Cybersecurity Engineer focused on threat monitoring and incident response for Verizon's network security. Collaborating on security architecture and vulnerability management across multiple locations.
About the role
- Senior Security Engineer protecting sensitive financial data and transaction platforms against cyber threats. Leading security measures and compliance within financial industry regulations.
Responsibilities
- Reduce third-party risk exposure: improve our current third-party risk assessment process to identify high-risk vendors using AI tools or automation.
- Implement comprehensive security logging and monitoring: ensure complete logging coverage across critical systems and deliver dashboards and metrics. Manage our SIEM, creating and responding to alerts.
- Create, maintain, and update company policies. Work with auditors during the annual SOC 2 audit.
- Improve our vulnerability and patch management: Create secure configuration baselines for servers, endpoints, and cloud.
- Awareness training: Create a full-year program that includes phishing campaigns and awareness training.
- Design and Implement Security Controls: Design, implement, and maintain security tools and technologies, including SIEM, EDR, firewalls, IDS/IPS, and DLP, to protect sensitive data.
- Incident Response and Threat Detection: Lead threat detection efforts, incident response, and forensic investigations.
- Vulnerability Management: Perform threat modeling and static/dynamic vulnerability assessments, and develop and implement remediation strategies for identified flaws (e.g., OWASP Top 10).
- Compliance and Auditing: Ensure compliance with regulations and frameworks. Participate in audits and provide necessary evidence and remediation plans.
- Secure Development Lifecycle (SDLC): Collaborate with engineering and DevOps teams to integrate security into CI/CD pipelines and promote secure coding best practices.
- Automation and Scripting: Develop automated solutions and use scripting (Python, PowerShell, Bash) to streamline security operations and monitoring processes.
- Mentorship and Leadership: Provide technical direction and mentorship to junior team members, helping foster a strong, organization-wide security awareness culture.
Requirements
- Experience: 5+ years of experience in a dedicated information security engineering role, preferably within the financial services or a highly regulated industry.
- Technical Expertise: Strong working knowledge of network security fundamentals (TCP/IP, UDP, HTTP), cloud security models (AWS/GCP), and identity and access management (IAM, SSO, MFA).
- Tools and Technologies: Hands-on experience with enterprise security tools, including SIEM platforms, vulnerability scanners, and EDR solutions.
- Regulatory Knowledge: Deep understanding of cybersecurity frameworks such as NIST CSF, and the MITRE ATT&CK framework.
- Problem-Solving: Excellent analytical and problem-solving skills, with the ability to translate complex technical concepts into clear, actionable recommendations for various stakeholders.
- Certifications: Relevant security certifications are highly desirable, such as CISSP, CISM, or GIAC.
- Education: Bachelor's or Master's degree in Computer Science, Cybersecurity, or a related technical field.
Benefits
- Competitive salary.
- Hybrid work arrangement if located in the Phoenix or New York area; otherwise, fully remote.
- Excellent medical, dental, and vision insurance options, with low-cost premium structures that demonstrate our commitment to offering great value to our employees.
- 100% company-paid basic life insurance, short-term and long-term disability insurance.
- 100% paid parental leave upon eligibility.
- Company equity managed through Carta.
- 401k with match and 100% vesting upon hire.
- Flexible PTO in an environment where taking time off to relax or recharge is supported and encouraged.
- Take time off for holidays—and yes, your birthday counts too. Celebrate, relax, and recharge without thinking twice.
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Senior Manager of Application Security leading initiatives to protect applications at Nordstrom through strategic leadership and AI - driven tooling. Collaborating with engineering to ensure secure software development practices.
Information Security Engineer responsible for deploying and supporting security tools across cloud and on - premise systems. Collaborating with IT to mitigate security risks in a hybrid work environment.
Casual Retail Security Officer for MSS Security ensuring safety at Tweed Mall in Tweed Heads. Responsible for patrols, incident response, and customer service.
Financial security advisor at Desjardins developing client relationships and selling life and health insurance products. Focusing on customer satisfaction and personalized financial solutions.
Principal Information Security Consultant at Westpac focusing on security protocols and employee benefits for staff. Hybrid role centrally located with opportunities for professional development and employee perks.
Engineer supporting secure development lifecycle processes for product lines in the energy sector. Collaborating with R&D on security requirements and compliance audits.
Automation Oversight Engineer providing oversight of compliance in automated device configurations for Comcast Business. Managing configuration checks and reporting, ensuring reliable oversight and improvement strategies.
Principal Systems Engineer - Cybersecurity role in protecting our nation's products as part of Integrated Platform Solutions team. Develop solutions utilizing RMF, Anti - Tamper, Software Assurance, and more.
Agent de Sécurité assurant la sécurité des usagers du réseau de transport TBM. Rattaché au Manager de Proximité Sûreté, garantissant la qualité de service public de transport en commun.