Linux Security Engineer

JOB TITLE
Linux Security Engineer

A CAREER WITH POINT72’S TECHNOLOGY TEAM
As Point72 reimagines the future of investing, our Technology group is constantly improving our company’s IT infrastructure, positioning us at the forefront of a rapidly evolving technology landscape. We’re a team of experts experimenting, discovering new ways to harness the power of open-source solutions, and embracing enterprise agile methodology. We encourage professional development to ensure you bring innovative ideas to our products while satisfying your own intellectual curiosity.

Our Global Information Security team’s mission is to ensure the development, implementation, and management of a comprehensive program that effectively protects the confidentiality, integrity, and availability of Point72 information assets. Our team is comprised of security professionals with expertise in a diverse portfolio of security disciplines.

WHAT YOU’LL DO
• Design and implement security controls and hardening measures for our enterprise Linux environments
• Lead security architecture decisions for Linux infrastructure across on-premise datacenters and cloud platforms
• Develop and maintain automation scripts using Ansible for security compliance and configuration management
• Implement security-hardened Linux OS images and guardrails to enforce their use across the organization
• Manage and optimize container security strategies using Docker, Podman, and associated orchestration tools (K8’s, OpenShift, Swarm, etc)
• Architect, configure and maintain Linux system authentication and authorization mechanisms
• Improve privileged access management solutions for Linux
• Monitor and respond to security incidents involving Linux systems
• Create and maintain security documentation and standard operating procedures
• Perform security assessments and audits of Linux infrastructure
• Collaborate with cross-functional teams to ensure security requirements are met
• Provide technical guidance and mentorship on Linux security best practices

WHAT’S REQUIRED
• 5+ years of hands-on experience with enterprise Linux environments, particularly RHEL and RPM-based distributions
• Strong expertise in Linux security principles, hardening techniques, and best practices
• Familiarity with multiple common Linux distributions (eg: Ubuntu, Debian, Rocky, CoreOS, etc)
• Proficient in Ansible automation and shell scripting
• Experience with Linux authentication systems and integration with Active Directory/LDAP (eg: Centrify)
• Demonstrated experience with security for container technologies (Docker, Podman) and associated orchestration tools (Kubernetes, OpenShift, Swarm, etc.)
• Deep familiarity with Linux privileged access management (su, sudo, sudosh) and related 3rd-party tools (eg: CyberArk, Delinea)
• Strong familiarity with best practices for securing and hardening common Linux services (SSH, HTTPD, SMTP, etc.)
• Intimate knowledge of Linux firewall configuration (iptables, firewalld, etc)
• Experience across both on-premise (bare metal, VMWare) and cloud (AWS, Azure, or GCP)
• Experience with Foreman and/or equivalent server lifecycle management tools
• General familiarity with common Linux DevOps and CI/CD processes and tools
• Commitment to the highest ethical standards

WE TAKE CARE OF OUR PEOPLE
We invest in our people, their careers, their health, and their well-being. When you work here, we provide:
• Fully-paid health care benefits
• Generous parental and family leave policies
• Volunteer opportunities
• Support for employee-led affinity groups representing women, people of color and the LGBQT+ community
• Mental and physical wellness programs
• Tuition assistance
• A 401(k) savings program with an employer match and more

ABOUT POINT72
Point72 is a leading global alternative investment firm led by Steven A. Cohen. Building on more than 30 years of investing experience, Point72 seeks to deliver superior returns for its investors through fundamental and systematic investing strategies across asset classes and geographies. We aim to attract and retain the industry’s brightest talent by cultivating an investor-led culture and committing to our people’s long-term growth. For more information, visit www.Point72.com/about.

The annual base salary range for this role is $200,000-$250,000 (USD) , which does not include discretionary bonus compensation or our comprehensive benefits package. Actual compensation offered to the successful candidate may vary from posted hiring range based upon geographic location, work experience, education, and/or skill level, among other things.