VP, Security Engineer
Galaxy · New York, NY · 1 wk ago
Information TechnologyFull-time
Email Security & Data Protection
- Administer and support enterprise email security platforms and threat protection technologies.
- Configure, tune, and maintain anti-phishing, anti-spam, malware detection, impersonation protection, and email filtering controls.
- Administer and optimize email-based Data Loss Prevention (DLP) policies, monitoring, and enforcement capabilities.
- Investigate email security alerts, phishing incidents, business email compromise attempts, and DLP events, coordinating remediation efforts as needed.
- Support data protection initiatives across email, SaaS platforms, cloud services, endpoints, and collaboration tools.
- Develop and maintain security controls that reduce the risk of data exposure through business communications and user workflows.
Privileged & Infrastructure Access Security
- Administer, maintain, and enhance enterprise privileged access management and infrastructure access security platforms.
- Support secure access solutions for administrators, internal users, contractors, and third parties.
- Manage identity-aware access controls for infrastructure, cloud environments, administrative systems, and critical resources.
- Partner with Infrastructure and Identity teams to support authentication, authorization, and least-privilege access models.
- Support secure access controls across cloud and on-premises environments, including servers, databases, Kubernetes clusters, and other critical infrastructure.
- Participate in access reviews, entitlement validation, and privileged account governance initiatives.
- Assist with the implementation and continuous improvement of Zero Trust access controls and infrastructure access security practices.
Security Platform Engineering & Operations
- Administer and support enterprise security technologies including identity, endpoint, monitoring, logging, and cloud security platforms.
- Support onboarding, configuration, integration, and troubleshooting of security tools and services.
- Maintain platform health, operational performance, and security control effectiveness.
- Collaborate with Infrastructure and IT teams to ensure security controls remain properly configured and maintained.
- Assist with implementation and operationalization of new security technologies and security initiatives.
Security Operations & Incident Response
- Support the Security Operations team in monitoring, detecting, investigating, and responding to security incidents.
- Participate in incident investigations, root cause analysis, containment, and remediation activities.
- Assist with threat detection, vulnerability remediation, and continuous monitoring efforts.
- Support investigations involving identity systems, cloud environments, enterprise applications, and business-critical platforms.
Security Engineering & Continuous Improvement
- Assist with automation of operational and security processes using scripting, APIs, or workflow automation tools.
- Participate in platform evaluations, security assessments, and infrastructure hardening initiatives.
- Work closely with Engineering, Infrastructure, and IT teams to improve enterprise security controls.
- Contribute to security projects and operational initiatives as business needs evolve.
- Evaluate emerging security technologies and opportunities to improve operational efficiency and security effectiveness.
Compliance & Governance
- Support compliance initiatives related to SOC 2, ISO 27001, PCI-DSS, and other applicable regulatory frameworks.
- Absorb and maintain security documentation, standards, procedures, and operational runbooks.
- Participate in audit preparation, evidence collection, and remediation activities.
- Support governance efforts related to identity security, privileged access controls, and data protection requirements.