LPL Financial: Information Security Engineer

Company: LPL Financial
Location: Austin
Posted on: November 22, 2021

Job Description:

Are you a team player? Are you curious to learn? Are you interested in working in meaningful projects? Do you want to work with cutting-edge technology? Are you interested in being part of a team that is working to transform and do things differently? If so, LPL Financial is the place for you! LPL Financial (Nasdaq: LPLA) was founded on the principle that the firm should work for the advisor, and not the other way around. Today, LPL is a leader* in the markets we serve, supporting more than 19,000 financial advisors, 800 institution-based investment programs and 450 independent RIA firms nationwide. We are steadfast in our commitment to the advisor-centered model and the belief that Americans deserve access to objective guidance from a financial advisor. At LPL, independence means that advisors have the freedom they deserve to choose the business model, services, and technology resources that allow them to run their perfect practice. And they have the freedom to manage their client relationships, because they know their clients best. Simply put, we take care of our advisors, so they can take care of their clients. Job Overview:We are seeking a Senior Engineer, Information Security to join our team! This position is apart of the growing Information Security organization reporting to the AVP, Incident Response. As a senior engineer, you have several years' experience in the cybersecurity industry to assist with maturing LPLs Incident Response program. You will be performing daily tasks associated with cyber incidents and investigations. You will be responsible for augmenting and strengthening your personal DFIR skill set, as well as helping develop the skills of your peers and team members. Responsibilities:Conduct security incident response and maintain high levels of knowledge with host and/or network-based forensics across Windows, Mac and Linux platformAssess and develop the incident response program/strategy in a proactive fashion to help mature the security posture of organizations prior to an incident.Establish goals that align with the mission and complete performance reviews.Responsible for supporting Security Operations during normal business hours and in an on-call rotation outside normal business hoursReview and analysis of intrusion detection systems, security incident event management systems, network traffic and data from solutions such as anti-malware, advanced endpoint detection/prevention, firewalls, internet/email gateways and VPNsAssessment and audit of compliance against the security policies and standardsMaintain and develop IR playbooksStay current with the latest malware, attack vectors and security trendsActively manage the response activities for information security incidents including discovery, triage, containment, recovery, and remediation plan coordinationCoordinates efforts among multiple business units during response effortsCreate and automate processes for common investigations and deliverables.Can effectively communicate with executives on the topics of forensics and incident responseProvide mentorship and technical guidance to less experienced Incident Responders and SOC staffConduct advanced computer and network forensic investigations relating to various forms of malware, email compromises, computer intrusion, theft of information, denial of service, data breaches, etc. What are we looking for?We want strong collaborators who can deliver a world-class client experience. We are looking for people who thrive in a fast-paced environment, are client-focused, team oriented, and are able to execute in a way that encourages creativity and continuous improvement. Qualifications:Bachelor's degree in Information Security or Technology related field5+ years of experience in information security, especially in an incident response roleExperience driving measurable improvement in monitoring and response capabilities at scale.Experience with analysis of server, network, web and mail security events Core Competencies: Understanding of network security devices, protocols, routing, and servicesFamiliarity with Information Security Risk Management practicesGood written and verbal communication skillsScripting experience, preferable with pythonProficiency with industry-standard DFIR toolsets, including X-Ways, EnCase, FTK, and Volatility.Experience with performing host or network incident response, malware analysis, or forensicsExperience with Business Email Compromise and Ransomware incidentsKnowledge of host and network log sources to apply to investigation and IR methodology in investigationsFamiliarity with MITRE ATT& CK and Cyber Kill Chain.Experience working with SIEM systems, threat intelligence platforms, security automation and orchestration solutions, intrusion detection and prevention systems (IDS/IPS), file integrity monitoring (FIM), DLP and other network and system monitoring tools. Preferences:Knowledge of a variety of Internet protocols.knowledge of memory forensicsExperience with cloud infrastructures for the enterprise, such as Amazon Web Services, G Suite, Office 365, and Azure. Experience with conducting log analysis of Windows Event Logs, Apache, IIS, and firewall logs.Proficiency with database querying and analysis.Experience with command line tools (grep, sed, awk, powershell), python, and other programming languages.Familiarity with Laws, Rules, and Regulations (LRRs) attendant Financial Institutions Information Security requirements including Privacy LRRs e.G. GDPR, NYDFS, SEC Guidelines.Security certifications such as CISSP, GCIH or GPEN are a plus Why LPL? At LPL, we believe that objective financial guidance is a fundamental need for everyone. As the nations leading independent broker-dealer, we offer an integrated platform of proprietary technology, brokerage, and investment advisor services. We provide you with a work environment that encourages your creativity and growth, a leadership team that is supportive and responsive, and the opportunity to create a career that has no limits, only amazing potential. We areone team on one mission. We take care of our advisors, so they can take care of their clients. Because our company is not too big and not too small, you can seize the opportunity to make a real impact. We are committed to supporting workplace equality, and we embrace the different perspectives and backgrounds of our employees. We also care for our communities, and we encourage our employees to do the same. This creates an environment in which you can do your best work. Want to hear from our employees on what its like to work at LPL? Watch this! We take social responsibility seriously. Learn more here Want to see info on our benefits? Learn more here Join the LPL team and help us make a difference by turning lifes aspirations into financial realities. Please log in or create an account to apply to this position. Principals only. EOE. Information on Interviews: LPL will only communicate with a job applicant directly from an @lplfinancial.Com email address and will never conduct an interview online or in a chatroom forum. During an interview, LPL will not request any form of payment from the applicant, or information regarding an applicants bank or credit card. Should you have any questions regarding the application process, please contact LPLs Human Resources Solutions Center at (800) 877-7210.

Keywords: LPL Financial, Austin , LPL Financial: Information Security Engineer, Accounting, Auditing , Austin, Texas