Job Overview

We are seeking a highly skilled and motivated cybersecurity engineer to join our dynamic cybersecurity team. In this role you will primarily be responsible for our Security Datalake/Automation platforms and provide continued diligence and efforts in enhancing our overall security posture and response capabilities within our dynamically evolving and ever changing ecosystems. The ideal candidate will have a strong background in cybersecurity, threat intelligence, forensic investigations, incident response and automation. This role will engineer enhanced security controls into many aspects of our of business in both our corporate and cloud environments.

Primary Responsibilities

• Platform Management & Optimization:
  Manage, configure, and optimize our platforms to enhance incident detection, response, and automation workflows.

• Automation & Orchestration:
  Design and implement automated workflows to reduce the time to detect and respond to security incidents. Work with immediate team to streamline security operations and improve incident response times using automation tools.

• Collaboration & Reporting:
  Work closely with cross-functional IT and cyber risk teams to ensure that security policies and procedures align with business objectives. Provide detailed reporting on security operations and improvement metrics.

• Continuous Improvement:
  Continuously improve our platforms by identifying gaps, implementing new features, and staying up-to-date on emerging security threats and technologies.

• Documentation & Training:
  Develop and maintain documentation for processes, workflows, and response automations. Provide necessary training and mentorship to team members.

Additional areas of responsibility

• Act as internal expert on matters relating to intrusion detection and incident response.

• Operate security monitoring and incident response toolsets with a focus on continuous improvement and expansion.

• Lead investigations into network intrusions and other cyber security matters. Provide a coordinated response to complex cyber-attacks that threaten company’s assets, intellectual property, and computer systems.

• Contribute to the development and improvement of security monitoring and incident response processes and solutions as required to support our cyber security program.

• Research and recommend solutions for cyber security program and incident response.

• Ensure our platforms maintain the most current and optimal configurations to combat advanced and modern day attacks and threats.

• Partake in a team rotation of CSIRT responsibilities.

Qualifications

Experience:

• Minimum of 5-10 years of experience in cybersecurity, with a focus on security operations, SIEM, or SOAR platforms.

• Hands-on experience with leading SIEM solutions such as Splunk, Palo Alto XSIAM, Securonix, Microsoft Sentinel or others.

• Experience in security monitoring, threat detection, and incident response.

Skills & Expertise:

• Proficient in scripting languages (e.g., Python, PowerShell) for automation and integration tasks.

• Strong understanding of security operations, threat intelligence, incident response, and risk management.

• Familiarity with common security frameworks and compliance standards (e.g., NIST, ISO 27001, GDPR, etc.).

• Solid understanding of MITRE ATT&CK framework TTP’s with an ability to map defensive controls to.

• Expertise in cyber security tools, firewalls, IDS/IPS, endpoint security, and network security technologies.

• Expertise in native security tools and concepts within cloud native environments such as AWS, GCP or Azure.

• Proficiency and autonomy in leading large scaled programs with little to no oversight.

• Understanding / proficiency in applications, containerization, APIs, web services.

• Experience with forensic investigations, leveraging collected information to understand vectors and provide required remediation's.

• Understanding of latest techniques used by threat actors.

Soft Skills:

• Strong analytical and problem-solving skills with a keen attention to detail.

• Excellent communication and interpersonal skills to work effectively with stakeholders.

• Successful experience interacting and presenting with internal customers and project owners.

• Ability to work under pressure in a fast-paced environment.

• Self-motivated and proactively driven.

• Strong attention to detail with an analytical mind and outstanding problem-solving skills.

Arrowstreet Capital is a Boston-based systematic investment firm that manages global equity portfolios for institutional investors around the world.

Arrowstreet Capital is an equal opportunity employment firm. All qualified applicants will receive consideration for employment without regard to sex, race, color, religion, national origin, ancestry, gender identity, genetic information, age, sexual orientation, pregnancy, medical condition, disability, veteran or military status, marital status or any other characteristic protected by federal, state, or local law.

Arrowstreet Capital is committed to working with and providing reasonable accommodations for qualified individuals with disabilities and disabled veterans. If you need a reasonable accommodation for any part of the employment process due to a disability, contact us to discuss the nature of your request and contact information.