Vice President, Security Engineering (Asset & Wealth Management)

TL;DR

Vice President, Security Engineering (Asset & Wealth Management): Defining, implementing, and overseeing the comprehensive information security and cybersecurity risk posture specifically within the Asset Management Private business with an accent on balancing commercial objectives with robust security controls. Focus on fostering a unified and proactive approach to risk management, ensuring regulatory compliance, and enabling secure technological innovation across all Asset Management initiatives.

Location: Onsite in Dallas, Texas, United States

Company

hirify.global is a leading global investment banking, securities and investment management firm founded in 1869, headquartered in New York with offices around the world.

What you will do

• Work with internal application development teams to integrate information security and business resiliency control requirements into applications.
• Collaborate with global Technology Risk teams to develop and integrate best-in-class security and resiliency controls and practices.
• Assess existing applications for design-related security risks and assist teams in determining appropriate remediation steps.
• Provide guidance to engineering leadership and application developers on existing and emerging threats.
• Drive adoption of embedded application security controls as part of the Software Development Life Cycle (SDLC).
• Work with engineers to develop customized security testing strategies to complement the existing security testing program.

Requirements

• 5+ years of progressive experience in multi-domain Information Security (e.g., vendor security, application security, vulnerability management, data loss prevention, data encryption, infrastructure security).
• Expert knowledge of global financial regulations (e.g., SEC, FINRA, GDPR, CCPA) and proven experience applying risk management methodologies (e.g., FAIR).
• Proven ability to build, mentor, and lead high-performing global teams of security professionals.
• Exceptional written and oral communication skills, with the ability to articulate complex technical risks and solutions to technical and executive audiences.
• Expertise in performing risk assessments, identifying gaps in compliance with information security policies, and recommending effective mitigation strategies.
• Familiarity with leading security standards and frameworks such as NIST, OWASP, SANS Top 20, PCI DSS, and CIS Controls.

Nice to have

• BS or MS degree in Computer Science, Cyber Security, Information Security, or a related technical field.
• Relevant industry certifications such as CISSP, CISM, CRISC, CISA, or cloud-specific security certifications.
• Experience with leveraging AI/ML to solve security problems and scale operations.
• Knowledge of secure coding languages (e.g., Python, Java, Go).

Culture & Benefits

• Commitment to fostering and advancing diversity and inclusion.
• Opportunities for professional and personal growth through training, firmwide networks, benefits, wellness, and mindfulness programs.
• Offer best-in-class benefits.
• Committed to finding reasonable accommodations for candidates with special needs or disabilities during the recruiting process.