Job Description:

About the CompanyJoin our dynamic and rapidly growing private wealth and asset management financial institution that places a premium on securing information assets and maintaining the highest standards of cybersecurity.Please read the information in this job post thoroughly to understand exactly what is expected of potential candidates.About the RoleThe Information Security Engineer/Architect is a pivotal role in fortifying our security, and ensuring the confidentiality, integrity, and availability of our networks, systems, and applications. Responsibilities include overseeing architecture reviews and validations, leading blue team activities and incident response, managing pentest processes, implementing vulnerability management, and orchestrating tool management. This role extends to additional responsibilities and qualifications to ensure a comprehensive security program.Key ResponsibilitiesSecure Architecture: Conduct architecture reviews and validations to ensure robust security measures and adherence to best practices.Blue Team Leadership: Lead and coordinate blue team activities, incident response, and recovery efforts.Pentest Management: Manage the end-to-end process of pentest engagements, collaborating with external partners for thorough assessments.Vulnerability Oversight: Implement and oversee vulnerability management processes, ensuring timely identification and remediation.Tool Orchestration: Orchestrate the management of security tools for optimal effectiveness, evaluating and integrating new solutions as needed.Compliance Assurance: Ensure compliance with security policies, industry standards, frameworks, and regulations.Team Collaboration: Collaborate with cross-functional teams to champion secure-by-design principles and least-privilege practices.Security Initiatives: Support ongoing security initiatives, providing technical expertise and guidance.Additional ResponsibilitiesSecurity Awareness: Manage the security awareness software platform, ensuring continuous education across the organization.Incident Management: Respond to security incidents and events, ensuring swift resolution and preventing future occurrences.Configuration Management: Establish and maintain the configuration, operation, and monitoring of the enterprise security solution stack.Risk Analysis: Analyze and document information technology risk, providing insights for risk mitigation strategies.Qualifications8+ years of experience in information security roles.Bachelor's degree in a relevant field.CISSP, CompTIA Security+, CCNA, or CASP certifications.Proficiency in Azure Cloud and Microsoft infrastructure.Experience in blue teaming, incident response, and architecture validation.Strong background in pentest and vulnerability management.Skilled in tool management for security solutions.Solid understanding of compliance standards (ISO, NIST, etc.).Excellent communication skills, with the ability to articulate complex security concepts to diverse audiences.Reporting Structure: Reports to the Director of IT and Security Operations