Apply Now    

UNIX Engineer - Cyber Security Lead

Req #: 170106129
Location: Jersey City, NJ, US
Job Category: Technology
Job Description:
The UNIX Security Lead will be a senior member of the Core Platform team within Cyber Security.  The Core Platform team creates and maintains the firm-wide security standards for Windows, UNIX, virtualization/cloud, database, messaging, DNS and related infrastructure services. This role will partner heavily with Global Technology Infrastructure (GTI) and support the end to end secure deployment of UNIX.  This role will ensure that the supporting security framework is clearly defined in policies, standards and procedures that support global information security architecture objectives. This role will also participate in efforts to test the effectiveness of defined controls and ensure that critical processes in the firm are evaluated from a security perspective. 
 
Primary Responsibilities:
  • Define firm-wide security controls for the UNIX environment and related infrastructure services including UNIX file permissions, service management, IP filters and firewalls, file sharing, remote administration, account security, patch and release management. 
  • Ensure defined controls must be implementable and measurable.
  • Create an execution strategy that focuses on embedding UNIX security controls into existing practices to enhance effectiveness. 
  • Successfully identify risk and demonstrate a reduction of risk across the UNIX environment.
  • Establish and lead working groups to develop positions and drive approval for UNIX controls.
  • Develop and support presentations to executive leadership.
  • Manage applicable standards and procedures translating security requirements into easily understood controls
  • Maintain subject matter expertise of the core discipline(s) for which you support.
  • Provide executive level updates as required.
  • Interface with Audit and IRM to coordinate and fulfill information requests.
Key short term Deliverables:
  • Partner with Global Technology and business aligned tech architecture and engineering teams to enable ground floor security reviews of new technology and deployment approaches
  • Define standards and patterns to be delivered firm wide leveraging key cyber security principles and security fundamentals
Qualifications
  • Direct experience establishing and managing UNIX security controls. 
  • Experience in an Information Risk and Controls or Audit role with exposure to multiple storage technologies, in a fast moving, mission-critical, large scale, global, operational environment.
  • Complete updates and recertification of all standards and patterns associated with UNIX, Linux, AIX and all UNIX based OSs approved for deployment
  • Strong knowledge of:
    • Security controls with UNIX and associated integration points
    • Various utilities that support securing and patching UNIX
    • Common UNIX variations: RedHat, Linux, AIX, Solaris, etc
    • Secure policy setting in UNIX
  • Working knowledge of:
    • LINUX VMs in cloud and of containers a plus
    • VMWare ESX a plus
  • UNIX Administration experience a plus
  • MacOS X experience a plus  
  • Certifications (preferred)
    • ITIL Certified
    • CISSP
    • UNIX
  • Excellent analytical and problem-solving skills
  • Ability to identify tactical quick wins, as well as strategic long term remediation options
  • Superior organizational skills with an ability to multitask and deliver against commitments
  • Proficient verbal and written communication skills
  • Ability to independently and effectively participate in strategic discussions / meetings with peers
  • Ability to resolve conflict in a collaborative manner
 
Global Cybersecurity Services purpose is to ensure the security of the Firm's computing environment and customer and employee information within it and to comply with operational, regulatory and legal obligations for information globally. We accomplish this through strong information management, information governance and information security leadership and active collaboration with line of business information security and risk professionals to provide high quality security solutions and services that are focused on improving the Firm's security and risk posture.  The extended team is composed of firm wide functions as well as business-aligned security and risk management teams that enhance the technology environment.  
Apply Now    

Join our Talent Community

Not ready to apply? Leave your information with us and we will keep you up to date with new career opportunities.

Other Information

Apply Using LinkedIn

You can also apply using your LinkedIn® profile. It may save you some time because your information will be automatically transferred into our system. Just click on the LinkedIn logo when you get to the application screen and follow the directions.

Submit an Updated Résumé

During the application process, be sure you have an up-to-date copy of your Résumé, your cover letter and any other documentation you would like to submit.