Our client, a premier professional services firm based in Midtown Manhattan, is renowned for its highly collaborative environment, exceptional work-life balance, and commitment to fostering a supportive culture of excellence.
They are seeking an experienced Senior level Information Security Engineer to join their growing IT security team. This is a full time, permananent position as a key member of their growing Information Security organization, and the role offers a hybrid work enviornment, both work from home, as well as in office.
The firm provides an industry-leading benefits package that is both comprehensive and competitive, ensuring employees are supported both professionally and personally.
Senior Engineer, Information Security
Responsibilities
- Collaborate with the information security team to maintain the security and availability of the Firm's technology systems and services.
- Support the enterprise data loss prevention program to safeguard the integrity and confidentiality of Firm data.
- Ensure compliance with security policies, standards, and guidelines.
- Utilize cybersecurity tools and techniques to analyze systems and detect/prevent malicious activities across various threat vectors.
- Identify, implement, and continuously improve system-hardening best practices.
- Stay updated on industry trends and developments in cybersecurity.
- Monitor and assess security threats, adjusting strategies to mitigate evolving risks effectively.
- Partner with cross-functional teams to integrate security best practices into development and operational processes.
- Develop reports and documentation to track incident progress and review outcomes.
- Troubleshoot and resolve security incidents as they occur.
- Ensure applications, systems, and network infrastructure comply with security policies, standards, and procedures.
- Support external audits and assessments, including remediation of any identified issues.
Qualifications
- Bachelor's degree in computer science, engineering, or a related field with 5+ years of experience in security engineering or operations.
- Expertise in security tools and technologies, such as firewalls, intrusion detection systems, SIEM, endpoint protection, and both Linux and Windows environments.
- Previous experience in an information security role, ideally within or supporting a professional services firm.
- Strong knowledge of security control, monitoring, and analysis technologies.
- Familiarity with internationally recognized standards, such as SOC2 and ISO27001.
- Exceptional written and verbal communication skills, including the ability to convey security risks to non-technical audiences.
- Strong interpersonal skills with a focus on teamwork, facilitation, and negotiation.
- Current certifications or willingness to pursue certifications like CISSP, CCSP, Azure Security Engineer Associate, or other relevant qualifications.