Security Engineer

Glocomms is partnered with a global alternative investment management firm looking to bring on a Security Engineer to play a vital role in protecting the firm's dynamic and evolving technological environment.

The ideal candidate will have a strong background in information security within the financial industry and hands-on experience with Microsoft security solutions. Strong communication skills are a must, as this position will be tasked with providing senior leadership with clear and concise reports that accurately reflect the firm's cybersecurity posture and evolving risk landscape.

Key Responsibilities:

• Implement and manage Microsoft security solutions, including desktop and server operating systems, Active Directory, Group Policy, EntraID, and Desired Configuration State.
• Ensure robust DNS and messaging security across the organization's infrastructure.
• Collaborate with development teams to integrate security measures in CI/CD pipelines using tools like Jenkins and Terraform.
• Manage and secure IaaS and SaaS solutions, ensuring seamless operation and compliance with security standards.
• Implement and manage authentication protocols, including SAML, OIDC, and Kerberos.
• Configure and maintain Office 365 security controls, including Azure Active Directory, Conditional Access, and Microsoft CAS.
• Develop and enforce Data Loss Prevention (DLP) policies and implement Azure Information Protection (AIP) solutions for data labeling, classification, and encryption.
• Ensure compliance with data protection regulations, such as GDPR and HIPAA, through effective use of DLP and AIP technologies.
• Utilize tools like EDR and SIEM for continuous monitoring and threat detection.
• Conduct vulnerability management and remediation efforts to safeguard the organization's assets.
• Write and maintain scripts in PowerShell for automation and enhanced security operations.
• Understand and analyze code in C#/.NET to ensure secure coding practices.
• Work independently and proactively within a fast-moving, high-pressure environment.
• Communicate and collaborate effectively with cross-functional teams to address security challenges and implement best practices.

Qualifications:

• Bachelor's degree in Computer Science, Engineering, or a related field.
• 3-5 years of experience in a technical security role, preferably within the financial industry.
• Hands-on experience with Microsoft security solutions and related technologies.
• Proficient in managing Active Directory, Group Policy, and Azure AD.
• Strong scripting skills in PowerShell; familiarity with C#/.NET is a plus.
• Experience with CI/CD pipelines, Jenkins, Terraform, IaaS, and SaaS solutions.
• Knowledge of authentication protocols (SAML, OIDC, Kerberos) and security controls for Office 365.
• Relevant security certifications such as CISSP, GCIA, CISM, or product certifications (e.g., PingFederate, Azure, Windows, AD) are a plus.
• Ability to prioritize tasks in a high-pressure, fast-moving environment with a high sense of urgency.
• Strong problem-solving skills, proactive thinking, and the ability to work independently.
• Excellent communication and collaboration skills.

This position will play a key role in the establishment and optimization of the firm's Information Security Governance framework. Interested candidates should have excellent oral and written communication skills and the ability to work cross-functionally with both technical and nontechnical teams.

Candidates must be located in (or willing to relocate to) the Miami, FL area to be considered.