Sr Information Security EngineerApply Job ID: R-016968 Date posted: 01/04/2022 Primary Location SC-Fort Mill Other Locations TX-Austin , NC-Remote , SC-Remote ,CA-San Diego
Are you a team player? Are you curious to learn? Are you interested in working in meaningful projects? Do you want to work with cutting-edge technology? Are you interested in being part of a team that is working to transform and do things differently? If so, LPL Financial is the place for you!
LPL Financial (Nasdaq: LPLA) was founded on the principle that the firm should work for the advisor, and not the other way around. Today, LPL is a leader* in the markets we serve, supporting more than 18,000 financial advisors, 800 institution-based investment programs and 450 independent RIA firms nationwide. We are steadfast in our commitment to the advisor-centered model and the belief that Americans deserve access to personalized guidance from a financial advisor. At LPL, independence means that advisors have the freedom they deserve to choose the business model, services, and technology resources that allow them to run their perfect practice. And they have the freedom to manage their client relationships, because they know their clients best. Simply put, we take care of our advisors, so they can take care of their clients.
We are seeking a Senior Engineer, Information Security to join our team! This position is apart of the growing Information Security organization reporting to the AVP, Incident Response. As a senior engineer, you have several years' experience in the cybersecurity industry to assist with maturing LPL’s Incident Response program. You will be performing daily tasks associated with cyber incidents and investigations. You will be responsible for augmenting and strengthening your personal DFIR skill set, as well as helping develop the skills of your peers and team members.
Conduct security incident response and maintain high levels of knowledge with host and/or network-based forensics across Windows, Mac and Linux platform
Assess and develop the incident response program/strategy in a proactive fashion to help mature the security posture of organizations prior to an incident.
Establish goals that align with the mission and complete performance reviews.
Responsible for supporting Security Operations during normal business hours and in an on-call rotation outside normal business hours
Review and analysis of intrusion detection systems, security incident event management systems, network traffic and data from solutions such as anti-malware, advanced endpoint detection/prevention, firewalls, internet/email gateways and VPNs
Assessment and audit of compliance against the security policies and standards
Maintain and develop IR playbooks
Stay current with the latest malware, attack vectors and security trends
Actively manage the response activities for information security incidents including discovery, triage, containment, recovery, and remediation plan coordination
Coordinates efforts among multiple business units during response efforts
Create and automate processes for common investigations and deliverables.
Can effectively communicate with executives on the topics of forensics and incident response
Provide mentorship and technical guidance to less experienced Incident Responders and SOC staff
Conduct advanced computer and network forensic investigations relating to various forms of malware, email compromises, computer intrusion, theft of information, denial of service, data breaches, etc.
What are we looking for?
We want strong collaborators who can deliver a world-class client experience. We are looking for people who thrive in a fast-paced environment, are client-focused, team oriented, and are able to execute in a way that encourages creativity and continuous improvement.
Bachelor's degree in Information Security or Technology related field
5+ years of experience in information security, especially in an incident response role
Experience driving measurable improvement in monitoring and response capabilities at scale.
Experience with analysis of server, network, web and mail security events
Understanding of network security devices, protocols, routing, and services
Familiarity with Information Security Risk Management practices
Good written and verbal communication skills
Scripting experience, preferable with python
Proficiency with industry-standard DFIR toolsets, including X-Ways, EnCase, FTK, and Volatility.
Experience with performing host or network incident response, malware analysis, or forensics
Experience with Business Email Compromise and Ransomware incidents
Knowledge of host and network log sources to apply to investigation and IR methodology in investigations
Familiarity with MITRE ATT&CK and Cyber Kill Chain.
Experience working with SIEM systems, threat intelligence platforms, security automation and orchestration solutions, intrusion detection and prevention systems (IDS/IPS), file integrity monitoring (FIM), DLP and other network and system monitoring tools.
Knowledge of a variety of Internet protocols.
knowledge of memory forensics
Experience with cloud infrastructures for the enterprise, such as Amazon Web Services, G Suite, Office 365, and Azure. Experience with conducting log analysis of Windows Event Logs, Apache, IIS, and firewall logs.
Proficiency with database querying and analysis.
Experience with command line tools (grep, sed, awk, powershell), python, and other programming languages.
Familiarity with Laws, Rules, and Regulations (LRRs) attendant Financial Institutions Information Security requirements including Privacy LRRs e.g. GDPR, NYDFS, SEC Guidelines.
Security certifications such as CISSP, GCIH or GPEN are a plus
At LPL, we believe that objective financial guidance is a fundamental need for everyone. As the nation’s leading independent broker-dealer, we offer an integrated platform of proprietary technology, brokerage, and investment advisor services. We provide you with a work environment that encourages your creativity and growth, a leadership team that is supportive and responsive, and the opportunity to create a career that has no limits, only amazing potential.
We are one team on one mission. We take care of our advisors, so they can take care of their clients.
Because our company is not too big and not too small, you can seize the opportunity to make a real impact. We are committed to supporting workplace equality, and we embrace the different perspectives and backgrounds of our employees.We also care for our communities, and we encourage our employees to do the same. This creates an environment in which you can do your best work.
Want to hear from our employees on what it’s like to work at LPL? Watch this!
We take social responsibility seriously. Learn more here
Want to see info on our benefits? Learn more here
Join the LPL team and help us make a difference by turning life’s aspirations into financial realities. Please log in or create an account to apply to this position. Principals only. EOE.
Information on Interviews:
LPL will only communicate with a job applicant directly from an @lplfinancial.com email address and will never conduct an interview online or in a chatroom forum. During an interview, LPL will not request any form of payment from the applicant, or information regarding an applicant’s bank or credit card. Should you have any questions regarding the application process, please contact LPL’s Human Resources Solutions Center at (800) 877-7210.