Senior Security Engineer

DAIWA CAPITAL MARKETS AMERICA INCNew York, NY
$160,000 - $190,000Hybrid

About The Position

DCMA is seeking an experienced Senior Security Engineer to join its Information Security team within a fast-paced financial services environment. Reporting to the Cybersecurity Manager, this role will help design, implement, administer, and continuously improve enterprise security controls that protect the organization’s systems, applications, networks, data, and information assets. The Senior Security Engineer will serve as a technical leader across identity and access management, cloud security, endpoint security, vulnerability management, network security, data protection, security monitoring, and incident response. This role partners with Infrastructure, Cloud, Networking, Application Development, business stakeholders, auditors, and security service providers to strengthen DCMA’s security posture, support regulatory and audit requirements, and advance strategic security initiatives. The ideal candidate brings strong technical judgment, communication skills, ownership, and a customer-service mindset, with experience applying security frameworks and controls aligned with ISO 27001, NIST CSF, NIST RMF, CIS Controls, SOC requirements, and financial services regulatory expectations.

Requirements

  • Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field; equivalent experience may be considered.
  • 7+ years of cybersecurity experience, including security engineering, architecture, or advanced security operations responsibilities.
  • Experience leading security projects from planning and design through implementation and operational support.
  • Experience designing, implementing, and supporting enterprise security technologies and controls across cloud, network, endpoint, identity, vulnerability management, and monitoring domains.
  • Strong knowledge of security tools and platforms, including SIEM, EDR/EPS, IDS/IPS, vulnerability scanners, endpoint protection, email security, and network security solutions.
  • Experience securing cloud environments, preferably Microsoft Azure and Microsoft 365/O365, and working with cloud security architectures.
  • Strong understanding of networking concepts and protocols, including TCP/IP, DNS, DHCP, routing, switching, firewalls, VPN, WAFs, segmentation, and IDS/IPS/HIDS technologies.
  • Strong experience with Windows, Active Directory, Azure AD, Group Policy, event logs, and security hardening.
  • Understanding common attack patterns, threat progression, MITRE ATT&CK®, NIST, CIS, and threat intelligence frameworks.
  • Experience supporting security programs within regulated industries such as financial services, banking, insurance, healthcare, or legal services.
  • Strong analytical, problem-solving, critical-thinking, troubleshooting, organizational, and prioritization skills.
  • Excellent written, verbal, and interpersonal communication skills, with the ability to communicate effectively with technical and non-technical stakeholders, including executive leadership.
  • Demonstrated ability to work independently and collaboratively, take ownership of issues, build relationships with technology teams, and influence security outcomes across the organization.

Nice To Haves

  • Experience with Microsoft Azure security services, Microsoft Entra ID, Microsoft Purview, DLP, and information protection technologies.
  • Experience with network firewalls, network segmentation, vulnerability management platforms such as Tenable, and endpoint security platforms such as SentinelOne or Microsoft Defender.
  • Experience with cloud security platforms or CNAPP technologies.
  • Experience supporting ISO 27001, NIST, or financial services compliance programs.
  • Industry certifications such as CISSP, CCSP, CISM, or equivalent certifications.

Responsibilities

  • Design, implement, maintain, and continuously improve enterprise security controls across cloud, network, endpoint, identity, data protection, and monitoring domains.
  • Lead security engineering initiatives, including architecture reviews, secure design recommendations, technical implementation, and operational support of security technologies.
  • Manage and enhance identity security controls, including Microsoft Entra ID, Conditional Access, multi-factor authentication, privileged access management, role-based access controls, and identity governance.
  • Manage and optimize security tools and platforms, including endpoint protection, SIEM, DLP, vulnerability management, email security, network security, and cloud security solutions.
  • Lead vulnerability management activities, including assessments, remediation planning, risk prioritization, reporting, and coordination with technology teams.
  • Support incident response, threat hunting, root cause analysis, forensics, detection engineering, automation workflows, and incident response playbooks.
  • Develop and maintain security procedures and standards, technical baselines, procedures, implementation guidance, and other governance materials.
  • Perform technical risk assessments and recommend risk mitigation strategies for systems, applications, vendors, infrastructure, cloud environments, and business processes.
  • Support regulatory, audit, and compliance initiatives, including ISO 27001, NIST Cybersecurity Framework, SOC examinations, and other applicable security standards.
  • Review and approve security-related changes to enterprise systems, including firewall rules, cloud configurations, privileged access requests, and infrastructure modifications.
  • Partner with IT and business teams to integrate security requirements into enterprise initiatives and operational processes while balancing security, operational, and business objectives.
  • Evaluate emerging cybersecurity threats, technologies, and industry best practices; recommend improvements to strengthen security maturity and operational effectiveness.

Benefits

  • Competitive Benefits Package (Medical, Dental and Vision)
  • Ancillary Insurance (Basic Life Insurance, AD&D Insurance, and Short & Long-term Disability)
  • Flexible Spending and Health Savings Accounts (FSA and HSA)
  • Employee Assistance Program (EAP)
  • Comprehensive health and wellness benefits
  • Parental Leave
  • Family building benefits
  • 401(k) with company match
  • Paid Time Off and holidays
  • Professional development, educational assistance and training programs
  • Community Engagement Programs
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service