Lead Security Engineer
TimescaleSalary not specified
Full Time
Senior (5 to 8 years)
$160,000 – $190,000Compensation
Senior (5 to 8 years)Experience Level
Full TimeJob Type
UnknownVisa
Financial Services, Artificial Intelligence, TechnologyIndustries
Requirements
- Five or more years of experience as a security engineer
- Experience securing modern web applications and distributed data infrastructure in a cross-team setting
- Prior experience working with enterprise security technologies such as WAF, CSPM, OAuth2, and SIEM
- Strong understanding of cryptography and current best practices
- Experience with penetration testing tools, techniques and methodologies and understanding of common vulnerabilities and remediation strategies
- Three or more years experience writing code in Python, Javascript, Java, or Go
- Experience conducting or facilitating IT security audits
- Familiarity with security models for cloud providers
Responsibilities
- Implement security frameworks to ensure Kensho maintains a security envelope aligned with S&P Global standards
- Develop and update security plans: Planning and managing security projects and initiatives
- Demonstrate excellent surveillance and emergency response skills
- Identify and mitigate security vulnerabilities: Perform static and dynamic vulnerability assessments and incorporate tools in the SDLC using commercial and open source tools
- Implement de-escalation techniques: Prioritizing training in de-escalation techniques to effectively deal with conflicts
- Maintain a GenAI security posture: Help establish and enable a GenAI security posture at an enterprise scale and have complete oversight of the AI Accelerator Security program
- Conduct risk assessment and management: Spotting risky behaviors and configurations in critical infrastructure components to stop network intrusions and preempt cyberattacks
- Audit policies and controls continuously: Driving the cybersecurity process forward by regularly auditing the policies and controls in place
- Build a vulnerability management program: Ensuring that people in the organization continuously check for known vulnerabilities and take appropriate steps to remediate them
- Design and implement security controls and processes across Kensho and provide monitoring to ensure compliance
- Analyze and recommend security practices and tools for engineering teams to incorporate into the software development lifecycle
- Execute security architecture reviews for e2e application frameworks
- Perform Cloud Security Posture Management (CSPM), working with Infrastructure teams to continuously improve
- Support SIEM integration for the security stack
Skills
Security Frameworks
Vulnerability Assessment
Static Analysis
Dynamic Analysis
Incident Response
Network Security
Emergency Response
Security Planning
S&P Global
Provides financial information and analytics services
About S&P Global
S&P Global provides financial information and analytics to a wide range of clients, including investors, corporations, and governments. The company offers services such as credit ratings, market intelligence, and indices, which help clients understand and navigate the global financial market. S&P Global's products work by utilizing advanced data analytics and research to deliver insights that assist clients in making informed decisions and managing risks. Unlike many competitors, S&P Global has a diverse range of divisions, including S&P Global Ratings and S&P Dow Jones Indices, which allows it to cater to various financial needs. The company's goal is to support clients in driving growth while also committing to corporate responsibility and positive societal impact.
New York City, New YorkHeadquarters
1917Year Founded
IPOCompany Stage
Data & Analytics, Financial ServicesIndustries
10,001+Employees
Benefits
Health Insurance
Unlimited Paid Time Off
Professional Development Budget
401(k) Company Match
Family Planning Benefits
Employee Discounts
Risks
Integration challenges with new acquisitions like ProntoNLP may cause operational issues.
Increased competition from AI-driven platforms like Brooklyn Investment Group.
Dependence on volatile credit ratings market could impact revenue stability.
Differentiation
S&P Global integrates advanced AI tools for superior financial analytics capabilities.
The company offers comprehensive ESG solutions, meeting growing sustainability demands.
S&P Global's diverse divisions provide a wide range of financial services globally.
Upsides
Acquisition of ProntoNLP boosts data analytics and sentiment scoring capabilities.
Rising demand for ESG data enhances S&P Global's market position.
Expansion into India strengthens S&P Global's research and insights offerings.
Related Jobs
RemoteRemotePrincipal Security Engineer
Eli Lilly and CompanySalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSenior Security Engineer, Application Security
Trail of BitsSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSenior Cloud Security Engineer
PaytientSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSecurity Engineer, Infrastructure Security
OpenAI$292,500 - $405,000/year
- Full Time
- Junior (1 to 2 years)
RemoteSenior Engineer, IT & Information Security Automation
SmithRxSalary not specified
RemoteSales Engineer - Federal
SpyCloudSalary not specified
- Full Time
- Expert & Leadership (9+ years)
RemoteSecurity Architect
EarnestSalary not specified
- Full Time
- Expert & Leadership (9+ years)
RemoteSenior Security Operations Analyst
Vanta$139,000 - $164,000/year
- Full Time
- Senior (5 to 8 years)
RemoteBoston Dynamics Consulting - Senior Consultant
Boston DynamicsSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSenior Security Engineer
BraceSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSenior Digital Auditor
GE HealthcareSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSenior Penetration Tester
HumanaSalary not specified