery

Terry Rodery

Principal Threat Intelligence Engineer

at NVIDIA

Denver, United States23 yrs 9 mos exp
Pradeep Kumar

Pradeep Kumar

Outbound Product Manager

at ServiceNow

Aptos, United States27 yrs 7 mos exp
Identity and Access Management (IAM)Mobile Application DevelopmentGame Development