Stifel strives for a culture that puts its clients and associates first: a culture where everyone belongs, everyone is welcome, and everyone contributes to the success of our clients, their careers, and the firm as a whole.
Let’s talk about how you can find your place here at Stifel, where success meets success.
Under general supervision, the IT Security Threat Engineer II is a front-line member of the Threat and Vulnerability Management team that has responsibility for detecting potential risks to the Stifel networkand assets. The IT Security Threat Engineer II will assist in the development of security solutions and the maintenance, documentation and system lifecycle of those solutions. This position will utilize multiplecomplex tools to assist in their daily duties to analyze and detect threats and vulnerabilities to Stifel Assets.
• Researches emerging threats and vulnerabilities to aid in the identification of incidents.
• Monitors threat intelligence feeds to identify a range of threats, including indicators of compromise and advanced persistent threats (APTs).
• Assist in identifying potential threats' tactics, techniques, and procedures (TTPs) through the MITRE ATT&CK or similar frameworks.
• Research and understand vulnerabilities, including different ways to exploit them.
• Assess threats and vulnerabilities and the level of risk to the firm.
• Identifies deviations from acceptable configurations and enterprise or local security policy.
• Interface with network and server administrators, desktop support, developers, and business stakeholders on security vulnerabilities and threats.
• Track remediation efforts for identified vulnerabilities through agreed-upon completion dates and plans. Ensure remediation efforts are in compliance with associated corrective action timeframes.
• Work collaboratively with all Stifel departments to ensure local practices are consistent with corporate information security policies and standards.
• Advanced understanding of security control environment (access control, logging, authentication, encryption, integrity, etc.);
• Experience coordinating corporate-wide initiatives for obtaining security-related assurances.
• Familiarity with federal and state legal and regulatory requirements related to information security.
• Understand the advanced tenants of security risk management and defense-in-depth practices.
• The ability to combine pieces of information to form general rules or conclusions.
• Ability to use logic and reasoning to identify the strengths and weaknesses of alternative solutions, conclusions, or problem approaches.
• Ability to consider the relative costs and benefits of potential actions to choose the most appropriate one.
• Ability to analyze needs and product requirements to create a design.
Stifel is more than 130 years old and still thinking like a start-up. We are a global wealth management and investment banking firm serious about innovation and fresh ideas. Built on a simple premise of safeguarding our clients’ money as if it were our own, coined by our namesake, Herman Stifel, our success is intimately tied to our commitment to helping families, companies, and municipalities find their own success.
While our headquarters is in St. Louis, we have offices in New York, San Francisco, Baltimore, London, Frankfurt, Toronto, and more than 400 other locations. Stifel is home to approximately 9,000 individuals who are currently building their careers as financial advisors, research analysts, project managers, marketing specialists, developers, bankers, operations associates, among hundreds more. Let’s talk about how you can find your place here at Stifel, where success meets success.
At Stifel we offer an entrepreneurial environment, comprehensive benefits package to include health, dental and vision care, 401k, wellness initiatives, life insurance, and paid time off.
Stifel is an Equal Opportunity Employer.
Software Powered by iCIMS
www.icims.com