Lead Security Engineer
Donnelley Financial Solutions (DFIN) is a leader in risk and compliance solutions, providing insightful technology, industry expertise and data insights to clients across the globe. We’re here to help you make smarter decisions with insightful technology, industry expertise and data insights at every stage of your business and investment lifecycles. As markets fluctuate, regulations evolve and technology advances, we’re there. And through it all, we deliver confidence with the right solutions in moments that matter.
Position Summary
The Lead Security Engineer will be responsible for understanding DFIN's security roadmaps outlined by leadership, architecting and deploying resilient security platforms to fit the given requirements. The Lead Security Engineer will work closely with all branches of the DFIN CISO organization and will lead architectural discussions to ensure successful deployment of all security platforms.
This role will communicate and present at an executive level. Must be knowledgeable of evolving security technologies and landscapes and able to take an active role in the evaluation of new security products, services and/or procedures to enhance productivity and effectiveness.
Responsibilities
● Research, evaluate, design, test, recommend and plan implementation of new or improved security solutions
● Drive security infrastructure improvement initiatives across various security platforms (Azure, Elastic Stack, Kafka, SIEM, Threat Intelligence, NAC, firewalls, load balancers, WAFs, EDR, DDOS mitigation, etc.).
● Develop and update documentation for security platforms; develop runbooks for DFIN Security Operations teams where necessary to ensure successful operational supportability across all security ecosystems.
● Develop necessary technical documentation throughout deployment lifecycle (requirements, High Level Design/Low Level Design, go-live checklists, and operational handoff)
● Help identify and develop Key Performance Indicators and metrics to demonstrate current security infrastructure risk appetite for CISO level communications.
● Engage with and influence key stakeholders to ensure that compliance, security and cross-functional requirements are met across all security teams (GRC, Security Operations, Application Security, Network Security, etc.)
Qualifications
● Bachelor degree with 10+ years of relevant work experience OR demonstrated ability to meet the job requirements through a comparable number of years of applicable work experience and education
● Strong knowledge across multiple information security domains
● CISSP, GIAC, and other relevant certifications highly desired
● Knowledge of risk assessment procedures, policy formation, role-based authorization methodologies, authentication technologies and cyber-attack techniques
● Ability to relate business requirements and risks to technology implementation for security-related issues
● Experience implementing, supporting, and/or maintaining PCI, NIST, SOC2, and other security frameworks and certifications for medium and/or large enterprises
● Advanced technical proficiency in UNIX, DNS, Windows Server, Internet routing, TCP/IP protocols, network technologies, and other foundational technology concepts
● Ability to function as a respected subject matter expert and consultant to other IT and business groups
● Self-driven, highly-motivated with a strong customer focus
● Strong analytical and problem-solving skills
● Solid project management skills, especially in a cross-functional environment
● Advanced knowledge of cyber-attack techniques and exploits as well as mitigation strategies
● Strong proficiency with common scripting languages (e.g. PowerShell, BASH and Python)
● Experience working with Azure cloud highly desired (Azure Active Directory, Azure standard Security center, Azure logging techniques, etc.)
It is the policy of Donnelley Financial Solutions to select, place and manage all its employees without discrimination based on race, color, national origin, gender, age, religion, actual or perceived disability, veteran's status, actual or perceived sexual orientation, genetic information or any other protected status.
If you are a qualified individual with a disability or a disabled veteran, you have the right to request a reasonable accommodation if you are unable or limited in your ability to use or access jobs.dfinsolutions.com as a result of your disability. You can request a reasonable accommodation by sending an email to [email protected]. #TalentknowsTalent