Principal Enterprise Security Engineer - Cloud Focus

About Us: Named by Fast Company in its Top 10 Most Innovative FinTech Companies, Halo Investing is the first independent, multi-issuer platform for defined outcome investing. Halo Investing gives financial advisors, wealth managers and RIA’s access to structured notes, buffered ETFs, and annuities. By delivering the best pricing and execution to the clients it serves, Halo is changing the world of investing by democratizing the protective investment marketplace. In October 2021, Halo announced that it raised over US $100 million in Series C funding. The latest fundraising round was led by Owl Capital and included the Mubadala-backed US $1 billion fund managed by Abu Dhabi Catalyst Partners, in addition to existing investors Allianz Life Ventures and William Blair. Halo is based in Chicago, with offices in Zurich and Abu Dhabi. We’ve balanced tremendous growth with strong company culture to create a uniquely motivated, dynamic, and proactive team. Above all, we value collaboration, communication, and passion!

About the Role: This position is limited to the greater Chicagoland area. We are looking for a highly experienced and hands-on Enterprise Security Engineer with a focus on cloud security! In this role, you will work alongside product and software engineering teams to design, implement and maintain security controls for enterprise-level systems. You will also lead the development and implementation of security policies, procedures and standards to ensure the confidentiality, integrity and availability of our cloud-based systems.

Primary Responsibilities:

1. Define & drive roadmaps for the security engineering team.
2. Design, implement and maintain security controls for cloud based infrastructure.
3. Automate security controls using Security as Code, Policy as Code, Security Left, DevSecOps concepts.
4. Integrate tools to monitor and analyze security logs and alerts, identify potential threats and respond to security incidents.
5. Perform regular security assessments and audits of organization and cloud infrastructure in support of our ISO-27001 certification, SOC 2 efforts, and as part of our existing security plan.
6. Develop, deliver, and participate in social engineering exercises across different departments of the organization.
7. Establish a security-aware culture and manage security incidents together with the operational teams.
8. Provide guidance and technical mentorship for junior resources to help them grow and do the best work of their careers.
9. Help attract top level talent and lead the technical direction of the team.

Required Education and Experience:

1. Bachelor's Degree in Computer Science, Information Security or related field.
2. 5+ years of experience in information security with focus on cloud security.
3. Strong understanding of encryption, key management system, identity and access management, web application firewalls, data security, application security concepts and implementation.
4. Strong understanding of the compliance and regulatory requirements for cloud based systems such as GDPR and US data protection regulations.
5. Strong understanding of cloud computing technologies and architectures (AWS, Azure, or GCP). Cloud security relevant certifications from cloud providers or CCSP is a plus.
6. 5+ years experience securing network and perimeter infrastructures. Experience with security tools such as Firewalls, Intrusion Detection/Prevention Systems and vulnerability management.
7. Experience with programming languages such as Java and Python.
8. Knowledge of industry standard security framework, technologies, protocols, and best practices including but not limited to ISO 27001, PCI DSS, NIST, ISO/IEC, SOC 2, and OWASP is a plus.
9. Understanding of database functionality and security.
10. Familiarity with Agile practices and CI/CD concepts.
11. Experience in communicating and leading discussions regarding technical solutions or problems to varying levels of the organization.
12. Ability to think creatively to solve problems and continuously improve.

Benefits:

1. Competitive Compensation
2. Comprehensive Medical and Dental
3. 401k Program
4. Unlimited PTO
5. Paid Parental Leave
6. Flexible Hybrid WFH Environment
7. Fun & Exciting work environment, including free snacks and onsite pop-a-shot
8. Flexible and highly collaborative work environment

Halo Values Diversity and Inclusion. We are proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, national origin, disability status, protected veteran status, or any other characteristics protected by federal, state, or local laws, regulations, or ordinances. If you need assistance or accommodation due to disability or special need when applying for a role or during our recruitment process, please contact us.

Apply Now