Security Engineer (Networks Focused)
The successful candidate will be a subject matter expert with hands-on experience in a wide range of Information security technologies, tools and methodologies. This role will help engineer, automate, implement, and operate new and emerging technologies across infrastructures supporting perimeter security, DMZs, firewalls, proxies, vulnerability scanning, and Network access control (NAC). The candidate will also be responsible for all areas of network security across the entire technology stack to support the Information Security Program (ISP).
The team fosters a collaborative environment and is building a best in class program to partner with the business to protect the Firm’s information and computer systems. Millennium is a complex and robust technical environment and securing the Firm from external and internal threats is a top priority.
Principal Responsibilities
Lead, implement and manage key monitors for network security controls to ensure appropriate security posture across the perimeter networks. Certify and assure network security best practices are executed through auditing: router, change control, switch, firewall configurations, and monitoring. Able to demonstrate clear understanding of current risks and threats to Network infrastructure and perimeter at technical and managerial levels. Provide security consultancy and engineering support for the Security Operations Infosec team. Implement automation where possible for perimeter security technologies to remediate vulnerabilities, identify gaps, or create alerts and reporting. Liaison with key stakeholders to create and enforce Network Security policies including Technology organization, Trading units, Legal, Internal Audit, and Compliance. Leverage collected Intelligence to improve success in defending Millennium against and responding to future attacks or intrusions. Perform periodic and on-demand system audits and vulnerability assessments to identify security vulnerabilities. Manage remediation efforts for any gaps reported in audits, penetration tests or recommended process improvements. Provide support to ensure smooth turnover from Engineering to Production - and provide mentoring to junior level security professionals. Develop and maintain documentation of Security products including specific tools, technologies and processes. Participate in Information Security Incident Response activities for the Firm’s environment.
Qualifications/Skills Required
Bachelor’s degree in Computer Science or Engineering preferred. 5 + years’ experience working in a technical role with a minimum of 3 + years’ experience focusing on network and information security in the financial industry (preferred). Hands-on technical experience with firewall configuration management and auditing (RedSeal, FireMon), Next Generation Firewalls (Palo Alto and CISCO), Load-Balancers (F5 and NetScaler), intrusion detection/prevention platforms (SourceFire, Palo Alto), Network detection and Response (Extrahop, Darktrace, Zeek) and Network Access Control (Cisco ISE, ForeScout) Proxy Engineer experience with proven understanding of Proxy technologies Strong knowledge of TCP/IP and other infrastructure such as DNS, Wi-Fi, virtualization, and others. Experience with network sniffers and packet capture tool (tcpdump, wireshark, ngrep) for packet analysis and troubleshooting. Knowledge in routing protocols (BGP, EIGRP, OSPF) and Cloud Services (AWS, GCP or Azure) Development and scripting skills required (Python, Powershell scripting or Shell scripts preferred) Knowledge of technologies such as SIEM platforms is preferred (Qradar, Splunk, ELK) Able to prioritize in a fast moving, high pressure, constantly changing environment; high sense of urgency Ability to communicate and collaborate across teams. At least one security certification (CISSP, GCIA, CISM, etc.)