Job details

Senior Cyber Security Engineer, Operations

Get a free resume review

Who We Are:

Endeavor is seeking a Senior Security Engineer to lead the selection, design, implementation, and operation of security solutions for our technology environment. Reporting to the SVP of Cybersecurity, this role will integrate security controls into business processes to ensure data security, compliance, integrity, and availability. You will drive the effective development and adoption of solutions, supporting cybersecurity engineering efforts to mitigate risks across our global organization.

The Endeavor Cybersecurity team is committed to identifying, evaluating, and mitigating threats, vulnerabilities, and risks within our business processes, technology supply chain, and behaviors. Our focus is to protect Endeavor’s business operations while fostering top-line growth across our lines of business, alongside our technology, compliance, and legal teams.

You are a seasoned cybersecurity and risk management professional with a solid understanding of enterprise engineering and supporting principles. You are a subject matter expert with experience working with both technical and non-technical business leaders, adopting a client-services approach. You have a consultant mindset, collaborating with partners across various functions and seniorities to embed yourself within the business units. You can recognize unique threats and efficiency opportunities across diverse business models, revenue streams, and data sources within our complex corporate structure.

RESPONSIBILITIES

Design and Implement Security Solutions: Engineer and support the full lifecycle of security solutions within Endeavor’s networks (both on-premise and in the cloud).
Consult on Operational Efficiency: Advise management on operational improvements to enhance security capabilities and reduce delivery costs.
Create Robust Security Controls: Develop and maintain security controls for agile deployments, including both traditional infrastructure and continuous deployment methods in a high-capacity, multi-tiered infrastructure.
Develop Security Frameworks: Build a library of architectural patterns to optimize time-to-solution for security throughout a solution’s lifecycle, covering technology, business processes, operating costs, assurance, and skills development.
Drive Assurance Programs: Develop and sustain a metrics-driven software assurance program, incorporating education, business processes, tools, and policies to enhance the security and monitoring of the firm.
Lead Incident Response Efforts: Contribute to the Incident Response Process as a senior member of the Cybersecurity team, collaborating with Compliance, Legal, and HR teams.
Innovate and Strategize: Provide innovative thinking and strategic planning on best practices, cost management, emerging technologies, and potential product/service offerings.

BASIC QUALIFICATIONS

Proven Experience: Over 5 years of experience as a security professional.
Enterprise IT Background: Over 3 years of experience working in high-traffic, public-facing production environments or within a global enterprise IT organization.
Expertise in Engineering Practices: Strong experience in enterprise engineering, supporting principles, and lifecycle management.
Hands-On Security Expertise: Senior-level, hands-on experience in security engineering and support.
Advanced Security Knowledge: In-depth knowledge of host- and network-based intrusion prevention and response, anti-malware solutions, SIEM, Azure/AWS threat and log monitoring, and authentication/role-based identity management solutions.
Proficient in Risk Management: Experience with vulnerability management and mitigations, including patch management and system hardening.
Skilled in Threat Hunting: Expertise in threat hunting, with the ability to document operating procedures and create playbooks.
Familiarity with Security Protocols: Working knowledge of IPSec VPN, SSL, MFA/2FA, firewall policies, and PKI.
Industry Certifications: CISSP certification or equivalent required.

PREFERRED QUALIFICATIONS

Leadership Skills: Leadership or team lead experience is a plus.
Network Expertise: Strong understanding of LAN/WAN communications and network hardware, particularly Cisco routers, switches, and firewalls.
Programming Skills: Development experience in scripting languages such as Python, Bash, or PowerShell is a plus.
Security Standards Knowledge: In-depth understanding of the OWASP Top 10 and PCI secure coding principles, with the ability to advise on mitigation strategies across architecture, systems engineering, operations, and development.

Per local requirements and in the interest of transparency, the range shown below reflects the prevalent current hiring range for this position. Hiring pay rates are based on a number of factors, including location and may vary depending on job-related qualifications, knowledge, skills and experience. The company strives to provide locally competitive rewards packages, which include base rate along with, as applicable, short- and long-term incentives, growth and developmental opportunities, and robust benefits, such as health care, retirement, vacation and other paid time off, and additional offerings.

Hiring Range Minimum:

$138,750 annually

Hiring Range Maximum:

$185,000 annually

Average salary estimate

$161875 / YEARLY (est.)

min

max

$138750K

$185000K

If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.

What You Should Know About Senior Cyber Security Engineer, Operations, WMEIMG

At Endeavor, we're excited to welcome a Senior Cyber Security Engineer to our vibrant team in New York's Park Ave South. In this pivotal role, you'll be at the forefront of designing, implementing, and operating innovative security solutions that safeguard our technology environment. Reporting directly to the SVP of Cybersecurity, your mission will be to embed security controls seamlessly into our business processes, ensuring that our data remains secure, compliant, and readily available. You'll enjoy collaborating with a diverse group of stakeholders, ranging from technical experts to non-technical business leaders, all while driving cybersecurity engineering efforts that reduce risks across the globe. Your deep expertise in enterprise engineering and risk management will allow you to recognize unique threats and identify efficiency improvements across our operations. You'll also create and maintain robust security controls for both traditional and agile deployments, develop security frameworks that enhance our operational capabilities, and lead incident response efforts in collaboration with Compliance, Legal, and HR teams. We value a candidate who not only has hands-on technical expertise but also approaches challenges with innovative thinking and a strategic mindset. If you're passionate about cybersecurity and looking to make a substantial impact while supporting Endeavor's commitment to growth and safety, this role is perfect for you!

Frequently Asked Questions (FAQs) for Senior Cyber Security Engineer, Operations Role at WMEIMG

What are the responsibilities of a Senior Cyber Security Engineer at Endeavor?

As a Senior Cyber Security Engineer at Endeavor, you will be responsible for designing and implementing security solutions, consulting on operational efficiency, creating robust security controls, developing security frameworks, driving assurance programs, and leading incident response efforts. You'll work closely with various teams to identify risks and enhance our security posture within the technology environment.