Wealth Management-Dallas-Vice President-Security Engineering
Goldman Sachs · Dallas, TX · 1 wk ago
ManagementFull-time
Key Responsibilities
- Closely collaborate with Product Management, Engineering, Program Management, and Dev Ops teams.
- Ensure security of applications (Cloud/Web/API/Mobile) managed by Asset and Wealth Management (AWM) in conjunction with centralized security teams.
- Act as a security advisor to architects, developers, analysts and others to ensure confidentiality, integrity, resiliency, and privacy are designed into the platform.
- Partner with business units to understand requirements, design proposals, and evaluate architectural flaws for various on-prem/cloud architectures.
- Evaluate the effectiveness of existing key controls, identify gaps, and recommend improvements to mitigate risks and enhance firm’s security posture.
- Supervise, coach, and develop a small team of application security specialists.
- Drive adoption of embedded application security controls as part of the Software Development Life Cycle (SDLC) in Agile methodology, including automated tools.
- Perform secure code reviews and facilitate or conduct penetration testing.
- Aid in the implementation of security-related product features such as authentication, cryptography, authorization, service integration, etc.
- Develop, maintain, and improve Technology Risk Program reflecting new emerging risks.
- Enable the business to meet security requirements by design.
Skills And Experience Required
- 6+ years' experience in secure architecture design, application security, and risk analysis techniques or related fields.
- Energetic, self-directed, and self-motivated, able to build and sustain long-term relationships with colleagues.
- Experience managing multiple tasks and using sound judgment when managing risks, prioritizing, and escalating.
- Ability to work with deeply technical engineers, identify gaps that need addressing, and hold them to account.
- Security testing methodologies, tools, and techniques - understanding of common application security vulnerabilities and controls to remediate.
- Expert knowledge of application security best practices including OWASP and CWE and cloud related concepts.
- Hands-on software development and/or application Penetration Testing experience in complex environments (advantage).
- Strong desire to learn and contribute solutions and ideas to a broad team.
Preferred Qualifications
- Experienced in Financial Services/Fintech.
- Bachelor's or Master's degree in Computer Science, Cyber Security, Information Security, or a related technical field.
- Experience with leveraging AI/ML to solve security problems and scale operations.
- Knowledge of secure coding languages (e.g., Python, Java, Go).
- Cloud related experiences (CSSLP / CISSP / CCSP / OSCP a plus).