IT - Cybersecurity Engineer - Doral, United States - Rialto Capital
Description
Rialto is a fully integrated real estate investment management and asset management company with a dedicated special servicer. Rialto invests and manages assets throughout the real estate capital structure in real estate properties, loans and securities. Our mission is to create long term value for our investors and sustain results across market cycles. Rialto is headquartered in Miami, FL and has professionals operating from 12 locations throughout the United States. For more information, please visitWe are seeking an experienced Cybersecurity Engineer to join our team.
The ideal candidate will have a strong background in information security and be responsible for implementing, monitoring, and maintaining the security of our information systems and networks.
They will ensure that our company's critical data and digital assets are protected from cyber threats and unauthorized access.In addition, this candidate will manage security-related activities for onboarding and offboarding, access control, and building and maintaining a platform for Due Diligence Questionnaire (DDQ) management.
Key Responsibilities:
Manage security-related activities during employee onboarding and offboarding, including access provisioning and deprovisioning, and ensuring that access control policies are followed.
Build and maintain a secure platform to automate onboarding/offboarding leveraging Cloud SaaS, IaaS, PaaS, such as Azure App Services, Functions, Batch, Okta Identity Engine, Okta Workflows, Salesforce, Freshservice, Zoom, PagerDuty, Box, Datadog, Fortinet, Google Workspace, and Office 365, using their interfaces such as RESTful API or system specifics like Exchange Online PowerShell and Microsoft Graph API.
Build and maintain a secure platform for Due Diligence Questionnaire (DDQ) management, streamlining the process and ensuring the protection of sensitive information.
Implement and manage security tools, such as firewalls, intrusion detection systems, encryption, and endpoint security solutions.Continuously monitor and analyze the firm's networks and systems for potential security vulnerabilities, threats, and incidents.
Develop, implement, and maintain information security policies, procedures, and guidelines in accordance with industry best practices and regulatory requirements.
Perform regular security assessments, vulnerability scanning, and penetration testing to identify and remediate security risks.
Respond to and investigate cybersecurity incidents, including providing necessary support to incident response and disaster recovery efforts.
Collaborate with internal and external stakeholders to ensure the security of data, systems, and networks.
Comply with all applicable regulations and industry standards, including SEC, FINRA, and other regulatory requirements.
Conduct regular security awareness training for employees to promote a strong security culture within the organization.
Stay informed about emerging threats, vulnerabilities, and trends in the cybersecurity landscape and recommend appropriate countermeasures.
Prepare and present reports on the status of the firm's information security posture to management and other stakeholders.
Job Requirements:
Bachelor's degree in computer science, Information Technology, Cybersecurity, or a related field.
Minimum of 5 years of experience in information security or cybersecurity, preferably within the financial services industry.
Minimum of 3 years of experience managing onboarding, offboarding, access provisioning using Modern Architecture with SSO SAML v2.0 with Okta OIN SCIM, and interfacing Cloud Services to automate tasks using Microsoft Graph API, Exchange Online PowerShell, and RESTful APIs.
Strong knowledge of information security frameworks and standards, such as NIST, ISO 27001, and CIS Critical Security Controls.Familiarity with regulatory requirements and industry standards for investment advisory firms, including SEC and FINRA regulations.
Experience with security tools and technologies, such as firewalls, intrusion detection/prevention systems, encryption, and endpoint security solutions.
Strong experience with Okta access control and identity management platform.
Strong analytical, problem-solving, and decision-making skills.
Excellent communication and interpersonal skills, with the ability to work effectively both independently and as part of a team.
Relevant professional certifications (e.g., CISSP, CISM, CEH, or CompTIA Security+) are highly desirable.
The Cybersecurity Engineer will play a crucial role in ensuring the integrity and confidentiality of our firm's information assets while minimizing potential risks.
This position offers an opportunity to work in a dynamic, fast-paced environment where you will be part of a team committed to delivering excellence in cybersecurity and security-related activities.
Working Conditions
While performing the duties of this job, the Associate is occasionally required to stand; walk; sit; use hands to finger, handle, or feel objects, tools or controls; reach with hands and arms; climb stairs; balance; stoop.
Rialto Capital is committed to the principles of Equal Employment Opportunity.
Our policy is to provide equal employment opportunity to all applicants and Associates without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity or expression, national origin, age (40+), disability, veteran status, genetic information (including family medical history), or any other legally protected status.
Our company uses E-Verify to confirm the employment eligibility of all newly hired employees.The term "Rialto Capital" refers to Rialto Management Group, LLC ("RMG") and its subsidiaries: Rialto Capital Management, LLC, the registered investment advisor ("RCM"), and Rialto Capital Advisors, LLC, the asset manager and special servicer ("RCA").
All information as of 12/31/2020, unless otherwise noted.#J-18808-Ljbffr