Job Description

In this role, you will be a member of the Infrastructure & Operations team and play an important role in developing and implementing security methods to monitor and safeguard data and systems from existing and emerging security threats. You will;

• Manage the endpoint & monitoring solutions portfolio to protect the firm’s technology estate, including but not limited to technologies that evaluate, identify, and track vulnerabilities, activities, and other potential threats.
• Partner closely with the cyber organization and other IT security solutions engineers to establish common standards and objectives for the firm’s security solutions, supporting broader IT security functional objectives as needed.
• Actively rationalize the firm’s legacy suite of endpoint security agents and environment monitoring solutions against marketplace solutions to optimize the portfolio.
• Implement, integrate, and upgrade the portfolio of solutions for endpoint, monitoring, and logging.
• Partner closely with information security, compliance, and IT leadership to architect solutions that uphold the firm’s policies, standards, and requirements.
• Work closely with IT technical teams to evaluate, design, and uphold security standards for firm information, computer, network, and processing systems, with a particular focus on scanning, monitoring, and logging solutions (e.g., thresholds for logging and alerts, reporting and notifications, vulnerability handling).
• Partner with the information security team to conduct regular security assessments for vulnerabilities and potential threats, supporting the development of action plans to remediate findings.
• Calibrate solution settings, configuration, reporting, and visualization to optimize information security’s ongoing monitoring and analysis of system logs, network traffic, and other data surrounding security incidents.
• Lead continuous process development, improvement, and automation of monitoring and logging-related solutions and support activities (e.g., threat intelligence, data visualization, advanced analytics, machine learning).
• Participate in the design and implementation of recommended information security controls associated with new project application/system deployments.
• Contribute to the design and support the execution of vulnerability assessments, penetration tests, and security audits.
• Collaborate with cross-functional stakeholders and third-party providers.
• Recommend policies, standards, procedures, and training programs for employees to make effective use of technology.
• Provide security network support in the problem-escalation process and provide guidance to other network security engineers.
• Deliver technology solutions for the firm’s security-related projects.
• Stay current on trends and issues in the security industry, including current and emerging technologies.
• Stay current on applicable compliance and regulatory requirements for information security controls.
• Assist with the design and implementation of disaster recovery and business continuity plans, procedures, audits, and enhancements.

 
What you’ll bring to the table
 

• Bachelor’s degree in Computer Science, Information Technology, or a related field.
• Minimum 10 years of experience in a similar role (each additional year of experience may be substituted for each year of education required).
• Experience and knowledge in Zero Day Malware Detection Technologies.
• Experience and knowledge in Digital Forensic and Incident Response tools.
• Understanding of Intrusion Detection Systems (IDS), Intrusion Protection Systems (IPS), Proxies (Web and Email), and Data Loss Prevention tools.
• Understanding of network analysis tools such as protocol analyzers, LAN/WAN sniffers, and packet capture analysis tools.
• Experience and knowledge in web content filtering, vulnerability scanning, and endpoint protection tools (antivirus, disk encryption, host intrusion prevention, etc.)
• Experience and knowledge in scripting or automation tools.
• Experience securing servers and workstations in a Citrix environment.
• Understanding of network configurations and ability to troubleshoot.
• Ability to document security procedures.
• Ability to evaluate, recommend, and support the implementation of security solutions.
• Ability to monitor security events, threats, and incidents and respond accordingly.
• Extensive network security technical skills.Understanding endpoint protection.
• Excellent time-management and multi-tasking skills and the ability to excel in a team-oriented, collaborative, and fast-paced environment.
• Excellent oral and written communication skills and ability to effectively communicate with all levels of the firm.
• May require more than 40.0 hours per week to perform the essential duties of the position.

 
What you can expect from us

We are committed to providing an exceptional employee experience. You can expect:

• Comprehensive benefits package—includes tuition reimbursement up to $75K, low healthcare premiums, wellness benefits, and more!
• Hybrid work environment with three coordinated in-office days per week.
• Open culture where your voice is heard, your input is sought, and your contributions are rewarded.
• Fun and engaging culture including frequent social events.
• Amenities that include a fitness center, rooftop terrace, standing desks, espresso, fresh fruit, breakfast and afternoon snack, billiards, and ping pong.
• Employee-driven community outreach program featuring fundraising events (e.g., trivia, game shows, cooking competitions, etc.), volunteer opportunities, and matching funds along with our pro bono program.
• Investment in your career through training programs, an assigned mentor and peer coach, and frequent feedback.