Assistant Vice President, Linux Administrator - Threat Management

About CLS:

CLS is the trusted party at the centre of the global FX ecosystem.  Utilized by thousands of counterparties, CLS makes FX safer, smoother and more cost effective.  Trillions of dollars’ worth of currency flows through our systems each day. 

Created by the market for the market, our unrivalled global settlement infrastructure reduces systemic risk and provides standardization for participants in many of the world’s most actively traded currencies.  We deliver huge efficiencies and savings for our clients: in fact, our approach to multilateral netting shrinks funding requirements by over 96% on average, so clients can put their capital and resources to better use.

CLS products are designed to enable clients to manage risk most effectively across the full FX lifecycle – whether through more efficient processing tools or market intelligence derived from the largest single source of FX executed data available to the market.

Our ambition to make a positive difference starts with our people.  Our values – Protect, Improve, Grow – underpin everything that we do at CLS and define and shape a supportive and inclusive working environment in which everyone is encouraged to be open and forward-thinking.

Job information:

• Functional title - Assistant Vice President, Linux Administrator - Threat Management
• Department - Infrastructure Management
• Corporate level - Assistant Vice President
• Report to - Vice President, Threat Management
• Location - Iselin, NJ

Job Purpose

This role is responsible for the remediation of security vulnerabilities and configuration compliance of the global CLS Unix estate. The role will work closely with Unix Infrastructure, Unix Engineering, Cloud Engineering and IT Security teams to remediate security vulnerabilities through the environments.

The successful candidate will have a solid background working with Red Hat Linux command line in a Production enterprise environment and security vulnerability and configuration management. This is a hands-on role that involves constant collaboration across departments.

Essential Function / major duties and responsibilities of the job

Strategic

• Perform system patching and administration of Red Hat Linux Servers in a Production enterprise environment.
• Automation using Configuration Management tool Ansible.
• Perform operating system security patching, remediation of non-patchable vulnerabilities and third-party application compliance patching.
• Collaborate with Engineering and other operational support teams to support the end-to-end vulnerability remediation delivery.
• Working to a ITIL framework (understanding of Incident, Problem, Change)

Operational

• Responsible for the security and configuration compliance of the Unix estate.
• Maintain, develop, and improve the vulnerability management remediation process. Develop solutions and automated methods to reduce manual and repetitive tasks.
• Work closely with key stakeholder groups including IT Security to ensure appropriate levels of engagement and focus are maintained around remediation deployments.
• Implement technical changes throughout the environments without unexpected disruption to the service.
• Plan, support and participate in scheduled patching events.
• Weekend work where required to deliver the required service goals.

Experience / essential and desired for successful job performance

Essential

• Has experience of implementing automation using Configuration Management tools such as Ansible, Chef, Puppet, Salt Stack.
• Has experience of managing solutions, technologies and processes associated with vulnerability and configuration compliance in a Red Hat Linux / VMware / AWS environment.
• Has experience of supporting production systems in an enterprise Red Hat Linux environment.
• Experience of Qualys Security Vulnerability reporting and performing monthly operating system security patching and remediating non-patchable vulnerabilities.
• Has experience of working with ITSM systems such as Service Now and understands priorities and SLA’s.

Desired

• Has experience working in financial services sector.
• Has experience of Ivanti Risk Sense.
• Has experience of AAP (Ansible Tower)

Qualifications / certifications

Essential

• Bachelor’s degree or equivalent
• Prior IT Vulnerability Remediation experience across business-critical Production infrastructure.

Desired

• Red Hat related certification.
• ITIL certification.

Success factors / ‘How’. Personal characteristics contributing to an individual’s ability to excel in the position.

• Possess a strong service-oriented mind set who can consistently deliver a high level of service to the business.
• Proactive individual who can take the lead in engaging with the business users and to support the environment with minimal oversight.
• Self-motivated to exceed management expectations and objectives.
• Demonstrate strong technical, analytical, and problem-solving skills.

Our commitment to employees:

At CLS, we celebrate diversity and consider this to be one of our strongest assets. We are committed to fostering an environment in which everyone feels comfortable to be who they are, and inclusion is valued. All employees have access to our inclusive benefits, including:

• Holiday - UK/Asia: 25 holiday days and 3 ‘life days’ (in addition to bank holidays). US: 23 holiday days.
• 2 paid volunteer days so that you can actively support causes within your community that are important to you.
• Generous parental leave policies to ensure you can enjoy valuable time with your family.
• Parental transition coaching programmes and support services.
• Wellbeing and mental health support resources to ensure you are looking after yourself, and able to support others.
• Affinity Groups (including our Women’s Forum, Black Employee Network and Pride Network) in support of our organisational commitment to embrace and always be learning more about DE&I.
• Hybrid working to promote a healthy work/life balance, enabling employees to work collaboratively in the office when needed and work from home when they don’t.
• Active support of flexible working for all employees where possible.
• Monthly ‘Heads Down Days’ with no meetings across the whole company.
• Generous non-contributory pension provision for UK/Asia employees, and 401K match from CLS for US employees.
• Private medical insurance and dental coverage.
• Social events that give you opportunities to meet new people and broaden your network across the organisation.
• Annual flu vaccinations.
• Discounts and savings and cashback across a wide range of categories including health and retail for UK employees.
• Discounted Gym membership – Complete Body Gym Discount/Sweat equity program for US employees.
• All employees have access to Discover – our comprehensive learning platform with 1000+ courses from LinkedIn Learning.
• Access to frequent development sessions on a number of topics to help you be successful and develop your career at CLS.