Senior Security Engineer


About the Role
The Senior Security Engineer will architect and implement security controls to ensure the confidentiality, integrity, and availability of computer networks, systems, and applications. The Senior Security Engineer designs security technology including defensive security controls, secure infrastructure, systems and operational tools, security response tooling and processes, and security guidelines and guardrails.

This position will work closely with the broader Technology team and key business stakeholders across all departments to support a comprehensive security program. This includes ensuring compliance with defined security policies, processes, and standards. As a member of the Security team, the Security Engineer will elevate the Security program by utilizing “secure-by-design”, “defense-in-depth”, and “least-privilege” practices in support of cybersecurity best practices, industry standards, frameworks, regulations, policies, and procedures.

Responsibilities

• Leverage prior expertise in securing infrastructure components and networks to review existing security architecture and tooling for gaps and improvements.
• Perform architectural review of existing infrastructure and new M&A and collaborate with cross-functional teams to ensure the security of both on-premises and cloud-based infrastructure. 
• Architect security program elements such as vulnerability management, SIEM. DLP and CASB.
• Use zero-trust principles toarchitect and implement security measures for cloud environments.
• Coordinate, review and resolve annual 3^rd party penetration test and security assessment. 
• Lead and execute blue team and incident response tabletop exercises.  Lead or participate in incident response as required.  
• Develop and maintain scripts to automate security processes and tasks.
• Integrate security solutions into existing workflows for improved efficiency.

Preferred Qualifications

• Bachelor’s degree in IT, Management, or Leadership related fields.
• Ten (10) plus years of cybersecurity, risk management, and compliance experience in financial services, information technology or related industry.
• Advanced Certifications (CISSP, CEH) preferred.
• Familiarity with industry frameworks, such as NIST, CIS and ISO.
• Demonstrated expertise in architecting security tools (SIEM, DLP, SOAR, IAM, EndPoint, IDPS).
• In-depth experience implementing vulnerability management programs and solutions such as Nessus, Qualys, Rapid7, OpenVas, or similar.
• Deep knowledge of penetration testing standards.
• Strong analytical and critical thinking skills and the ability to organize work in a logical, thorough, and succinct manner.
• Strong scripting and automation skills (Python, PowerShell, etc.).
• Highly self-motivated, goal-orientated, and self-directed to handle multiple ongoing tasks.
• Flexibility to adapt to changing assignments and ability to effectively prioritize.
• Effective written and verbal English communication at all levels.
• Demonstrated ability to operate and innovate in a small team with a fast paced environment, balancing both strategic and tactical needs.
• Experience with managing and assessing cybersecurity controls across a broad range of threat vectors.

This role is to be filled outside the states of California and Colorado.

#LI-KH1