VP, Offensive Security

2 weeks ago

Fort Mill, South Carolina, United States LPL Financial Full time

Are you curious to learn? Are you interested in working on meaningful projects? Do you want to work with cutting-edge technology? Are you interested in being part of a team that is working to transform and do things differently? If so, LPL Financial is the place for you

Job Overview:

As a member of the Information Security team, the VP of Offensive Security will be responsible for overseeing and maturing the penetration testing function at LPL. This position will be focused on the development and execution of an internal penetration testing program to supplement our existing 3rd party program, with a strong focus on web application testing.

This role will lead a highly technical team charged with performing penetration testing engagements to validate the security of resources across the company. Candidates are expected to perform hands-on testing as well as serve as the team lead of all the penetration testing activities and lead the overall function. The ideal candidate must possess a highly technical skillset and the ability to collaborate with stakeholders across the company to integrate penetration testing within company processes.

Offensive Security is a top area of focus at LPL. This is an exciting time to join the Information Security team as we look to build and greatly expand the current program.

Responsibilities:

  • Partner with other Technology stakeholders to develop the scope and activities of the penetration testing program, including integrating penetration testing within existing company SDLC processes to enhance our ability to identify security weaknesses in applications prior to production deployment
  • Build and lead the internal penetration testing team, execute testing, and oversee the execution of all related activities
  • Conduct tactical security penetration test assessments to validate the security of company applications (web,mobile, and apis) against OWASP Top 10 threats and work with the Application Security team to provide feedback and recommendations to increase automated capabilities
  • Perform assessments of internal/external networks, infrastructure, cloud environments, social engineering and a wide array of internally developed and commercial products.
  • Think creatively and strategically to circumvent security controls, identify vulnerabilities and develop effective solutions. Stay informed on ever-emerging and fast-changing TTPs, zero-days and remediation strategies. Develop/modify custom tooling to solve new needs.
  • Document and formally report testing initiatives, test findings, justified risk ratings, remediation recommendations and validation results in a clear and concise manner.
  • Partner with technology teams to present security testing results, highlight the threat presented by the results, and consult on remediation guidance in a way that is easy for understand for IT stakeholders.
  • Partner with the Security Operations Center to perform purple team exercises designed to validate and improve security detections
  • Develop and maintain process documentation as well as tools and scripts used in penetration testing and red team processes.
  • Ensure penetration testing activities are meeting security and business objectives and outcomes by establishing metrics & key performance indicators (KPIs)
  • Establish penetration testing function roadmap, lead the scoping and execution of program improvement initiatives and communicate status to senior leadership
  • Manage the 3rd party penetration testing program by identifying vendors, overseeing vendor testing activities and working with Sourcing to develop statement of work documentation and procure such services
  • Oversee the communication, reporting, and tracking of findings identified during testing activities, following up with remediation teams to determine status, escalating findings as needed to senior leadership, and performing retesting to validate successful closure of previously identified findings
  • Assist with the validation of issues submitted to the company's Vulnerability Disclosure Program and Bug Bounty programs
What are we looking for?

We want strong collaborators who can deliver a world-class client experience. We are looking for people who thrive in a fast-paced environment, are client-focused, team oriented, and are able to execute in a way that encourages creativity and continuous improvement.

Requirements:
  • 10+ years' experience conducting application/API and network-based penetration-testing/red team engagements.
  • 5+ years experience leading technical red team/offensive security function
  • Advanced level of knowledge with security assessment tools and frameworks, including Burp Suite, Kali Linux, Nessus, Accunetix, Metasploit, AutoSploit, Cobalt Strike, etc.
  • At least one industry certification such as OSCP, OSCE, OSWE, GPEN, GCIH, GWAPT, or GXPN.
Preferences:
  • Bachelor's Degree or equivalent in Information Security, Engineering, or Computer Science.
  • Experience managing information security teams
  • Advanced understanding of OWASP, the MITRE ATT&CK framework and the software development lifecycle (SDLC).
  • Advanced knowledge in programming languages (.NET, Javascript, Python, Java, PowerShell, Perl, Ruby, Bash, etc.)
  • Advanced level knowledge of Linux/Mac/Windows operating systems, AWS/Azure cloud environments and cloud-native resources (ex. Containers, Kubernetes, microservices, serverless functions)
  • Experience with conducting reverse engineering on mobile applications, including applications with anti-emulator and obfuscation protections.
  • Breadth and depth of knowledge in security of operating systems, networking and protocols, firewalls, databases and middleware applications, forensics, scripting and programing.
  • Good communication skills and ability to working with all stakeholders, internal and external, finding, advising and implementing the best solutions.
  • Strong organization skills and people management skills
  • Insatiable curiosity for tinkering with and circumventing security features and controls.
#LI-Hybrid

#LI-PA

Pay Range:
$143,100-$238,500/year
Actual base salary varies based on factors, including but not limited to, relevant skill, prior experience, education, base salary of internal peers, demonstrated performance, and geographic location. Additionally, LPL Total Rewards package is highly competitive, designed to support your success at work, at home, and at play - such as 401K matching, health benefits, employee stock options, paid time off, volunteer time off, and more. Your recruiter will be happy to discuss all that LPL has to offer

Company Overview:

LPL Financial Holdings Inc. (Nasdaq: LPLA) was founded on the principle that the firm should work for advisors and institutions, and not the other way around. Today, LPL is a leader in the markets we serve, serving more than 23,000 financial advisors, including advisors at approximately 1,000 institutions and at approximately 580 registered investment advisor ("RIA") firms nationwide. We are steadfast in our commitment to the advisor-mediated model and the belief that Americans deserve access to personalized guidance from a financial professional.

At LPL, independence means that advisors and institution leaders have the freedom they deserve to choose the business model, services, and technology resources that allow them to run a thriving business. They have the flexibility to do business their way. And they have the freedom to manage their client relationships, because they know their clients best. Simply put, we take care of our advisors and institutions, so they can take care of their clients.

Join LPL Financial: Where Your Potential Meets Opportunity

At LPL Financial, we believe that everyone deserves objective financial guidance. As the nation's leading independent broker-dealer, we offer an integrated platform of cutting-edge technology, brokerage, and investment advisor services.

Why LPL?
  • Innovative Environment: We foster creativity and growth, providing a supportive and responsive leadership team. Learn more about our leadership team here
  • Limitless Career Potential: Your career at LPL has no limits, only amazing potential. Learn more about our careers here
  • Unified Mission: We are one team on one mission-taking care of our advisors so they can take care of their clients. Learn more about our mission and values here
  • Impactful Work: Our size is just right for you to make a real impact. Learn more here
  • Commitment to Equality: We support workplace equality and embrace diverse perspectives and backgrounds. Learn more here
  • Community Focus: We care for our communities and encourage our employees to do the same. Learn more here
  • Benefits and Total Rewards: Our Total Rewards package goes beyond just compensation and insurance. It includes a mix of traditional and unique benefits, perks, and resources designed to enhance your life both at work and at home. Learn more here
Join the LPL team and help us make a difference by turning life's aspirations into financial realities. Please log in or create an account to apply to this position. Principals only. EOE.

Information on Interviews:

LPL will only communicate with a job applicant directly from an @lplfinancial.com email address and will never conduct an interview online or in a chatroom forum. During an interview, LPL will not request any form of payment from the applicant, or information regarding an applicant's bank or credit card. Should you have any questions regarding the application process, please contact LPL's Human Resources Solutions Center at (855) 575-6947.

EAC1.22.25

  • Offensive Security Lead

    1 week ago

    Fort Mill, South Carolina, United States LPL Financial Full time

    About the RoleThe Offensive Security Lead will lead a highly technical team charged with performing penetration testing engagements to validate the security of resources across the company.Perform hands-on testing as well as serve as the team lead of all the penetration testing activities.Lead the overall function and collaborate with stakeholders across the...

  • VP Offensive Security Team Lead

    1 week ago

    Fort Mill, South Carolina, United States LPL Financial Full time

    Required Skills and QualificationsTo succeed in this role, you must possess a highly technical skillset and the ability to collaborate with stakeholders across the company. You will need advanced knowledge of security assessment tools and frameworks, including Burp Suite, Kali Linux, Nessus, Accunetix, Metasploit, AutoSploit, Cobalt Strike, etc. A Bachelor's...

  • Cybersecurity Leadership Role

    1 week ago

    Fort Mill, South Carolina, United States LPL Financial Full time

    Job DescriptionWe are seeking an experienced IT security strategist to lead our offensive security team. As VP, you will be responsible for overseeing and maturing the penetration testing function at LPL. Your primary focus will be on developing and executing an internal penetration testing program to supplement our existing 3rd party program, with a strong...

  • Information Security Director

    2 weeks ago

    Fort Mill, South Carolina, United States LPL Financial Full time

    Job SummaryWe are seeking an information security director to join our Information Security team. As a member of this team, you will be responsible for leading the development and execution of an internal penetration testing program to supplement existing 3rd party services.ResponsibilitiesDevelop and execute an internal penetration testing program to...

  • Chief Security Architect

    2 weeks ago

    Fort Mill, South Carolina, United States LPL Financial Full time

    Job DescriptionThe Information Security team at LPL Financial is seeking a chief security architect to lead its penetration testing function. This role requires a high degree of technical expertise, leadership skills, and the ability to collaborate with stakeholders across the company.ResponsibilitiesDevelop and execute an internal penetration testing...

  • VP, Technology Service Management

    1 week ago

    Fort Mill, South Carolina, United States LPL Financial Full time

    Are you interested in working on meaningful projects? Do you want to work with cutting-edge technology? If so, LPL Financial is the place for you As a member of the Information Security team, the VP of Offensive Security will be responsible for overseeing and maturing the penetration testing function at LPL. This position will be focused on the development...

  • VP, EBO Operations Director

    1 week ago

    Fort Mill, South Carolina, United States First American Full time

    VP, EBO Operations Director (Remote)VP, EBO Operations Director (Remote) Apply locations USA, South Carolina, Fort Mill USA, Ohio, Remote USA, Illinois, Remote Minnesota Home - G3 USA, Iowa, Remotetime type Full timeposted on Posted 5 Days Agojob requisition id R049669Who We Are ServiceMac is a new sub-servicing entity backed by some of the leading...

  • VP, EBO Operations Director

    1 day ago

    Fort Mill, South Carolina, United States Jobleads-US Full time

    VP, EBO Operations Director (Remote) VP, EBO Operations Director (Remote) Apply locations USA, South Carolina, Fort Mill USA, Ohio, Remote USA, Illinois, Remote Minnesota Home - G3 USA, Iowa, Remote time type Full time posted on Posted 5 Days Ago job requisition id R049669 Who We Are ServiceMac is a new sub-servicing entity backed by some of the leading...

  • VP, Assistant General Counsel

    3 weeks ago

    Fort Mill, South Carolina, United States LPL Financial Full time

    Job Overview:The VP, Assistant General Counsel (Corporate Legal) will advise on a broad range of general corporate and securities law issues in support of LPL Financial's corporate governance, strategic transactions and obligations as a public company. The position reports to the Senior Vice President, Associate General Counsel – Corporate Legal within the...

  • VP, Assistant General Counsel

    1 day ago

    Fort Mill, South Carolina, United States LPL Financial Full time

    Job Overview:The VP, Assistant General Counsel (Corporate Legal) will advise on a broad range of general corporate and securities law issues in support of LPL Financial's corporate governance, strategic transactions and obligations as a public company. The position reports to the Senior Vice President, Associate General Counsel – Corporate Legal within the...

  • VP Asst General Counsel

    4 weeks ago

    Fort Mill, South Carolina, United States LPL Financial Full time

    Are you a team player? Are you curious to learn? Are you interested in working on meaningful projects? Are you solution-oriented and committed to delivering results? Do you like thinking outside the box, learning new skills and problem solving? If so, then this could be the role for youJob Overview:LPL Financial seeks an experienced attorney to join its...

  • VP Asst General Counsel

    5 days ago

    Fort Mill, South Carolina, United States LPL Financial Full time

    Are you a team player? Are you curious to learn? Are you interested in working on meaningful projects? Are you solution-oriented and committed to delivering results? Do you like thinking outside the box, learning new skills and problem solving? If so, then this could be the role for you Job Overview: LPL Financial seeks an experienced attorney to join its...

  • AVP, Network Security Governance Engineer

    3 weeks ago

    Fort Mill, South Carolina, United States LPL Financial Holdings, Inc. Full time

    Are you a team player? Are you curious to learn? Are you interested in working in meaningful projects? Do you want to work with cutting-edge technology? Are you interested in being part of a team that is working to transform and do things differently? If so, LPL Financial is the place for you Job Overview: We are currently seeking to fill a full-time...

  • General Counsel Expertise

    2 weeks ago

    Fort Mill, South Carolina, United States LPL Financial Full time

    About the Job: The VP, Assistant General Counsel will play a critical role in advising on a broad range of general corporate and securities law issues. This position reports to the Senior Vice President, Associate General Counsel – Corporate Legal within the Legal Department's Corporate group.Responsibilities:Advise on corporate governance matters,...

  • Senior Legal Advisor Role

    2 weeks ago

    Fort Mill, South Carolina, United States LPL Financial Full time

    About this Opportunity: As a VP, Assistant General Counsel, you will have the opportunity to work closely with senior executives and other stakeholders to advise on a broad range of general corporate and securities law issues.Key Accountabilities:Providing expert legal advice on corporate governance matters, including exchange act filings, securities law...

  • Business and Law Specialist

    2 weeks ago

    Fort Mill, South Carolina, United States LPL Financial Full time

    About the Position: The VP, Assistant General Counsel (Corporate Legal) will advise on a broad range of general corporate and securities law issues in support of LPL Financial's corporate governance, strategic transactions, and obligations as a public company.Key Responsibilities:Advising on corporate governance matters, including exchange act filings,...

  • Corporate Lawyer

    2 weeks ago

    Fort Mill, South Carolina, United States LPL Financial Full time

    About the Role: We are seeking a highly skilled corporate lawyer to join our team as a VP, Assistant General Counsel. This role will provide legal advice on general corporate and securities law issues in support of LPL Financial's corporate governance, strategic transactions, and obligations as a public company.Key Responsibilities:Advising on corporate...

  • Cyber Threat Intelligence Lead

    1 week ago

    Fort Mill, South Carolina, United States LPL Financial Full time

    Job OverviewLPL Financial is seeking a Principal Analyst to work within its growing Information Security department reporting to the VP, Threat and Incident Response. This role will be responsible for leading and implementing the development of intelligence strategies and providing advanced threat analysis.ResponsibilitiesCollect, analyze, and disseminate...

  • VP, EBO Operations Director

    1 week ago

    Fort Mill, South Carolina, United States Jobleads-US Full time

    ServiceMac is a new sub-servicing entity backed by some of the leading practitioners of the mortgage servicing industry. ServiceMac is focused on providing superior technology, products, and services for the mortgage and real estate industries backed by highly personalized service and support. Through continuous innovation and acquisition, our offerings...

  • VP, EBO Operations Director

    2 weeks ago

    Fort Mill, South Carolina, United States First American Financial Company Full time

    Who We Are ServiceMac is a new sub-servicing entity backed by some of the leading practitioners of the mortgage servicing industry. ServiceMac is focused on providing superior technology, products, and services for the mortgage and real estate industries backed by highly personalized service and support. Through continuous innovation and acquisition, our...