Security Engineer

Join to apply for the Security Engineer II role at Symphony

We’ve spent the last 10 years building a communication and markets technology company, powered by interconnected platforms: messaging, voice, directory and analytics. Over 1000 institutions use our modular technology built for global finance. Security is in our DNA with uncompromising data protection, end‑to‑end encryption and resilient architecture, all created on a foundation of trust with our customers.

We’re now building on our purpose‑built network, expanding AI‑powered, real‑time collaboration, redefining flexibility with fully cloud‑native software and rethinking the industry’s approach to identity verification, connection and intelligence.

As a Senior Security Engineer, you will assess information risks, identify opportunities for risk reduction, and facilitate remediation of identified vulnerabilities within the organization’s network, systems, and applications. You will perform regular risk and vulnerability assessments, report findings, monitor remediation tasks, maintain oversight of vendors’ security, and assist in all internal and external audits and regulatory examinations.

• Provide oversight and governance of the organization’s Information Security/Cyber Security Program and communicate progress and issues to senior management.
• Initiate and develop innovative concepts to solve complex challenges with little or no precedent; create new opportunities to enable the use of new solutions. Serve as a consultant to disseminate specialist information security knowledge and provide conceptual guidance to other senior and high‑level technical experts.
• Develop an externally focused view of the evolving threats facing the organization.
• Promote awareness of applicable regulatory standards, upstream risks and industry best practices across the organization.
• Serve as primary contact for all internal and external audits and regulatory examinations.
• Serve as primary contact for customer due diligence and risk assessment inquiries.
• Serve as project manager/lead of risk/compliance related security projects.
• Examine systems and procedures to identify potential adverse events, including but not limited to hardware and software crashes, physical disasters, malicious intruders, malware, denial‑of‑service attacks and employee misconduct.
• Identify and manage risks that might occur.

• 7+ years working in IT Risk Management.
• Knowledge of technical infrastructure, networks, databases and systems in relation to IT Security and IT Risk.
• Deep knowledge of well‑known standards and frameworks (e.g., ISO 27002, NIST Cybersecurity Framework, COBIT, COSO, GDPR) and related regulatory rules (DFS, FRB, FFIEC, etc.).
• 7+ years’ experience in conducting IT Compliance Assessments (DFS, FFIEC, ISO, SOC).
• 7+ years’ experience in administering IT Security Controls in an organization.
• 7+ years’ experience in performing security reviews and risk assessments.
• Understanding of malware, emerging threats, attacks and vulnerability management.
• Experience assisting the development and maintenance of tools, procedures and documentation.
• Prior experience working within a financial services organization preferred.

• Competitive salary
• Bonus Plan
• Benefits and perks vary based on location.

• Regional specific competitive benefits
• Build your own benefits (BYOB) perk
• Many other fun and exciting benefits and activities!

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment.