Cyber Security Engineer

Job Description

We are looking for a Cyber Security Engineer to be a part of owning and shaping security across a complex, multi-environment landscape, not just operate tools. You’ll work at the intersection of hands-on engineering and strategic execution, building and scaling security capabilities across endpoint, cloud, and network domains.

A core part of this role is solving real integration challenges , unifying security controls, visibility, and processes across environments during active mergers and acquisitions. You will help define and execute Day 1 readiness while building toward a more mature, consolidated Day 2 security model .

You’ll operate across the full lifecycle: investigating threats, hardening systems, reducing noise, and driving alignment across teams . This role is best suited for someone who is comfortable with ownership, thrives in ambiguity, and wants their work to have visible, measurable impact.

Key Responsibilities

Endpoint Security / EDR / MDR

• Investigate and respond to endpoint alerts, partnering with MDR providers to drive high-signal detection and response

• Lead incident response activities including containment, eradication, and recovery

• Own endpoint security integration during mergers—aligning tooling, improving visibility, and standardizing response across environments

Cloud Security

• Build and operate security controls across AWS and Azure environments

• Partner with engineering teams to secure workloads, IAM, storage, and network architecture

• Own and enforce cloud security baselines that scale across environments

• Lead cloud security integration efforts—unifying controls, visibility, and policy enforcement pre- and post-close

Vulnerability Management

• Assess and prioritize vulnerabilities based on exploitability and real business risk

• Drive remediation across infrastructure, application, and cloud teams

• Own vulnerability management integration—consolidating tooling, normalizing risk models, and improving remediation velocity across merged environments

Micro-Segmentation / Network Security

• Lead implementation of zero-trust architecture through segmentation and policy enforcement

• Troubleshoot and refine segmentation policies in live environments without disrupting business operations

• Own network security integration—aligning segmentation strategies across legacy and acquired environments

Security Operations / Engineering

• Investigate SIEM, EDR, cloud, and network signals to identify and respond to malicious activity

• Drive improvements in detection quality, reducing noise and increasing signal across security tooling

• Serve as the owner of security operations integration—defining and executing Day 1 and Day 2 readiness across all domains

• Partner across IT, cloud, engineering, and leadership to align security capabilities with business needs

Examples of Technologies You’ll Work With

CrowdStrike, Microsoft Defender, Microsoft Purview DLP, Cyberhaven, Microsoft Sentinel, Sumo Logic, Expel, Microsoft Azure, Amazon Web Services (AWS), Wiz, Okta, Tenable, Zero Networks, and other modern tooling across endpoint, cloud, identity, and data protection.

What Success Looks Like

• You take clear ownership of security capabilities and drive measurable improvements across environments

• Detection and response are high-signal, efficient, and trusted by the organization

• M&A integrations are executed smoothly delivering Day 1 readiness without disruption and a clear path to long-term consolidation

• Security tooling and processes become simpler, more consistent, and scalable

• You are recognized as a trusted partner and problem-solver across engineering, infrastructure, and leadership

Why This Role Is Unique

• Direct ownership of cybersecurity integration during active M&A —a rare opportunity to shape security across multiple environments

• Broad scope across endpoint, cloud, network, and data protection— not siloed into a single domain

• A balance of hands-on engineering and strategic impact , with visibility across teams and leadership

• The opportunity to build, not just maintain —driving meaningful improvements in how security operates at scale

Required Skills

• 5–10+ years of experience in a hands-on Cyber Security Engineering / Security Operations
• Strong hands-on experience with EDR/MDR platforms (e.g., CrowdStrike, Microsoft Defender)
• Proven experience securing cloud environments - AWS mandatory, Azure is preferred.
• Experience with SIEM platforms (e.g., Microsoft Sentinel, Sumo Logic)
• Strong background in incident response and threat investigation
• Experience with vulnerability management tools (e.g., Tenable) and remediation workflows
• Hands-on experience with network security and micro-segmentation / zero trust architecture
• Strong understanding of IAM, data protection, and endpoint security controls
• Ability to work cross-functionally with engineering, infrastructure, and leadership teams
• Excellent problem-solving skills and ability to operate in fast-paced, ambiguous environments
• Financial Service or other highly regulated industry
• Excellent communication skills

Preferred Skills

• Experience with tools such as Wiz, Okta, Microsoft Purview DLP, Cyberhaven, Expel, Zero Networks
• Prior experience in financial services or regulated environments
• Experience supporting M&A integration / transformation initiatives
• Exposure to zero trust architecture design and implementation
• Experience integrating security tools and processes across multiple environments (M&A preferred)
• Investment Management, Asset Management, or Hedge fund experience.