Role Description:
An experienced Infrastructure Development Engineer with a focus on Vulnerability Management. The role is suited to an experienced Engineer with security, software development and product deployment experience. The role will focus on extending the firm’s Vulnerability Management program to achieve risk control objectives and will involve solution architecture, engineering, and development to achieve automation and integration with firm systems and processes.
Required skills:
-Minimum 5 years of experience in a security platform engineering role and the development of tools for automation and end-user process improvement
-Prior experience architecting, integrating and deploying security solutions in a large global enterprise environment, preferably within the finance industry.
-Strong Linux systems administration experience
-Strong scripting skills (Python is preferred) with deep comprehension of good code design, regular expressions, process management, performance optimization and error control.
-Able to troubleshoot, problem solve, analytical thinker.
-General networking and security knowledge (IP Networking, Subnetting, TCP/IP, firewalls, routing, DNS, NAT, Load balancing, packet trace and analysis, etc.)
-Interpersonal skills - communicator, flexible, self-driven, team player
-Broad exposure to various technologies in heterogeneous network environments.
Desired skills:
-Experience with Breach and Attack Simulation platforms such as Safebreach, Verodin.
-Experienced in public cloud deployments (AWS, Azure)
-Knowledge of, or experience with, security areas such as Cloud security, Container security, Common Vulnerabilities and Exposures (CVE) and Common Platform Enumeration(CPE)
-Familiar with SDLC/DevOps tool-sets such as Chef, Puppet, Ansible and Jenkins, GIT, Jira, Stash, etc.
-Background in Agile team workflow leveraging concepts such as Scrum/Lean
-Security Certifications: CISSP, SANS (GCIA or similar)
