Overview:
We are seeking a highly skilled and experienced Senior Security Engineer to join our team. This role focuses on significantly enhancing the security posture of our platform, ensuring a robust and resilient environment for our customers' financial data. The Senior Security Engineer will be responsible for implementing advanced security measures, conducting comprehensive security reviews, and performing thorough threat modeling and risk assessments.
Key Responsibilities:
- Security Tooling Enhancement:
- Implement and configure industry-leading security tools to enhance the overall security infrastructure.
- Continuously evaluate and integrate new security technologies to ensure state-of-the-art protection.
- Security Design Reviews:
- Conduct detailed security design reviews of the platform's architecture and development processes.
- Collaborate with development teams to incorporate security best practices and improve existing design methodologies.
- Threat Modeling and Risk Assessment:
- Develop and maintain comprehensive threat models to identify potential security threats and vulnerabilities.
- Perform risk assessments to evaluate the potential impact of identified threats and implement appropriate mitigation strategies.
- Third-Party Security Assessments:
- Streamline and manage the process for conducting security assessments of third-party vendors and partners.
- Ensure third-party integrations comply with the company’s security standards and policies.
Deliverables:
- Security Tooling Implementation:
- Successful implementation and configuration of industry-leading security tools to enhance platform security.
- Improved Security Design Practices:
- Establish and promote improved security design practices within the development process to ensure secure coding and architecture.
- Comprehensive Threat Models and Risk Assessments:
- Develop and maintain detailed threat models and conduct risk assessments to identify and mitigate potential security risks.
- Streamlined Third-Party Security Assessments:
- Create and manage a streamlined process for third-party security assessments, ensuring compliance and security of external partnerships.
Qualifications:
- Proven experience as a Security Engineer or similar role, with a focus on enhancing security postures for financial data platforms.
- Strong expertise in security tooling, design reviews, threat modeling, and risk assessment.
- Experience in conducting third-party security assessments and managing vendor security compliance.
- Excellent knowledge of security technologies, protocols, and best practices.
- Strong analytical and problem-solving skills, with the ability to identify and mitigate security threats effectively.
- Excellent communication and collaboration skills, with the ability to work closely with cross-functional teams.
- Bachelor’s degree in Computer Science, Information Security, or a related field; advanced degree preferred.
- Relevant security certifications (e.g., CISSP, CISM, CEH) are a plus.