Security Engineer
Full Time
Salt Lake City, UT
$150,000 - $190,000 a year
Posted Today
Job description
Description
Jefferies Financial Group Inc. (‘‘Jefferies,’’ ‘‘we,’’ ‘‘us’’ or ‘‘our’’) is a U.S.-headquartered global full service, integrated investment banking and securities firm. Our largest subsidiary, Jefferies LLC, a U.S. broker-dealer, was founded in the U.S. in 1962 and our first international operating subsidiary, Jefferies International Limited, a U.K. broker-dealer, was established in the U.K. in 1986. Our strategy focuses on continuing to build out our investment banking effort, enhancing our capital markets businesses and further developing our Leucadia Asset Management alternative asset management platform. We offer deep sector expertise across a full range of products and services in investment banking, equities, fixed income, asset and wealth management in the Americas, Europe and the Middle East and Asia.
Jefferies Financial Group Inc. (‘‘Jefferies,’’ ‘‘we,’’ ‘‘us’’ or ‘‘our’’) is a U.S.-headquartered global full service, integrated investment banking and securities firm. Our largest subsidiary, Jefferies LLC, a U.S. broker-dealer, was founded in the U.S. in 1962 and our first international operating subsidiary, Jefferies International Limited, a U.K. broker-dealer, was established in the U.K. in 1986. Our strategy focuses on continuing to build out our investment banking effort, enhancing our capital markets businesses and further developing our Leucadia Asset Management alternative asset management platform. We offer deep sector expertise across a full range of products and services in investment banking, equities, fixed income, asset and wealth management in the Americas, Europe and the Middle East and Asia.
Primary Responsibilities:
The Senior PKI Security Engineer will play a critical role in the architecture, development, deployment, and management of Jefferies’s PKI (Private Key Infrastructure) solution leveraging HSM’s (Hardware Security Modules) and a CLM (Certificate Lifecycle Management) tool as part of the global information security team. The engineer will also have multiple opportunities for security related projects outside of the immediate PKI/Crypto basis.
- Maintain and enhance a hybrid environment Certificate Lifecycle Management (CLM) solution that integrates with on-premises Microsoft Certificate Authority, cloud, and SaaS applications.
- Maintain and enhance an on-premises Hardware Security Module (HSM) solution to protect cryptography keys used by Jefferies within applications and servers.
- Identify, engineer, and champion expanded use of the PKI within the Organization’s infrastructure.
- Provide ongoing integration support with application teams and cryptography assistance.
- Provide infrastructure implementation assistance and operational services for BYOK/EKM (Bring your own key/Enterprise Key Management) infrastructures hosted on-premises and AWS (Amazon Web Services) Cloud HSM and Azure KeyVault.
- Perform ongoing assessments and remediation of existing PKI infrastructure Implementation of policies, digital signatures, and access control for existing and future use cases.
- Partner with all stakeholders and external vendors to design, develop, deploy, and support the best possible solution to meet Jefferies business needs
- Enable autorenewal automation with both private and public certificates on web and internal facing applications
- Help transform current digital certificate management ecosystem, by focusing on the management of crypto keys used primarily for traditional data in transit use cases (e.g., SSL) as well as emerging use cases such as internet of things (IoT) and artificial intelligence (AI)
- Work closely with the Windows, Unix, Application Engineering and Operations team to support and integrate security at every level into the environment
- Work independently and as part of a team to urgently analyze and troubleshoot escalated issues from Tier II, train and provide technical training to Tier I & II Technician; Act as Tier III support for all PKI/Certificate related issues as well as other responsibilities/duties as assigned. Efficiently troubleshoot/prioritize issues and create a culture of root cause analysis.
- Assist in maturing network/system security engineering and maintenance practices
Required Background:
- Demonstrated knowledge of the PKI environment and cryptographic needs of businesses.
- Experience preparing detailed architecture, and design documents.
- Manage multiple projects simultaneously and can adapt to changing business needs.
- Work well with cross functional global and remote teams.
- Self-disciplined, self-starter who can provide leadership and mentor others while resolving complex incidents and delivering projects.
- Ability to analyze complex problems, propose effective solutions and understand and apply business vision and direction.
- Ability to be called upon 24/7 in case of urgent emergencies.
- Ability and willingness to learn new things in a fast-paced environment.
Desirable Skills:
- Specific experience with deploying, managing, and administrating specific certificate lifecycle management tools such as AppViewX, Keyfactor, or Venafi
- Experience with management vaulting solutions such as CyberArk or HashiCorp.
- Experience with network detection tools such as Darktrace, Cisco Stealthwatch, ExtraHop a big plus.
- Experience with Network Security tools such as Qualys, Tenable, Palo Alto Networks, Cloudflare, network troubleshooting tools (sniffer, syslog, NetFlow, TCPDUMP, Wireshark etc.), Intrusion Detection, Incident Response, Data Encryption, Network Access Controls, Threat Management, and proper IT related Security Controls will be considered a big plus.
- Hands-on operational experience and management of AWS/Azure services.
- Although specific certifications are not required, they are a big plus. Including: CCNA/CCNP Routing & Switching, Palo Alto Networks Security certifications (PCSNE), Security+, CCNA Security, or CISSP.
- Previous experience with managing Windows/Unix Servers, Checkpoint, Fortinet, Fireeye, Proofpoint, Cloudflare, F5 Silverline a plus.
Qualifications
The salary range for this role is $150,000 to $190,000.
At Jefferies, we believe that diversity fosters creativity, innovation and thought leadership through the infusion of new ideas and perspectives. We have made a commitment to building a culture that provides opportunities for all employees regardless of our differences and supports a workforce that is reflective of the communities where we work and live. As a result, we are able to pool our collective insights and intelligence to provide fresh and innovative thinking for our clients.
Jefferies is an equal employment opportunity employer. We practice equal opportunity for all, and all qualified applicants will receive consideration for employment without regard to race, creed, color, national origin, ancestry, religion, gender, pregnancy, age, physical or mental disability, marital status, sexual orientation, gender identity or expression, veteran or military status, genetic information, reproductive health decisions, or any other factor protected by law. We are committed to hiring the most qualified applicants and complying with all federal, state, and local equal employment opportunity laws. As part of this commitment, Jefferies will extend reasonable accommodations to individuals with qualified disabilities, as appropriate, under applicable law.
All employees must follow Jefferies’ COVID-19 protocol policy, which is subject to change.
Primary Location: US-UT-Salt Lake City
Job: Information Technology
Organization: Corporate
Schedule: Full-time
Job Posting: May 15, 2023, 2:12:55 PM
www.randomorbitinc.com is the go-to platform for job seekers looking for the best job postings from around the web. With a focus on quality, the platform guarantees that all job postings are from reliable sources and are up-to-date. It also offers a variety of tools to help users find the perfect job for them, such as searching by location and filtering by industry. Furthermore, www.randomorbitinc.com provides helpful resources like resume tips and career advice to give job seekers an edge in their search. With its commitment to quality and user-friendliness, www.randomorbitinc.com is the ideal place to find your next job.