Information Security Engineer

2 months ago

Boston, United States BOSTON TRUST WALDEN COMPANY Full time
Job DescriptionJob Description

Boston Trust Walden Company Overview

Boston Trust Walden Company is an independent, employee-owned firm that provides investment management services to institutional investors and private wealth clients. The firm manages approximately $16 billion in client assets.

Boston Trust Walden distinguishes itself in several key ways, including:

  • stable, diversified business model serving a variety of client types.
  • compelling investment philosophy and excellent track record.
  • longstanding leadership in ESG impact investing; and
  • corporate culture grounded in shared values, as signified by the company’s tagline, Principled Investing.

Located in the heart of Boston at One Beacon Street, Boston Trust Walden employs fewer than 100 individuals. Boston Trust Walden’s structure as an independent, employee-owned firm enables the firm to make business decisions that align with clients and employees for long-term success. The firm’s structure and size help cultivate a collegial work environment where employees have ownership of their work, contribute to positive client outcomes, and are rewarded for their efforts.

One of Boston Trust Walden’s strategic priorities is to foster a positive workplace; this includes a commitment to diversity, equity, and inclusion. The firm believes this commitment is not only the right thing to do but also a matter of good governance and a critical component of long-term business success. When DEI values are infused into the workplace environment, the company and its employee’s benefit. The firm is committed to taking meaningful steps to advance racial, ethnic, and gender equity in its workplace through retention, education, and recruitment initiatives.

Boston Trust Walden Company is an Equal Opportunity Employer. Boston Trust Walden is committed to supporting equal employment opportunity and to promoting a workplace free of discrimination with regard to race, color, religious creed, national origin, genetic information, ancestry, sex, age, sexual orientation, gender identity, gender expression, physical or mental disability, parental status, marital status, veteran/US military status, pregnancy, citizenship status, or other legally protected status.

The firm will make reasonable accommodations in the application process if requested by new job applicants.

Position: Information Security Engineer

Job Summary

Boston Trust Walden seeks a talented and experienced Information Security Engineer to join our Information Technology team. This role is critical for managing and enhancing the firm's technical security infrastructure and ensuring a robust cybersecurity posture. The ideal candidate will be passionate about information security and possess a deep understanding of information security principles, advanced cybersecurity methods, and innovative technological solutions to effectively manage daily security operations, develop and implement security policies, and respond to security incidents.

To be successful in this role, you should have excellent problem-solving skills and a solid understanding of cloud, on-premises, and application security technologies. You should also be adept at proactively identifying and resolving incidents, providing suggestions and solutions to enhance the security environment, working independently, and collaborating within a team environment.

Key Responsibilities:

  • Collaborate with Information Technology, Risk Management, and Compliance to analyze and strengthen security controls and implement comprehensive security requirements.
  • Lead the implementation, documentation, and maintenance of information security policies, standards, procedures, and controls.
  • Investigate security incidents, perform root cause analysis to identify indicators of compromise, and maintain documentation for corrective actions and improvements.
  • Oversee third-party providers to enhance security controls and procedures.
  • Manage the vulnerability lifecycle from identification to resolution and collaborate with IT teams to maintain secure baseline configurations.
  • Manage security controls such as network and host intrusion detection/protection systems (IDS/IPS), identity access management systems (SSO, IdP), firewalls, security incident and event management systems (SIEM), mobile device management (MDM) systems, data classification and loss prevention systems (DLP), secure email gateways, and proxy systems.
  • Monitor and analyze event logging across the organization, ensuring proper alerting is in place, reducing false positives, and identifying and correcting false negatives.
  • Identify and address gaps in security controls and remedy documented control weaknesses. Collaborate with the business to ensure the information security program is properly implemented.
  • Conduct information security reviews of external systems containing or utilizing firm or client NPPI.
  • Stay current with the latest security technologies, trends, vulnerabilities, and emerging threats, providing expert guidance to stakeholders.

Education & Experience:

  • Bachelor’s degree or higher in computer science, information security, or related fields.
  • Over 5 years in a dedicated security role, demonstrating increased responsibilities.
  • Experience in Information Security domains such as Information Security Governance, Compliance, and Regulations, as well as knowledge of frameworks like CIS, NIST, ISO 27001, and SOC reports.
  • Professional certifications such as CISSP/CCSP, CySA+/CASP+, Security+, or GIAC are highly preferred.

Specialized Skills:

  • In-depth understanding of computing environments, including virtualization, cloud technologies, networks and protocols, data loss prevention, identity access management, multi-factor authentication, public key infrastructure and cryptography, intrusion detection, firewalls, mobile device management, proxies, vulnerability assessment tools, and incident response.
  • Critical thinker with analytical problem-solving skills, capable of assessing complex security issues and recommending practical solutions for the business.
  • Organized and detail-oriented, capable of independently producing documentation, communicating effectively, and fostering cross-functional team collaboration.
  • Solid project management skills (organizing, planning, reporting, documenting, driving tasks to closure, etc.).
  • Excellent communication and interpersonal skills with business partners and key stakeholders are critical for this role.
  • Comfortable working in a fast-paced and small company culture environment and managing various tasks.

  • Information Security Engineer

    1 week ago

    Boston, United States The Computer Merchant, LTD. Full time

    JOB TITLE: Information Security Engineer JOB LOCATION: Boston, MA WAGE RANGE*: 60 - 67/ hour JOB NUMBER: 33818687 REQUIRED EXPERIENCE: BA or BS degree in Computer Science, Information Technology or related field preferred. Strong technical knowledge in at least one of the technical domains of information security such as access control systems, firewalls,...

  • Information Security Engineer

    2 weeks ago

    Boston, United States InfiCare Technologies Full time

    Job DescriptionJob DescriptionHi There,Hope you are doing great.InfiCare has been providing Contingent Staffing and Direct Hire staffing services to its clients across the US and in four continents Since XX01. Starting from a modest beginning in X001, today we service clients ranging from Fortune X0X companies to medium sized businesses as well as small...

  • Information Security Engineer

    2 weeks ago

    Boston, United States Metasys Technologies, Inc. Full time

    Information Security Engineer Boston, MA (hybrid, 3 days onsite) 6+Month Contract This hybrid role requires initial in-office training in the Northeast (several weeks minimum), with subsequent flexibility to work remotely. Typically, the schedule involves three days onsite and two days offsite, based on the manager's discretion. Normal office hours are...

  • Information Security Specialist

    1 week ago

    Boston, United States Boston Consulting Group Full time

    WHAT YOU'LL DOThe right candidate is responsible for managing security compliance for BCG’s software and data offerings in alignment with AICPA’s SOC 1 and SOC 2 framework and ISO 27001 standards. The right candidate must be able to demonstrate understanding of the fundamental security compliance frameworks, understand security and compliance audit...

  • Information Security Specialist

    5 days ago

    boston, United States Boston Consulting Group Full time

    WHAT YOU'LL DOThe right candidate is responsible for managing security compliance for BCG’s software and data offerings in alignment with AICPA’s SOC 1 and SOC 2 framework and ISO 27001 standards. The right candidate must be able to demonstrate understanding of the fundamental security compliance frameworks, understand security and compliance audit...

  • Information Security Specialist

    2 months ago

    Boston, United States Boston Consulting Group Full time

    WHAT YOU'LL DO The right candidate is responsible for managing security compliance for BCG’s software and data offerings in alignment with AICPA’s SOC 1 and SOC 2 framework and ISO 27001 standards. The right candidate must be able to demonstrate understanding of the fundamental security compliance frameworks, understand security and compliance audit...

  • Information Security Specialist

    5 days ago

    Boston, United States Boston Consulting Group Full time

    WHAT YOU'LL DOThe right candidate is responsible for managing security compliance for BCG’s software and data offerings in alignment with AICPA’s SOC 1 and SOC 2 framework and ISO 27001 standards. The right candidate must be able to demonstrate understanding of the fundamental security compliance frameworks, understand security and compliance audit...

  • Information Security Specialist

    2 months ago

    Boston, United States Boston Consulting Group Full time

    WHAT YOU'LL DO The right candidate is responsible for managing security compliance for BCG’s software and data offerings in alignment with AICPA’s SOC 1 and SOC 2 framework and ISO 27001 standards. The right candidate must be able to demonstrate understanding of the fundamental security compliance frameworks, understand security and compliance audit...

  • Head of Information Security

    15 hours ago

    Boston, Massachusetts, United States Globalization Partners. Full time

    About the Role:We are seeking a highly experienced Senior Manager, Cybersecurity to join our team at Globalization Partners. As a key member of our security team, you will be responsible for leading our application security efforts and ensuring the security of our systems and data.Key Responsibilities:Lead a team of security engineers and analysts to build...

  • Security Engineer

    2 weeks ago

    Boston, United States Whitridge Associates Full time

    We are seeking a highly skilled Security Engineer to join our team on a contract basis. This role requires a seasoned professional with deep experience in security engineering and operations, particularly with hands-on operational duties. The ideal candidate will be able to work collaboratively in a hybrid setting, with no exceptions to the onsite...

  • Security Engineer

    2 weeks ago

    Boston, United States Whitridge Associates Full time

    We are seeking a highly skilled Security Engineer to join our team on a contract basis. This role requires a seasoned professional with deep experience in security engineering and operations, particularly with hands-on operational duties. The ideal candidate will be able to work collaboratively in a hybrid setting, with no exceptions to the onsite...

  • Vice President, Information Security

    3 months ago

    Boston, United States InvoiceCloud Full time

    Job DescriptionJob DescriptionAbout InvoiceCloud: InvoiceCloud is a leading provider of online bill payment services. Founded in 2009, the company has grown to be one of the leading disruptors in the cloud-based electronic bill presentment and payment (EBPP) space, helping institutions put customer experience first. By switching to InvoiceCloud, clients can...

  • Vice President, Information Security

    1 month ago

    Boston, United States InvoiceCloud Full time

    Job DescriptionJob DescriptionAbout InvoiceCloud: InvoiceCloud is a leading provider of online bill payment services. Founded in 2009, the company has grown to be one of the leading disruptors in the cloud-based electronic bill presentment and payment (EBPP) space, helping institutions put customer experience first. By switching to InvoiceCloud, clients can...

  • Information Security Specialist

    2 months ago

    Boston, MA, United States Boston Consulting Group Full time

    WHAT YOU'LL DO The right candidate is responsible for managing security compliance for BCG’s software and data offerings in alignment with AICPA’s SOC 1 and SOC 2 framework and ISO 27001 standards. The right candidate must be able to demonstrate understanding of the fundamental security compliance frameworks, understand security and compliance audit...

  • Information Security Specialist with Security Clearance

    2 months ago

    Boston, MA, United States Boston Consulting Group Full time

    WHAT YOU'LL DO The right candidate is responsible for managing security compliance for BCG’s software and data offerings in alignment with AICPA’s SOC 1 and SOC 2 framework and ISO 27001 standards. The right candidate must be able to demonstrate understanding of the fundamental security compliance frameworks, understand security and compliance audit...

  • Sr. Manager, Information Security

    2 months ago

    Boston, United States Globalization Partners. Full time

    What you will do: Manage a team of engineers/analysts and build resiliency into the team. Evangelize application security fundamentals and act as a consultative partner to development teams. Implement and leverage SAST/DAST/SCA security tools like Veracode and Snyk. Make recommendations on application security tools. Guide and perform security...

  • IT Security Engineer

    2 months ago

    Boston, United States Code Metal Full time

    Job DescriptionJob DescriptionJob Title: IT Security EngineerDescription: We are seeking an experienced IT Security Engineer to join our team. The ideal candidate will play a crucial role in ensuring the security and compliance of our cloud and IT infrastructure. This is an incredible opportunity to join an experienced founding team who have collectively...

  • Information Security System Administrator

    4 days ago

    Boston, Massachusetts, United States Chenega MIOS SBU Full time

    Req ID: 32214Position OverviewCybersecurity Support System AdministratorChenega MIOS SBU is dedicated to providing federal agencies and commercial clients with reliable insights into Records and Information Management, Administrative Solutions, Information Technology, Engineering, and Training. As a rapidly growing entity, we pride ourselves on our...

  • Platform Security Engineer

    3 weeks ago

    Boston, United States Rogue Talent Full time

    Rogue Talent is hiring a Platform Security Engineer who will be the top voice and key contributor to maturing the modern infrastructure capabilities of a legendary cyber R&D institution based in suburban Boston (hybrid, on-site 3 days/week). Key areas of focus will be containerization (Kubernetes), IaC (Terraform), CI/CD pipelines, automation, RBAC / IAM,...

  • Platform Security Engineer

    4 weeks ago

    Boston, United States Rogue Talent Full time

    Rogue Talent is hiring a Platform Security Engineer who will be the top voice and key contributor to maturing the modern infrastructure capabilities of a legendary cyber R&D institution based in suburban Boston (hybrid, on-site 3 days/week). Key areas of focus will be containerization (Kubernetes), IaC (Terraform), CI/CD pipelines, automation, RBAC / IAM,...