Security Engineer - Red Team - Cloud

Quincy, Massachusetts

State Street

State Street provides investment servicing, investment management, investment research and trading services to institutional investors worldwide.

View all jobs at State Street

Apply now Apply later

Who we are looking for

The Red Team Engineer – Cloud Specialist will perform as a member of the Offensive Security team within the Global Cyber Security group and will serve as a technical resource for penetration testing on various cloud platforms. The engineer will also be an advisor on technical matters involving the security the cloud-based systems. 

The Red Team Engineer – Cloud Specialist will conduct comprehensive assessments of the operational and technical security controls in Azure, AWS, OCI, GCP, and cloud platforms.. These assessments help determine the overall effectiveness of the controls to ensure they are implemented adequately and correctly, operating as intended, and producing the desired outcome with respect to meeting the security requirements for the system. The Red Team Engineer will interact directly with Application and Infrastructure SMEs, Program Management, Information Security Officers (ISOs), and System Owners. Application of technical expertise and a comprehensive understanding of the related IT controls are required, but not limited to the following areas: Access and Authentication, Data Security, Secure Software Management, Infrastructure Operations, Network Edge Protection, and Vulnerability Management.

What you will be responsible for

  • Test enterprise defenses; attacking, detection avoidance and preventing circumvention to determine level of risk and exposure.
  • Perform full, detailed security risk assessments and penetration tests on a wide variety of high or critical business solutions that include but are not limited to software, hardware, networks, and mobile devices as well as complex solutions that may include any number of the above configurations
  • Ensure compliance of system and application security in accordance with corporate security practices/guidelines and relevant technology standards.
  • Prepare final security assessment reports containing the results and findings from the assessment.
  • Conduct follow up and assist with resolution of all findings, as needed.

What we value

  • Expert in Cloud Security Concepts
  • Perform Infrastructure and Application Penetration Testing
  • Deep knowledge of attack frameworks, such as MITRE ATT&CK
  • Execute Vulnerability Scanning
  • IT and Network infrastructure technologies
  • Familiarity various penetration test utilities and tool suites
  • Ability to perform light programming tasks using common languages such a python and bash
  • Demonstrated ability to identify core issues and work with leaders and team members to resolution
  • Strong organizational, task switching, and prioritizing skills
  • Ability to work independently and solve challenging problems while collaboration with stakeholders
  • Knowledge and interest in current vulnerability related trends
  • Attention to detail
  • Driving to results
  • Collaboration and influencing
  • Working professionally with confidential information
  • Presentation skills, both orally and written
  • Ability to work well with others and under pressure
  • Demonstrated professionalism in approach to communicating ideas and solutions in simple language

Education & Preferred Qualifications

  • 3+ years of network and/or application penetration testing
  • 3+ years of experience with various cloud platforms
  • 5+ years of experience in security/systems/network engineering and/or development
  • CEH, OSCP, CISSP, or equivalent preferred.

Are you the right candidate? Yes!

We truly believe in the power that comes from the diverse backgrounds and experiences our employees bring with them. Although each vacancy details what we are looking for, we don’t necessarily need you to fulfil all of them when applying. If you like change and innovation, seek to see the bigger picture, make data driven decisions and are a good team player, you could be a great fit.

Why this role is important to us

Our technology function, Global Technology Services (GTS), is vital to State Street and is the key enabler for our business to deliver data and insights to our clients. We’re driving the company’s digital transformation and expanding business capabilities using industry best practices and advanced technologies such as cloud, artificial intelligence and robotics process automation.

We offer a collaborative environment where technology skills and innovation are valued in a global organization. We’re looking for top technical talent to join our team and deliver creative technology solutions that help us become an end-to-end, next-generation financial services company.

Join us if you want to grow your technical skills, solve real problems and make your mark on our industry.

About State Street

What we do. State Street is one of the largest custodian banks, asset managers and asset intelligence companies in the world. From technology to product innovation, we’re making our mark on the financial services industry. For more than two centuries, we’ve been helping our clients safeguard and steward the investments of millions of people. We provide investment servicing, data & analytics, investment research & trading and investment management to institutional clients.

Work, Live and Grow. We make all efforts to create a great work environment. Our benefits packages are competitive and comprehensive. Details vary by location, but you may expect generous medical care, insurance and savings plans, among other perks. You’ll have access to flexible Work Programs to help you match your needs. And our wealth of development programs and educational support will help you reach your full potential.

Inclusion, Diversity and Social Responsibility. We truly believe our employees’ diverse backgrounds, experiences and perspectives are a powerful contributor to creating an inclusive environment where everyone can thrive and reach their maximum potential while adding value to both our organization and our clients. We warmly welcome candidates of diverse origin, background, ability, age, sexual orientation, gender identity and personality. Another fundamental value at State Street is active engagement with our communities around the world, both as a partner and a leader. You will have tools to help balance your professional and personal life, paid volunteer days, matching gift programs and access to employee networks that help you stay connected to what matters to you.

State Street is an equal opportunity and affirmative action employer.

Salary Range:

$110,000 - $185,000 Annual

The range quoted above applies to the role in the primary location specified. If the candidate would ultimately work outside of the primary location above, the applicable range could differ.

Job Application Disclosure:

It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.

State Street's Speak Up Line

Apply now Apply later
Job stats:  7  0  0

Tags: Analytics Application security Artificial Intelligence Automation AWS Azure Bash CEH CISSP Cloud Compliance GCP MITRE ATT&CK Offensive security OSCP Pentesting Python Red team Risk assessment Security assessment Security Assessment Report Vulnerability management

Perks/benefits: Career development Competitive pay Flex hours Health care

Region: North America
Country: United States

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.