Job Description
Junior Security Operations Engineer
This position reports to the CISO
Salary Range is 125K to 150K. MUST be local to NYC.
Permanent hybrid role for a NYC based Private Equities firm with a global reach. Small team. Great opportunity for technical growth. Financial services experience a big plus.Base salary + bonus. Great benefits.
The Junior Sec Ops Engineer is a role for a motivated security/IT engineer looking to help us secure and protect our firm and network environments. From collaboratively planning and testing innovative security programs/measures designed to help protect the firm's systems and client's data from infiltration and cyber-attacks to working with compliance during audits, you'll be instrumental in helping us operate with a security-first mindset for the future.
Responsibilities:
- Implement and execute an on-going screening/testing/maintaining of the enterprise's security program for vulnerabilities, including existing systems, audits and any new processes/software introduced (includes Cloud Security, SIEM, Endpoint Protection, DLP, Vulnerability Management, Privileged Access, Firewalls/VPN, etc)
- Design, test, and pilot new security tools in the environment in collaboration with EUS/Infrastructure teams, as well as new policies/procedures designed around security/efficiency
- Partner with internal/external IT teams to execute cybersecurity projects on-time with excellence including vulnerability management and remediation, penetration testing and reporting, 3rd party app patch management and reporting
- Proactively identify security issues/potential threats
- Help design an incident response/management process to monitor, respond and remediate security incidents
- Collaborate with Compliance in the Vendor Review (TPRM), DDQ and Audit Processes (Internal/External)
Desired Skills and Experience:
- 3-5 years of Sec Ops/Information Security experience overall with a minimum of 1 year experience in working within or implementing security within Microsoft's 365/Azure environment
- Ideal candidate has experience across the entire security environment including Azure, Endpoint Protection, Vulnerability Management, Network and System Security (Firewall/VPN/Data Encryption/Active Directory/SIEM) – not all required but you should have an appetite to learn
- Previous experience partnering in delivering TPRM/Audit programs