Business Unit:
Information Technology
Industry:
No Industry

Overview

Houlihan Lokey, Inc. (NYSE:HLI) is a global investment bank with expertise in mergers and acquisitions, capital markets, financial restructuring, and financial and valuation advisory. Houlihan Lokey serves corporations, institutions, and governments worldwide with offices in the Americas, Europe, the Middle East, and the Asia-Pacific region. Independent advice and intellectual rigor are hallmarks of the firm's commitment to client success across its advisory services. The firm is the No. 1 investment bank for global M&A transactions under $1 billion, the No. 1 M&A advisor for the past eight consecutive years in the U.S., the No. 1 global restructuring advisor for the past nine consecutive years, and the No. 1 global M&A fairness opinion advisor over the past 25 years, all based on number of transactions and according to data provided by Refinitiv.

We believe that as we grow individually, we also grow as an Information Technology team allowing us to contribute to the overall growth of Houlihan Lokey. We embrace challenges and try new things, always looking for ways to improve. We deliver technology products and services enabled everywhere, so business can happen anywhere. We like where we work, who we work with, and what we do. We cultivate a culture where we all thrive.

Scope

As a Cyber Security Engineer at Houlihan Lokey, you will be a vital member of our cyber security team, safeguarding the Firm's digital assets and ensuring the integrity of our IT infrastructure. Located in our London office, you will serve as the region's primary cyber security resource while being part of the enterprise cyber security program, protecting the firm globally. You will lead incident response efforts, manage vulnerabilities, and implement robust security measures to mitigate risks. If you want to elevate yesterday's standards and solve beyond today's challenges, we invite you to join our team at Houlihan Lokey.

Key Responsibilities

• Lead and coordinate the response to cyber security incidents, including detection, analysis, containment, eradication, and recovery.
• Develop and maintain incident response plans, playbooks, and procedures to ensure a structured and efficient approach to incident management.
• Perform root cause analysis and post-incident reviews to identify gaps and recommend improvements.
• Conduct regular vulnerability assessments and scans to identify security weaknesses in systems, networks, and applications.
• Analyze vulnerability scan results, prioritize remediation efforts based on risk, and work with IT and development teams to address identified vulnerabilities.
• Track and report on the status of vulnerabilities and remediation efforts.
• Monitor security alerts and events from various sources, including SIEM, IDS/IPS, and other security tools, to identify potential threats and anomalies.
• Develop and implement security monitoring and detection strategies to enhance the organization's threat detection capabilities.
• Collaborate with cross-functional teams to ensure security controls are integrated into the development and deployment processes.
• Ensure compliance with relevant industry standards (e.g., CIS, NIST) and regulatory requirements (e.g., GDPR, DORA, CCPA) in the design and operation of IT systems.
• Develop and implement security policies, standards, and procedures.
• Assist in the design and implementation of security solutions and technologies to protect the organization's IT infrastructure.
• Provide guidance on secure configurations, architecture, and best practices for new projects and initiatives.
• Evaluate and recommend new security tools and technologies to enhance the organization's security posture.
• Conduct security training and awareness programs for employees to promote a culture of security within the organization.
• Stay current with emerging security threats, trends, and technologies, and share knowledge with the team and broader organization.

Qualifications

• Bachelor's degree in Computer Science, Information Security, or a related field.
• Minimum 3-5 years of experience in cyber security, with a focus on incident response and vulnerability management.
• Professional certifications such as CISSP, CISM, CEH, or equivalent are highly desirable.
• In-depth knowledge of security frameworks, standards, and best practices (e.g., NIST, ISO 27001, CIS).
• Strong analytical and critical thinking skills, with the ability to assess security incidents and vulnerabilities quickly and accurately.
• Excellent communication and interpersonal skills, with the ability to work collaboratively with cross-functional teams.
• Experience with security tools and technologies such as SIEM, IDS/IPS, vulnerability scanners, and endpoint protection solutions.
• Proven experience as a Security Engineer or a related role, with a strong background in implementing and managing security solutions.
• Demonstrated commitment to ethical conduct, maintaining confidentiality, and respecting privacy.
• Proficiency in scripting and automation (e.g., Python, PowerShell) is a plus.

We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, gender identity, sexual orientation, protected veteran status, or any other characteristic protected by law.