Cyber Security Engineer

The Cyber Security Engineer builds, deploys, and maintains security tooling and automation that protects corporate and public cloud environments hosting financial services platforms. This is a true software engineering role — the majority of work involves building and maintaining systems in code, not configuring COTS security tools. Working within a true engineering team this role develops security logging pipelines, compliance automation, and infrastructure-as-code to safeguard sensitive data and enforce security standards at scale. The Cyber Security Engineer manages the lifecycle of cryptographic material, contributes to security architecture decisions across the organization, and serves as a consultative partner to other Risk functions and technical teams. This role also provides engineering support during security incidents and continuously improves the organization's security posture through automation, secure design, and cross-functional collaboration.

• →

  Design, build, and maintain security automation, tooling, and logging ETL pipelines using Python, Terraform, and AWS services

• →

  Develop and maintain infrastructure-as-code to deploy and manage security controls across cloud environments, with an emphasis on automation and reproducibility

• →

  Manage the lifecycle of cryptographic material, including key generation, secure storage, certificate issuance, rotation, and revocation

• →

  Architect and implement scalable security solutions for log ingestion, compliance data flows, and vulnerability management across multiple environments

• →

  Develop and improve monitoring, alerting, and reporting to identify and address threats using security tools, scripting, and data analysis; leverage agentic AI tooling and LLM-based automation where applicable

• →

  Develop and maintain threat models to prioritize risk management activities and inform security architecture decisions

• →

  Collaborate with other Risk functions, technical teams, auditors, vendors, and clients to provide security guidance, assess posture, and validate controls across all environments

• →

  Build and maintain automated evidence collection and continuous control monitoring to support compliance frameworks and audit requirements

• →

  Provide engineering support to Security Operations during incident response, including logging, tooling, and automation to aid detection, containment, and recovery

• →

  Investigate and verify reported vulnerabilities, resolving or coordinating remediation as needed

• →

  Perform other duties as assigned

• While performing the duties of this job, the employee is regularly required to sit; use hands to type, handle, or feel and talk or hear

• Specific vision abilities required by this job include close vision

• Ability to occasionally lift/move up to 25 pounds

• Individuals with a disability who are otherwise able to perform the essential functions of the job may request reasonable accommodation through the Human Resources department

• Associate degree in Computer Science, Information Assurance, Cybersecurity, or a related field required, or equivalent combination of education and experience

• Three (3) years of experience in security engineering, software engineering, or a related technical discipline required

• Two (2) years of experience designing and implementing security controls or security tooling as a software engineer, security engineer, or similar role required

• Demonstrated software development experience in Python or a similarly capable language required

• Experience with AWS, Linux, Kubernetes, Terraform or equivalent IaC tools, Git, and CI/CD pipelines required

• Minimum 6 months of experience building or working with agentic AI systems, including designing or integrating LLM-based pipelines or autonomous tooling, required 

• Experience with software engineering, certificate lifecycle, and compliance automation preferred

• Ability to design, build, and maintain security tooling and automation in cloud-native environments, approaching security problems with a software engineering mindset

• Technical knowledge of cybersecurity concepts, threat modeling, and secure design principles sufficient to architect solutions and advise other teams

• Experience with security logging pipelines, data transformation, and observability tooling

• Familiarity with PKI concepts, certificate lifecycle management, and cryptographic best practices

• Working knowledge of compliance frameworks and the ability to translate control requirements into automated, auditable solutions

• Proficiency with infrastructure-as-code, cloud services (especially AWS), and containerized environments

• Familiarity with agentic engineering patterns, including orchestration of AI agents, tool-use frameworks, or LLM-based automation in production environments 

• Comfortable working in an agile/sprint-based environment with ticket-driven delivery and clearly defined acceptance criteria 

• Demonstrated ability to work with high autonomy — independently determines best course of action and drives work forward with minimal oversight 

• Effective communicator with strong collaboration skills, able to serve as a consultative security partner across technical and non-technical teams

• Professional demeanor with strong client orientation, earning trust inside and outside the organization

• Sound judgment, confidentiality, and task prioritization skills when handling sensitive information

• Ability to work remotely with high productivity, maintaining strong communication and collaboration

• Commitment to continuous learning and professional growth, staying current with evolving security threats and technologies

• Minimal, generally 12 days or less per year, ~2x team get-togethers per year