Job Description
The SecOps Engineer ensures that applications and infrastructure are breach-resistant and breach-ready, promoting and enforcing security policies, rules and technologies throughout the entire cloud and on-premises ecosystem.
- Architecture of multi-tenant cloud security tooling and monitoring solutions.
- Author, update, and contribute to information security policy and procedure documentation.
- Apply organization skills, technical acumen, and communication skills to lead security incident response and establish action plans to remediate security risks.
- Review and evaluate the impact of organization security exceptions, deviations, risk acceptance and vendor proposals.
- Lead security assessments of cloud-hosted architectures and the resolution of vulnerabilities.
- Identify, define, and document system security requirements and recommend solutions to stakeholders.
- Monitor, analyze, and respond to various internal and external threats.
- Conduct regular threat modeling assessments and specialize in zero trust infrastructure concepts.
- Design, architect, and implement defensive security controls across endpoints, servers, and SaaS/self-hosted applications.
- Provide security domain expertise on protective controls, to include system, network, encryption, API, and authentication services.
- Design and implementation of defensive security controls for e-mail, modern applications, security monitoring, and vulnerability management solutions.
- Collaborate with engineering teams to improve security for identity access management, device management, and public cloud service providers.
- Provide daily, ongoing security oversight of Security Operations, to include the security impact of proposed modifications, additions, and technology implementations and refreshes.
- Have technical expertise in all areas of cloud resources, such as Key Vaults, Databases, App Services, WAF’s, Front Door, Policy Engine, etc. and offer recommendations for improving cloud security posture.
- Experience with Active Directory (On-prem & Cloud) and identity management services (SSO, SAML, etc.) related to Users, Service Principals, and Managed Identities.
- Work with developers to implement DevSecOps solutions and design and implement a security focused SDLC.
Qualifications
- Bachelor’s degree in Computer Science, Computer Engineering, Information Technology or related field
- Experience reviewing distributed systems design and conducting threat modeling of highly connected systems
- Experience analyzing and assessing cloud network security systems maturity and security posture
- Experience working on cross functional teams and collaborating on infrastructure network security systems
- 3+ yrs with scripting languages including PowerShell, Python, KQL
- 3+ yrs knowledge and experience developing distributed systems and cloud infrastructure
- Relevant professional certifications: Cloud (AWS, Microsoft Azure), IT Security (Security+, CISSP, CCSP)
- Deep knowledge of security, regulatory, and control frameworks, such as ISO27001, PCI-DSS, GDPR, NIST, and CIS.
- Experience with enterprise security technologies including Microsoft Security Suite, Microsoft Intune, and Microsoft Defender.
- Experience configuring and managing Microsoft Entra ID (Azure AD), Conditional Access Policies, and Microsoft Sentinel
- Excellent communication skills: ability to communicate technical concepts and complexity to all types of audiences
- Ability to partner with other development and business teams to manage dependencies and communicate technical specifications
Additional Information
- This position will work on a hybrid model out of our Santa Monica, Pittsburgh, New York, Chicago, or Broomfield office, or remotely from one of the following states: California, Colorado, Connecticut, Florida, Georgia, Idaho, Illinois, Indiana, Louisiana, Maryland, Nevada, New Jersey, New York, Ohio, Oregon, Pennsylvania, Tennessee, Texas, Virginia, Washington, Wisconsin.
- We offer a comprehensive benefits package including a collaborative work environment, generous PTO, 401(k) match, affordable & comprehensive medical/dental/vision insurance, CFA and other professional membership reimbursement, and more.
The pay range for this position is $140,000 - $150,000/year. However, base pay will be determined on an individual basis considering various factors, including location, qualifications, skills, and experience. The total compensation package includes eligibility for an annual discretionary bonus and a full range of health and financial benefit offerings, which will be provided in conjunction with an offer of employment.
Visit www.wilshire.com for additional company information.
Wilshire is an SEC registered investment adviser and required to track certain political contributions under Rule 206(4)-5. As such, you may be required to disclose your prior political contributions.
We are an equal opportunity employer, which means we afford equal employment opportunity to all individuals regardless of race/ethnicity, creed, color, religion, sex (including gender and gender identity), national origin, ancestry, age, marital status, veteran status, citizenship status, disability, medical condition (as defined by California Government Code section 12926), or sexual orientation. Our employees, as well as applicants and others with whom we do business, will not be subjected to sexual, racial, religious, ethnic, or any other form of unlawful harassment. In addition, Wilshire adheres to the equal employment opportunity requirements of all states and localities in which it does business. We are completely committed to these principles not only because of the various laws which address these subjects, but because it is the right thing to do for our employees and clients to thrive.
If you have a disability, and require reasonable accommodations in the application process, contact Human Resources at ApplicantAccessibility@wilshire.com or 310-584-6011.
\ #LI-Hybrid