Principal Security Engineer

Job Description

We are at the forefront of transforming the future of technology in the financial industry, and we seek curious, practical individuals to help us pave the way. Our team is not intimidated by taking calculated risks, as they relish a good challenge and are eager to engage in problem-solving. As a member of our team, you will work alongside like-minded experts in a culture that is deeply rooted in innovation and progression. Join us to be part of a transformative journey that can shape the industry's future.

We are seeking a skilled and experienced Security Services Principal Engineer to play a crucial role in architecting and designing security solutions, maintaining and improving organization's security posture.

This position is offered a Hybrid work scheduled from on for our locations ST. Cloud MN, Des Monies IA, Dallas Texas, or El Segundo, CA.

What will you do:

• Act as the lead for incoming projects, delivering design reviews, and secure architecture guidance.
• Develop and maintain security design reference architectures and reusable patterns.
• Technical experience with endpoint, network, data, and infrastructure security.
• Collaborate with SOC, IT-Risk and infrastructure groups to integrate security into technology solutions and roadmaps.
• Mentor junior security team members and promote security best practices across the organization.
• BA/BS in computer science, Information Systems, or a related field (or equivalent experience).
• Strong background in supporting the lifecycle of security tools including POC/POV, installation, configuration, management, maintenance/upgrade, and troubleshooting.
• Eight or more years of relevant experience as a Principal Security Engineer along with expertise with the following Tools and Technologies:

What you will have:

Privileged Access Management

• Architect, manage and maintenance of PAM solution
• Report progress and system health through metrics and KPIs
• Provide ongoing troubleshooting and support to develop solutions
• Requirements: BeyondTrust, CyberArk, Delinea, Secrets Management

Endpoint Security

• SME for design and implementation, provide guidance and leadership within the team.
• Agent deployment, configuration, integration, and troubleshooting.
• Coordinate with device owners to install and test endpoint controls to ensure no impacts to device purpose.
• Collaborate with SOC and security teams to resolve incidents and improve detection capabilities.
• Document and maintain service workflows, RACI, service metrics (KPI/KRI), and known issues.
• Conduct asset inventory and discovery for governance and compliance.
• Requirements: Proven expertise with MDE, SentinelOne or CrowdStrike, Tanium, Qualys

Data Security

• Develop and maintain metrics, dashboards, and reports for security KPIs
• Create and maintain technical architecture with multi-year DLP program roadmap
• Configure and deploy infrastructure as needed to meet DLP program goals
• Design and deploy data monitoring/loss solutions
• Data sensitivity label, retention, classification
• Requirements: MS Purview, Data in motion (proxy and network)

The salary range for this role is $117,000 - $185,000 plus competitive performance-based bonus. Compensation packages are based on a wide array of factors unique to each candidate, including but not limited to skill set, years and depth of experience, certifications, and specific office location. Compensation ranges may differ in differing locations due to cost of labor considerations.

#LI-HYBRID