Tech Risk - DevSecOps Engineer - Global Cyber Defense & Intelligence - Associate

Job Description

WHO WE ARE

Led by the Chief Information Security Officer (CISO), Technology Risk secures Goldman Sachs against hackers and other cyber threats. We are responsible for detecting and preventing attempted cyber intrusions against the firm, helping the firm develop more secure applications and infrastructure, developing software in support of our efforts, measuring cybersecurity risk, and designing and driving implementation of cybersecurity controls. The team has global presence across the Americas, APAC, India and EMEA.

Within Technology Risk, the Global Cyber Defense & Intelligence (GCDI) identifies malicious activity, manage the lifecycle of vulnerabilities within GS technologies, and investigates and manages threats across the firm. We are a team of security, software, and product engineers that allow the firm to respond appropriately to firm risks through the use of detection models, security architecture, and cutting-edge cyber threat analysis to manage internal and external threats against the firm. Vulnerability Management (VM) team within GCDI performs one of the most critical security and risk functions at the firm - detecting vulnerabilities in our technology and ensuring their remediation before they can be exploited by malicious hackers.

Goldman Sachs has one of the most progressive Technology Risk teams in the industry and is continuing to push the development of risk in preference to security within technology and the business. Year on year success has led the team to work deeper into the organization and gain valuable insights into how technology needs to function, what its risk really is and how this impacts the business.

YOUR IMPACT

You will be a key addition to the Technology Risk Sensor Grid Engineering team which operates in multiple capacities across a variety of internally developed technologies and vendor products, with focus on two major areas:

Sensor Engineering - we research, implement and support best in class technology solutions that enable a comprehensive Cyber Defense program for the firm. Areas include but are not limited to network connection and packet capture, data leakage protections, malware analysis, sandbox technologies.

Data Ingestion Engineering - we collect security related events and data feeds into a centralized big data infrastructure. We research, implement and support best in class technology solutions related to data ingestion, transformation, enrichments and analysis. Technologies include but are not limited to Splunk, Hadoop, Elastic Search, and Kibana

HOW YOU WILL FULFILL YOUR POTENTIAL

As an Engineer in Sensor Grid Engineering, you will be an integral part of a technical team that is responsible for providing the GCDI organization with security sensors and data sets that increases awareness of current and potential Cyber Threats. The Sensor Grid engineering team is responsible for all security sensors within Technology Risk. You will work closely with Threat Management Centre, Hunt, and Detection Engineering teams to ensure our sensors and data streams are effectively configured, streamlined, integrated, automated and monitored to ensure the systems and data necessary to protect the firm from Cyber Threats is available.

You possess the aptitude to work across teams and product owners, to elicit tool-related requirements from all parts of Technology Risk, and to work with tool vendor support teams in resolving issues that may arise from the use of the tools.

Responsibilities:

• Design, deploy, administer, maintain, customize, and scale the systems and data feeds needed to protect the firm from Cyber Threats
• Develop solutions to support data ingestion and data analytics in the cloud that will advance Network Forensics, Malware Analysis, and Cyber Detections
• Participate in Proof-Of-Concept activities to explore and evaluate new technologies
• Become a subject matter expert in a number of cloud native technologies as well as the data flow and analytics
• Become a subject matter expert related to those systems and their customization, such as integration with firm authentication and authorization systems, API usage, and industry direction

Basic Qualifications

• Bachelor's degree in Computer Science, System/Computer Engineering, Cyber or Information Security
• 4+ years of relevant experience in two or more domains:
  • Network Forensics
  • Data ingestion / ETL
  • Malware Analysis
  • Infrastructure scanning
  • Data Leakage
  • Network packet capture & Analysis
  • Process automation
• Ability to communication clearly and a natural inclination to collaborate
• Problem solves from an out-of-the box perspective, doesn't always default to industry norms

Preferred Experience/Qualifications

• Experience building and administering cloud infrastructure in AWS and GCP
• Experience building and administering real-time threat detection solutions using Kafka and Spark

#TechRiskCybersecurity

ABOUT GOLDMAN SACHS

At Goldman Sachs, we commit our people, capital and ideas to help our clients, shareholders and the communities we serve to grow. Founded in 1869, we are a leading global investment banking, securities and investment management firm. Headquartered in New York, we maintain offices around the world.

We believe who you are makes you better at what you do. We're committed to fostering and advancing diversity and inclusion in our own workplace and beyond by ensuring every individual within our firm has a number of opportunities to grow professionally and personally, from our training and development opportunities and firmwide networks to benefits, wellness and personal finance offerings and mindfulness programs. Learn more about our culture, benefits, and people at GS.com/careers.

We're committed to finding reasonable accommodations for candidates with special needs or disabilities during our recruiting process. Learn more: https://www.goldmansachs.com/careers/footer/disability-statement.html

© The Goldman Sachs Group, Inc., 2022. All rights reserved.
Goldman Sachs is an equal employment/affirmative action employer Female/Minority/Disability/Veteran/Sexual Orientation/Gender Identity