• Design, develop, integrate, and maintain custom, data-driven security posture and vulnerability management solutions within the enterprise environment.
• Collaborate with other software engineering teams as necessary to integrate security products and workflows in Java, Python, PowerShell, and other languages.
• Lead or support vulnerability management efforts, including tooling and workflow automation.
• Develop and implement security and risk scoring strategies to guide remediation efforts.
• Conduct security assessments and provide remediation guidance to various teams.
• Identifies and implements tools and processes to allow efficient sharing of data and information to promote business agility while ensuring regulatory compliance.
• Evaluates and proposes new security-related products and services.
• Assists with forensic analysis of security incidents.
• Continually assesses new trends in technology and determines implications on the overall security control process.
• Drives security engineering thought leadership within the product line.
• Champions the firm's culture of diversity, equity, inclusion, and respect.

Required qualifications, capabilities, and skills

• Experience developing security engineering solutions for public cloud-based applications and infrastructure
• Experience applying expertise and new methods to determine net new solutions for complex technology problems in one or more technical disciplines
• Fluent in one or more programming languages such as Java, Python, PowerShell, or equivalent.
• Strong knowledge of Microsoft Active Directory and EntraID.
• Experience with ServiceNow, Atlassian Jira, or other security workflow/incident management tools and API integrations.
• Hands-on experience integrating vulnerability management tools and processes programmatically.
• Strong knowledge of data management, refinement, and enrichment techniques and implementation strategies
• Advanced knowledge of cybersecurity architecture, applications, and technical processes with considerable, in-depth knowledge in one or more technical disciplines (e.g., IAM, Data Engineering, etc.)
• Experience successfully reviewing and implementing new security-related products
• Significant experience with threat modeling
• Practical cloud native experience - AWS

Preferred qualifications, capabilities, and skills

• Strong understanding of graphing databases (Neo4J, GraphDB, etc.)
• Experience in red/blue/purple teaming or adversary emulation/defense tooling is a significant advantage
• Relevant certifications (e.g., CISSP, CEH, OSCP) are a plus.

NA