Apply on Employer Site

Corient · 2 months ago

Staff Cybersecurity Engineer

Denver, CO

Full-time

Onsite

Lead/Staff

$115K/yr - $175K/yr

10+ years exp

Corient is a rapidly growing wealth management platform in the United States, dedicated to helping high-net-worth individuals and families preserve their wealth. The Staff Cybersecurity Engineer will design and implement scalable security controls across various domains, ensuring robust security measures are integrated throughout the infrastructure and application lifecycles.

AdviceConsultingWealth Management

No H1B

U.S. Citizen Only

Responsibilities

Design, engineer, and document scalable security controls across identity, cloud, application, and network domains

Translate security policies and standards into technical design patterns and reusable control modules

Collaborate with infrastructure, cloud, and application teams to embed security requirements early in design and implementation lifecycles

Develop infrastructure-as-code (IaC) templates, secure configuration baselines, and automation pipelines that enforce consistent security across environments

Engineer secure configurations and access models for cloud services, including Azure, Microsoft 365, and SaaS platforms

Implement and integrate authentication and authorization mechanisms using MFA, SAML, and OAuth

Strengthen identity lifecycle integrations and enforce least-privilege and conditional-access principles

Support the design of data-protection, encryption, and compliance controls within cloud environments

Engineer secure connectivity and segmentation models across hybrid and cloud environments

Design network-security architectures, including next-generation firewall policies, zero-trust access patterns, and secure egress filtering

Collaborate with Network Engineering to implement scalable designs for ZTNA, SD-WAN, or SASE solutions supporting secure remote access

Integrate network and endpoint controls into automated provisioning and configuration management frameworks

Develop scripts and automation to codify and deploy security configurations, compliance checks, and control testing

Integrate security tooling and telemetry into build and deployment processes for continuous assurance

Streamline security tasks and verification steps through PowerShell, Python, or other automation frameworks

Contribute to security architecture reviews, technical documentation, and knowledge sharing across teams

Provide technical mentorship and guidance on security best practices to engineering and IT staff

Partner with business and technology leaders to align security engineering priorities with organizational goals

Qualification

Cybersecurity EngineeringCloud SecurityIdentity Access ManagementScriptingAutomationMicrosoft AzureSecurity FrameworksSecurity Controls IntegrationInfrastructure as CodeAnalytical SkillsCritical ThinkingCommunication SkillsTeam Collaboration

Required

A four-year college degree and equivalent industry training or certifications (e.g., CEH, CISM, CISSP, GSEC)

Ten+ years of experience in cybersecurity engineering, architecture, or related position; preferably within the financial services industry

Strong understanding of Microsoft's enterprise technology platform, including Azure, Active Directory, SQL, Office365, and the Windows server and desktop operating systems

Familiarity with industry frameworks, such as NIST, CIS-18 and ISO

Demonstrated experience designing or integrating security controls such as IAM, EDR, DLP, IGA, SOAR, SIEM, CASB, SWG, ZTNA and/or NGFW platforms

Strong analytical and critical thinking skills and the ability to organize work in a logical, thorough, and succinct manner

Strong scripting and automation skills (Python, PowerShell, etc.) and infrastructure as code ecosystems (e.g., Terraform, Cloudformation)

Highly self-motivated, results-orientated, and self-directed to handle multiple ongoing tasks

Flexibility to adapt to changing assignments and ability to effectively prioritize

Effective written and verbal English communication at all levels

Demonstrated ability to operate and innovate in a small team with a fast‐paced environment, balancing both strategic and tactical needs