C

Senior Security Engineer

Cetera Financial Group
Full-time
On-site
United States
$150,000 - $175,000 USD yearly
Description

We are at the forefront of transforming the future of technology in the financial industry, and we seek curious, practical individuals to help us pave the way. Our team is not intimidated by taking calculated risks, as they relish a good challenge and are eager to engage in problem-solving. As a member of our team, you will work alongside like-minded experts in a culture that is deeply rooted in innovation and progression. Join us to be part of a transformative journey that can shape the industry's future.


The successful candidate will have the option to work remotely from one of our offices in  Dallas TX, San Diego, CA, El Segundo, CA Shamburg IL, Denver, CO, Dubuque, IA or ST. Cloud, MN.


 


What we need:


As Sr. Engineer of Security at Cetera, you will be responsible for the security of our cloud-based systems, applications, and data. You will work with our engineering and operations teams to design and implement security controls and processes that protect our data and meet compliance requirements. You will also be responsible for investigating and responding to security incidents. The ideal candidate will have experience with cloud security, application security, network security, and security compliance. They will also be able to effectively communicate complex security concepts to non-technical staff.


 


What you will do



  • Design, implement, and maintain network security solutions to protect against evolving threats in both traditional data centers and AWS and Azure cloud hosting.

  • Conduct network security assessments, vulnerability assessments, and penetration testing in diverse environments.

  • Monitor and respond to network security incidents and breaches across on-premises and cloud platforms, ensuring swift resolution.

  •  Collaborate with cross-functional teams to integrate network security best practices into systems and applications deployed in hybrid environments.

  •  Manage and optimize network security tools and technologies, including firewalls, IDS/IPS, SIEM solutions, Microsoft Intune, Bitlocker, Defender, Tanium, SCCM, and Palo Alto products, in both traditional and cloud environments, including Office365.

  •  Develop and enforce network security policies, standards, and procedures that apply to on-premises and cloud deployments.

  • Stay updated on the latest network security threats and trends, providing proactive recommendations to mitigate risks in hybrid settings.

  • Assist in network security audits and compliance efforts, ensuring adherence to relevant security frameworks and standards.

  • Provide dedicated support to financial advisors, assisting them in securing their systems and environments to meet regulatory and security standards.


 


 


What you need to have:



  • Proficiency in securing both traditional data center environments and cloud hosting platforms (AWS and Azure), including Office365.

  • Extensive experience with network security tools, including firewalls, IDS/IPS, SIEM solutions, Microsoft Intune, Bitlocker, Defender, Tanium, SCCM, and Palo Alto products, adaptable to on-premises and cloud deployments.

  • Familiarity with network security frameworks and standards (e.g., NIST, ISO 27001, CSA) applicable to hybrid environments.

  • An undergraduate degree is preferred, preferably related to security, technology, engineering, or other relevant area.

  • At least 3-5 years relevant experience in IT security, with a strong emphasis on network security, preferably in the financial services industry, including experience with related technologies, compliance, and development and implementation of policies and procedures.

  •  One or more professional certifications preferred (e.g., CISSP, CISM, CISA, CRISC, CEH, G-PEN, OSCP, G-SEC, etc.) but not required.

  • Ability to problem solve as well as provide leadership and guidance to others as needed.

  •  Familiarity with regulatory and compliance mandates, security standards, and control risk guidance such as NIST CSF & 800-53, NYS-DFS Part 500 (Cybersecurity), FINRA, SEC, FFIEC, etc.


 


Really catch our eye with:



  • Experience with mergers and acquisitions (M&A) access and integration activities is a plus.

  • Experience with DLP, CASB, Zero-Trust, and SOAR solutions is a plus.

  • Excellent verbal and written communication skills are desired.

  •  Strong project management skills are a plus.

  •  Knowledge of and/or experience with industry leading security tools is a plus.

  •  Distributed systems and cloud services experience is desirable, experience with fuzzing frameworks and exploitation frameworks (such as Metasploit, etc.) is preferred.

  •  Security and/or advanced networking certifications (i.e., CISSP, CISM, GIAC SANS, AWS, CCIE, CCNP, etc.) is a plus.


Compensation:


The salary range for this role is $150,000- $175,000, plus competitive performance-based bonus. Compensation packages are based on a wide array of factors unique to each candidate, including but not limited to skill set, years and depth of experience, certifications, and specific office location. Compensation ranges may differ in differing locations due to cost of labor considerations.


 


#LI- Remote


 


 


 


 


 


 


 


 


 


 


 


 


 



Apply now
Share this job
Twitter Facebook Linkedin Email