Security Lead

About The Position

Requirements

• Bachelor’s degree in Computer Science, Management Information Systems, or equivalent experience.
• Minimum of three years hands-on experience with Microsoft365, including Defender and Purview
• Experience with Microsoft EMS (Azure AD, Advanced Threat Analytics, Intune, etc.).
• Experience with Active Directory and Group Policy administration.
• Industry certification such as CISSP, CASP+, GSEC, or equivalent

Nice To Haves

• financial services experience preferred

Responsibilities

• Collaborate with IT teams and the Information Security Officer to design and implement comprehensive security strategies, including controls, monitoring, vulnerability management, and reporting.
• Lead threat intelligence meetings and oversee the collection and analysis of relevant security information.
• Conduct internal technology control testing and gap analysis to ensure effective security measures.
• Develop and adjust technical controls in partnership with the Information Security Officer as needed.
• Support operational leaders in securing third-party services by assessing risk and implementing proper controls.
• Serve as a technical resource for key security functions including access controls, data loss prevention, SIEM/SOAR, and cloud/network/endpoint security.
• Act as the primary technical contact for audits, including SOX, regulatory, and internal reviews.
• Manage documentation for security policies, standards, procedures, and controls.
• Apply security best practices and frameworks for network and enterprise cloud application security.
• Identify, report, and remediate vulnerabilities across networks, servers, and endpoints.
• Utilize threat intelligence sources to proactively mitigate cyber risks.
• Manage security information and event management solutions for compliance and incident response.
• Demonstrate expertise in Office 365 security tools, including Advanced Threat Protection, Identity and Access Management, Conditional Access, and Data Loss Prevention.
• Apply NIST security control standards and best practices to manage cybersecurity risk.
• Lead development and enhancement projects for security applications.
• Provide training and materials to technology staff and employees.
• Coordinate with vendors for technical support and guidance.
• Effectively manage time between projects and daily operational tasks.
• Operate in a highly regulated environment; financial services experience preferred

Benefits

• Healthcare (medical, dental, vision)
• Basic term and optional term life insurance
• Short-term and long-term disability
• Parental leave
• 401(k) with employer match
• Paid vacation & paid holidays