Security Engineer

At Corient, we help high- and ultra-high-net-worth individuals and families to enjoy a full life, while enabling them to preserve their wealth for future generations, and provide for the people, causes and communities they care about. We focus on exceeding expectations, simplifying lives, and establishing legacies that last for generations. We are always looking for talented and motivated individuals to join our team. If you want to work for a company that values your contributions and supports your growth, we would like to meet you.

About the Role

We are seeking a Security Engineer to design and implement enterprise security controls that protect systems, cloud platforms, and data. This role focuses on building and integrating security capabilities across identity, network, and cloud environments.

The Security Engineer will help advance the organization’s Zero Trust architecture using Zscaler ZIA and ZPA while contributing to upcoming initiatives including an IAM and Identity Governance modernization and enhancements to enterprise email security.

This role partners closely with infrastructure, cloud, and application engineering teams to ensure security controls are integrated into core technology platforms and implemented using secure-by-design and least-privilege principles.

Key Responsibilities

Design and implement Zero Trust access controls using Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA).

Support the modernization of Identity and Access Management and Identity Governance capabilities, including authentication, authorization, and least-privilege access models using technologies such as MFA, SAML, OAuth, and conditional access.

Design and maintain enterprise security platforms that enforce security policies across endpoints, cloud environments, and enterprise networks.

Enhance enterprise email security to protect against phishing, malware, and business email compromise.

Collaborate with infrastructure and cloud engineering teams to implement security controls across hybrid environments.

Develop automation and integrations using tools such as PowerShell, Python, and platform APIs to improve scalability and consistency of security controls.

Provide engineering guidance to ensure systems are built according to secure-by-design and defense-in-depth principles.

Qualifications

• Bachelor’s degree in Computer Science, Engineering, Information Security, or related field.
• 6+ years of experience in security engineering, infrastructure engineering, or cloud security.
• Experience implementing Zero Trust architectures, preferably with Zscaler ZIA and ZPA.
• Experience designing or implementing IAM and identity governance solutions.
• Experience working with enterprise email security technologies.
• Experience with Microsoft cloud and security platforms such as Microsoft Defender and Microsoft Purview.
• Strong understanding of authentication and access technologies including MFA, SAML, OAuth, and conditional access.
• Scripting or automation experience using PowerShell, Python, or similar tools.
• Familiarity with security frameworks such as NIST, CIS, or ISO.

Physical Requirements

• This position requires the physical capabilities to work in an office environment, which may include prolonged periods of sitting at a desk and working on a computer. Corient seeks to make reasonable accommodations that enable individuals with disabilities to perform essential duties when possible.
• This position is required to work on site 5 days per week.
• This position requires up to 25+% travel, domestically and internationally

U.S. Eligibility Requirements

• Must be 18 years of age or older.
• Must be willing to submit a background investigation; any offer of employment is conditioned upon the successful completion of a background investigation.
• Must have unrestricted work authorization to work in the United States. For U.S. employment opportunities, Corient hires U.S. citizens or permanent residents. Exceptions to these requirements will be determined based on shortage of qualified candidates with a particular skill. Corient will require proof of work authorization.
• Corient participates in E-Verify and will provide the federal government with your Form I-9 information to confirm that you are authorized to work in the U.S. If E-Verify cannot confirm that you are authorized to work, this employer is required to give you written instructions and an opportunity to contact Department of Homeland Security (DHS) or Social Security Administration (SSA) so you can begin to resolve the issue before the employer can take any action against you, including terminating your employment. Employers can only use E-Verify once you have accepted a job offer and completed the Form I-9.
• Must be willing to execute Corient’s Employee Agreement or Confidentiality and Non-Disclosure Agreement, which require, among other things, post-employment obligations relating to non-solicitation, confidentiality, and non-disclosure.

What You can Expect from Us

Our dedication to the Employee Experience at Corient is aimed at supporting, empowering, and inspiring our talented team through:

• 401(k) Plan with Employer Matching
• Four Medical Plan options that is generously subsidized by Corient
• Employer paid Dental, Vision & Life and AD&D Insurance
• Employer paid Short-term & Long-term Disability
• Paid Maternity & Parental Leave
• Flexible Spending Accounts & Health Savings Accounts
• Dependent Care FSA
• Commuter & Transit FSA
• Corporate Discount Program - Perkspot
• Training Reimbursement
• Paid Professional Designations
• Giving back to the community - Volunteer days

Corient is one of the fastest-growing wealth management platforms in the United States. We serve more than 10,000 clients and manage over $100 billion of assets through offices located across the country. We combine a boutique's personal service, creativity and objective advice with the extensive resources and vast intellectual capital of an innovative industry leader to create a profoundly different wealth management experience for our clients.

Full participation of all employees in a safe, healthy, and respectful environment is key to individual and company success. We are committed to fully utilizing the abilities of all our employees and expect each of our employees to honor this commitment in their daily responsibilities.

We are an equal opportunity employer. All candidates will be recruited and, if applicable, selected and employed without regard to sex, race, religion, marital status, veteran status, age, national origin, sexual orientation, gender identity, color, creed, ancestry, disability, genetic information or any other basis prohibited by law.