Job Description
Job Duties : Vice President, Security Engineering with Goldman Sachs Services LLC in New York, NY. (Multiple positions available).
Perform Vendor Information Security and Application Security Assessments such as Code Review, Penetration Test, Design Review, Threat modelling, and communicate the results to the respective application engineers.
Review Information and Application Securing architecture, policies, standards definitions, and carry out documentation of the above.
Review Vendor security contracts by working with Legal. Identify vulnerabilities in software applications and software designing processes to reduce security risks.
Actively research new cloud services and identify ways in which the Firm can leverage the Cloud in a secure manner. Work with stakeholders to understand the design architecture of information and software components to analyze security threats and risks.
Perform security threat analysis to determine the exploit vectors and paths for software components. Write and socialize test cases to verify assumptions from threat or software analysis.
Document issues and guidance, along with detailed recommendations for how to address issues. Share issues / risks and recommendations with component owners and advise on how they can implement secure remediation.
Stay up to date with new technologies and assist engineers in assessing risk. Enable a world-class cyber defense program by working closely with other technical, incident management, and forensic personnel to develop a fuller understanding of activity of cyber threat actors.
Provide security consulting for vendors services and software within the Firm as needed.
Job Requirements : Master's degree (U.S. or foreign equivalent) in Cyber Security, Computer Science, Information Management, Computer Engineering, or a related field and three (3) years of experience in the job offered or a related Security Engineering role.
Bachelor's degree (U.S. or foreign equivalent) in Cyber Security, Computer Science, Information Management, Computer Engineering, or a related field and five (5) years of experience in the job offered or a related Security Engineering role.
- Prior employment must include three (3) years of experience (with a Master's degree) or five (5) years of experience (with a Bachelor's degree) with : reviewing security controls and how they apply to different designs and systems in order to identify security gaps;
- highlighting and articulating risks to developers or engineers in an understandable language; performing application vulnerability assessment and penetration testing of web applications;
performing architecture review of web applications; and performing risk assessments and assessing and managing the vendor portfolio for Information Security.
Prior employment must include two (2) years of experience (with a Master's degree) or four (4) years of experience (with a Bachelor's degree) with : performing code or configuration review of web application programming languages such as Java and performing assessments of technologies leveraging common web stack technologies such as Java.
Salary Range : The expected annual base salary for this New York, New York, United States-based position is $185,000 - $300,000.
In addition, you may be eligible for a discretionary bonus if you are an active employee as of fiscal year-end.
Benefits : Goldman Sachs is committed to providing our people with valuable and competitive benefits and wellness offerings, as it is a core part of providing a strong overall employee experience.
A summary of these offerings, which are generally available to active, non-temporary, full-time and part-time US employees who work at least 20 hours per week, can be found here : https : / / www.
goldmansachs.com / careers / discover / benefits-summary-US.pdf
The Goldman Sachs Group, Inc., 2024. All rights reserved. Goldman Sachs is an equal employment / affirmative action employer Female / Minority / Disability / Veteran / Sexual Orientation / Gender Identity.