Security Operations Engineer, Boston, GMO

Security Operations Engineer, Boston, GMO

Role Responsibilities

Company Profile

Founded in 1977, GMO is a private partnership committed to delivering superior investment performance and advice to our clients.  We offer strategies where we believe we are positioned to add the greatest value for our investors.  These include multi-asset class portfolios as well as dedicated equity, fixed income, and absolute return offerings, many of which employ the firm’s proprietary 7-year asset class forecasting framework.  Our client base is comprised primarily of institutions, including corporate and public defined benefit and defined contribution retirement plans, endowments, foundations, and financial intermediaries.

GMO, whose sole business is investment management, employs approximately 470 people worldwide and is headquartered in Boston with offices in San Francisco, London, Amsterdam, Sydney, and Singapore. We manage roughly $70 billion in client assets using a combination of top-down and bottom-up approaches that blend traditional fundamental insights with innovative quantitative methods to identify undervalued asset classes and securities. Our valuation-based approach embeds several key factors, including: a long-term investment horizon, discipline, conviction, and a commitment to research. Our research emphasizes not only identifying and exploiting pricing dislocations but also understanding the long-term drivers of return in the markets in which we invest. We are known for our candor in sharing our views with clients and for our willingness to take bold, differentiated positions when opportunities warrant.

Department Profile

As GMO’s first line of defense against unauthorized access from outside sources and potential security threats, the Security Engineering team is responsible for security systems design, implementation, management, and continuous improvement globally. Security monitoring, threat hunting, incident response and forensic analysis are other areas of importance that fall under this team’s umbrella. Security Engineering participates in the design of security policies and procedures to align with corporate goals and regulatory requirements and implements supporting technology solutions.


Reporting to the Network/Security Manager, this position is part of the Technology Infrastructure group. The Security Operations Engineer will support systems monitoring and data protection in a hybrid cloud environment. This individual will administer and maintain systems related to security such as firewalls, intrusion prevention systems, identity management, application control and endpoint detection & response. Other areas of responsibility include security event management and threat response and supporting vulnerability management efforts.

Primary Responsibilities:

Firewall, intrusion prevention, enterprise anti-virus, data loss prevention system and vulnerability management system support

Participate in security event management and threat response programs

Support vulnerability management, data protection and email security programs

Ensure environment is stable and in compliance with corporate security policy and industry standards

Respond to security incidents, including off-hours support as needed

Participate in scheduled off-hours configuration changes, service outage upgrades and DR/BCP testing

Contribute to the development of security team standards, policies, procedures and processes in conjunction with Technology Risk Management

Assist in performing security product evaluations and recommendations


Undergraduate degree in technology discipline or equivalent experience

5+ years of information systems security experience

Industry and/or vendor security certifications a plus (Microsoft, SANS, CISSP, CCSP)


Hands-on experience with information security tools such as firewalls, intrusion prevention systems, enterprise antivirus, endpoint detection & response and identity management

Familiarity with cloud security relating to IaaS, PaaS, and SaaS solutions

Experience with Microsoft 365 and the Microsoft Defender product suite

Understanding of modern analysis and forensics techniques on Windows

Proven ability to respond rapidly and resolve system problems, outages and alerts

Strong analytical, decision making, and problem-solving skills working independently and as part of a team

Strong time management, work-load prioritization, and written and oral communication skills

Proactive approach to keeping up with and educating others about security threats

Understanding of control frameworks such ITIL and the NIST CSF

Apply for the job:

MA Finance Jobs (Not an all inclusive list):