CyberSecurity Design Engineer
Location: Manhattan, NY
Overview:
The Security Design Engineer will be a key member of the Cybersecurity Design, Risk, and Resilience (CDRR) team, responsible for designing and implementing secure architecture solutions across the firm’s technology landscape. This role will focus on integrating security best practices into infrastructure and application designs, ensuring alignment with regulatory requirements and internal security policies.
Key Responsibilities:
- Collaborate with engineering and architecture teams to embed security into solution designs.
- Conduct threat modeling and risk assessments for new and existing systems.
- Develop and maintain security design patterns and reference architectures.
- Review and approve technical designs for compliance with security standards.
- Provide subject matter expertise on secure network, cloud, and endpoint architectures.
- Support incident response and vulnerability remediation efforts as needed.
Qualifications:
- Bachelor’s degree in Computer Science, Information Security, or related field.
- 5+ years of experience in cybersecurity architecture or engineering roles.
- Strong understanding of security frameworks (e.g., NIST, ISO 27001) and technologies.
- Experience with cloud platforms (AWS, Azure, GCP) and secure cloud design.
- Familiarity with endpoint protection, identity and access management, and network security.
- Excellent communication and documentation skills.
Preferred Skills:
- CISSP, CISM, or other relevant certifications.
- Experience working in financial services or other regulated industries.
- Knowledge of DevSecOps practices and secure software development lifecycle.