Lead Security Platform Engineer

Lead Security Platform Engineer (a / k / a Cybersecurity)(State Street Bank and Trust Company; Boston, MA) : Will serve as a Lead technical expert for the security platform engineering and services support for critical security technologies.

The role primarily entails hands-on technical product design and deployment for building and managing Data platforms hosting Security Information and Event Management (SIEM) functions, Security Lake House Functions and Security log telemetry Data sourcing / streaming functions.

• Duties include : Lead the Security platform engineering function with a team of engineers from on-shore and offshore locations with the primary focus of architecting, engineering and building highly resilient cyber security systems and data platforms;
• Lead the efforts for Architecting / engineering, implementing and administering SIEM platforms like Splunk Enterprise and Enterprise Security in multiple public cloud (AWS, Azure) and on-premise datacenters;
• Lead the security platforms build and management and promote the DevOps methodology of building Infrastructure-as-code by leveraging Teraform, CloudFormation, GitHub and Jenkins;
• Lead the efforts for Architecting / engineering, implementing and administering next generation continuous data delivery platforms like the CRIBL in hybrid cloud environments for security log ingestion, routing and aggregation;
• Proactively seek opportunities to implement improvements in the development process and CICD deployment pipeline. Drive and champion Continuous Delivery and automation wherever feasible for platform builds;
• Coordinate with public cloud engineering teams for upto date platform feature releases and planning AMI upgrades to avoid security risks;
• On-boarding security data sources into SIEM(Splunk) and Security Lakehouse (Databricks) using various integration strategies to deliver security relevant data for threat detection, analytics, threat hunting and downstream cyber security use cases;
• Provide valuable inputs for defining future roadmaps for the product offerings of the Cyber Data & Analytics team in support of the Global Cyber Security teams and initiatives;
• perform integration activities to connect public cloud resources with onprem software solutions as required; Overseeing and being responsible for Change and Release Management, Vendor Management, and Capacity Management functions for these applications;
• Communicating requirements and risks to stakeholders such as Product, Engineering, and Security leadership; Working with cross-functional teams to proactively improve on existing integration automation and workflows;
• Maintaining up-to-date knowledge of technology standards, industry trends, emerging technologies, and Cyber Security best practices;
• Ensuring technical issues are quickly resolved and helping implement strategies and solutions to reduce the likelihood of recurrence;

and will be responsible to work with Scrum team in maintaining the Sprint backlogs and prioritization. Telecommuting from within the U.

S. permitted pursuant to Company policy. Domestic travel up to 10%.

Minimum requirements : Master's degree or equivalent in Computer Science, or a related technical field; plus 5 years of experience as a platform engineer or in any occupation providing experience in building and maintaining large scale data platforms like Splunk, Hadoop, or Databricks.

Alternatively, the Employer will accept a Bachelor's degree or equivalent in Computer Science, or a related technical field;

plus 10 years of experience as a security platform engineer or in any occupation providing experience in building and maintaining large scale data platforms like Splunk, Hadoop, or Databricks.

• Must have : Minimum of 2 certifications relevant to the technology platforms like Splunk Enterprise Security Implementation, Splunk Enterprise Certified Consultant, Splunk Enterprise Certified Architect;
• Implementation experience of platforms like CRIBL, Splunk and Databricks Lakehouse Platform; Extensive implementation experience of Devops and Gitops process for building large scale security and data platforms in public cloud environments (AWS, Azure);
• Proven experience writing Splunk queries in Splunk Programming Language (SPL) and thorough understanding of Splunk processing language, optimization principles, APIs, and SDK;
• proven experience developing in XML, Bash, JavaScript, Python, Perl, PowerShell scripts; proven experience with platforms such as Ansible, Puppet and Chef;
• proven experience with other Information Security solutions including DLP, ZScaler, Palo Alto, Symantec solutions, McAfee, Active directory;

and demonstrated solid written and verbal communication skills. (Unless otherwise indicated, State Street is seeking the stated ability in the skills listed above with no specific number of years or amount of experience required.

All experience can be gained concurrently.)

To apply to this position, you must click the "Apply" button on this page and complete the online application. An EOE.

LI-DNI

Salary Range :

$147,181 - $230,000 Annual

The range quoted above applies to the role in the primary location specified. If the candidate would ultimately work outside of the primary location above, the applicable range could differ.