Security Operations Engineer, Boston, GMO
Founded in 1977, GMO is a private partnership committed to delivering superior investment performance and advice to our clients. We offer strategies where we believe we are positioned to add the greatest value for our investors. These include multi-asset class portfolios as well as dedicated equity, fixed income, and absolute return offerings, many of which employ the firm’s proprietary 7-year asset class forecasting framework. Our client base is comprised primarily of institutions, including corporate and public defined benefit and defined contribution retirement plans, endowments, foundations, and financial intermediaries.
GMO, whose sole business is investment management, employs approximately 470 people worldwide and is headquartered in Boston with offices in San Francisco, London, Amsterdam, Sydney, and Singapore. We manage roughly $70 billion in client assets using a combination of top-down and bottom-up approaches that blend traditional fundamental insights with innovative quantitative methods to identify undervalued asset classes and securities. Our valuation-based approach embeds several key factors, including: a long-term investment horizon, discipline, conviction, and a commitment to research. Our research emphasizes not only identifying and exploiting pricing dislocations but also understanding the long-term drivers of return in the markets in which we invest. We are known for our candor in sharing our views with clients and for our willingness to take bold, differentiated positions when opportunities warrant.
As GMO’s first line of defense against unauthorized access from outside sources and potential security threats, the Security Engineering team is responsible for security systems design, implementation, management, and continuous improvement globally. Security monitoring, threat hunting, incident response and forensic analysis are other areas of importance that fall under this team’s umbrella. Security Engineering participates in the design of security policies and procedures to align with corporate goals and regulatory requirements and implements supporting technology solutions.
Reporting to the Network/Security Manager, this position is part of the Technology Infrastructure group. The Security Operations Engineer will support systems monitoring and data protection in a hybrid cloud environment. This individual will administer and maintain systems related to security such as firewalls, intrusion prevention systems, identity management, application control and endpoint detection & response. Other areas of responsibility include security event management and threat response and supporting vulnerability management efforts.
Firewall, intrusion prevention, enterprise anti-virus, data loss prevention system and vulnerability management system support
Participate in security event management and threat response programs
Support vulnerability management, data protection and email security programs
Ensure environment is stable and in compliance with corporate security policy and industry standards
Respond to security incidents, including off-hours support as needed
Participate in scheduled off-hours configuration changes, service outage upgrades and DR/BCP testing
Contribute to the development of security team standards, policies, procedures and processes in conjunction with Technology Risk Management
Assist in performing security product evaluations and recommendations
Undergraduate degree in technology discipline or equivalent experience
5+ years of information systems security experience
Industry and/or vendor security certifications a plus (Microsoft, SANS, CISSP, CCSP)
Hands-on experience with information security tools such as firewalls, intrusion prevention systems, enterprise antivirus, endpoint detection & response and identity management
Familiarity with cloud security relating to IaaS, PaaS, and SaaS solutions
Experience with Microsoft 365 and the Microsoft Defender product suite
Understanding of modern analysis and forensics techniques on Windows
Proven ability to respond rapidly and resolve system problems, outages and alerts
Strong analytical, decision making, and problem-solving skills working independently and as part of a team
Strong time management, work-load prioritization, and written and oral communication skills
Proactive approach to keeping up with and educating others about security threats
Understanding of control frameworks such ITIL and the NIST CSF
Apply for the job: https://jobs.lever.co/gmo/9c3eabe0-0151-4c46-9d7a-f3cf10c9abb4
MA Finance Jobs (Not an all inclusive list): https://afriquejobs.com/tag/mafinjobs/