Security Operations Engineer

Security Operations Engineer

New York City – On-Site – Excellent Salary + Extremely Competitive Package (including commuting costs covered and free breakfast and lunch)

This Asset Management firm who serve one of NYC’s leading financial services powerhouses is currently seeking a Security Operations Engineer to oversee the typical daily management and change tasks of the firm’s various IT security platforms, as well as participate in the life cycling of these platforms when required.

This is an excellent opportunity for an experienced Security Operations Engineer to take that next step into a challenging position with a world-renowned organisation.

About the Company:

The firm’s objective is to achieve long-term capital appreciation through the construction of a diversified investment portfolio.

They employ a flexible approach and have the ability, either through selected third-party managers or directly, to invest in a broad range of asset classes in order to achieve their goals

The firm focuses on the following areas:

• Hedge funds
• Private equity and credit
• Real assets
• Direct investments
• Limited trading in public markets, including equities, swaps, options, and forwards

The firm has Assets Under Management (AUM) – US $25 billion

About the Security Operations Engineer Vacancy:

This is the first hire under the new Head of Security/Infrastructure and they are therefore looking for someone who has leadership experience but is still hands-on. You should be security-focused within Infrastructure systems.

Being in Networks, understanding what is needed, and building the security/risk program. There is a collegiate culture that values openness, creativity and world-class attention to detail.

The goal is to be the best-in-class in Network Security. They are looking for someone younger/eager, “scrappy”, but also refined in front of investment professionals. Ideally someone with 5-10 years’ experience and ready to take on more ownership. There is a need to be hands-on networking, have worked with routers and switches.

What Your Day-to-Day Looks Like:

You will act as a liaison between the firm and its outsourced SOC provider to address alert escalation and incident management.

This individual will work closely with the networking and systems teams to maintain a strong security posture across the firm and promote a security-first culture mindset across all IT teams.

Strong hands-on skills with the management and configuration of firewall/proxy/IPS, 802.1x, VPN, SEIM, DLP, PIM/PAM, MDR/XDR, vulnerability scanners, and IDP/SSO systems are a must for this role.

What You Will Be Doing:

• Oversee the health and configuration of the firm’s security infrastructure to maintain alignment with industry best practices.
• Work closely with an outsourced SOC team around incident escalation, as well as addressing remediation of new vulnerabilities as they are discovered.
• Strategize with the different team leads on security-focused initiatives in each of their respective practices.
• Generate and update documentation around both new and existing security processes.
• Participate in the oversight of the firm’s security policy, escalation, and incident response plans.
• Participate in/oversee periodic security audits and penetration tests.
• Promote cyber security as a mindset across all IT teams and actively work to embed this mindset into the company culture.

Examples of Technologies You’ll Support:

• Palo Alto firewalls
• Blue Coat / Broadcom Secure Web Gateway
• MFA Platforms – RSA, Duo
• MS AD / Azure AD Identify and Authentication
• Basic switching and routing
• SEIM
• Qualys / Tenable vulnerability management
• Endpoint Security Platforms – Crowdstrike, Sentinel One, Trellix
• PKI

Ideal Requirements for the Security Operations Engineer Developer Vacancy:

• Bachelor’s degree in IT or Cybersecurity; Cybersecurity and networking-focused certifications are highly desirable.
• Several years of hands-on experience in security operations engineering
• In-depth knowledge of commonly used enterprise IT systems, including firewalls, web proxies, switches, routers, Microsoft Windows / Active Directory, syslog, PKI, etc.
• Strong understanding of cybersecurity concepts and frameworks, i.e. defense in depth, zerotrust, least privilege, NIST, CIS, SOC2, etc.
• Ability to work in a small team environment, think on your feet, and openly share knowledge to better those with whom you work.
• Strong interpersonal skills, self-driven and quick learner.
• Familiarity with project management tools and ITSM platforms, i.e. ServiceNow, JIRA, etc.
• Troubleshooting / Problem-solving mindset.
• Ability to communicate ideas clearly and logically in both technical and non-technical settings
• Detail-oriented with the ability to prioritize multiple tasks/requests
• Willingness to work 4 days a week on-site in Central NYC