Principal Cloud Code Security Engineer

Are you a team player? Are you curious to learn? Are you interested in working in meaningful projects? Do you want to work with cutting-edge technology? Are you interested in being part of an innovative team that builds products which are transforming the organization? If so, LPL Financial is the place for you!

LPL Financial (Nasdaq: LPLA) was founded on the principle that the firm should work for the advisor, and not the other way around. Today, LPL is a leader* in the markets we serve, supporting more than 22,000 financial advisors, 1,100 institution-based investment programs, and 500 independent RIA firms nationwide. We are steadfast in our commitment to the advisor-centered model and the belief that Americans deserve access to personalized guidance from a financial advisor. At LPL, independence means that advisors have the freedom they deserve to choose the business model, services, and technology resources that allow them to run their perfect practice. And they have the freedom to manage their client relationships, because they know their clients best. Simply put, we take care of our advisors, so they can take care of their clients.

Excited to learn more? If so, then this could be the role for you!

Job Overview:

As a member of the Information Security team, the Principal Cloud Code Security Engineer will be responsible for developing, maturing, and sustaining the Cloud Security program with an emphasis on Infrastructure as Code security. This position will partner with the Application Security, Cloud Engineering/Operations, and Security Engineering teams to ensure that company private cloud resources are securely deployed through established automated pipelines.

Responsibilities:

• Implement and maintain appropriate controls within the CI/CD pipelines used to deploy cloud resources to ensure that resources are securely designed and deployed

• Review Infrastructure as Code scripts and code repositories to identify potential security issues or noncompliance with coding best practices

• Implement and maintain tools to perform automated security scanning/analysis of Infrastructure as Code, containers, and serverless functions

• Review security scan results and work with Application Development and Cloud Engineering teams to prioritize remediation efforts, review potential false-positives and evaluate potential mitigating factors

• Produce and track routine reports/metrics on security vulnerabilities, coding deficiencies and exposures

• Mentor and educate other teams within the organization on secure development and cloud security best practices

• Monitor and review CVEs, industry developments, and provide inputs for continuous improvement

• Work with Internal Audit, IT Governance, IT Compliance and other key stakeholder groups on specific projects to ensure compliance with applicable regulatory requirements

• Act as an SME in the area of Cloud and Code Security

What are we looking for?

We want strong collaborators who can deliver a world-class client experience. We are looking for people who thrive in a fast-paced environment, are client-focused, team oriented, and are able to execute in a way that encourages creativity and continuous improvement.

Requirements:

• 8+ years of Cloud experience specifically working with AWS and Azure environments
• 8+ years of experience specifically working with Infrastructure as Code and helping to secure automated Cloud deployment pipelines
• 5+ years of experience using Cloud Security and IAC scanning tools
• 5+ years of experience with reviewing and analyzing vulnerabilities, including cloud related issues, and tracking closure of vulnerabilities

Core Competencies:

• Experience developing Infrastructure as Code using tooling such as Terraform, Cloud Formation, or HashiCorp

• Expert level knowledge in securing Infrastructure as Code scripts and Cloud resource deployments

• Expert level knowledge of the major Cloud platforms and their associated resources, common cloud misconfigurations/vulnerabilities and how to securely deploy each resource type

• Experience working with Cloud Security Posture Management (CSPM) technologies such as Wiz, Prisma, Laceworks, Orca and Compute Security tools such as Twistlock and Aquasec

• Knowledge of secure coding best practices, secure SDLC, secure architecture, and DevSecOps methodologies

• Experience working with and building security into CI/CD Pipelines

• Experience working with Developer IDE tools and Source Code Management platforms

• Understanding of how to identify and mitigate OWASP Top 10 Cloud Native Application Security Risks through coding patterns

• Experience developing controls to secure Cloud native applications

• Strong scripting experience in languages such as Powershell, Python, and Bash

• Strong analytical, interpersonal and communication skills

Preferences:

• Bachelor's Degree or equivalent in Information Security, Engineering, Computer Science.

• Application Development and Security Engineering or Security Architecture experience

• Experience working with security of applications developed in C#, Java, and web (HTML, CSS, JS, React, REST) technologies

• Experience developing Cloud Native applications

Pay Range:

$143,600-$215,400/year

Actual base salary varies based on factors, including but not limited to, relevant skill, prior experience, education, base salary of internal peers, demonstrated performance, and geographic location. Additionally, LPL Total Rewards package is highly competitive, designed to support your success at work, at home, and at play - such as 401K matching, health benefits, employee stock options, paid time off, volunteer time off, and more. Your recruiter will be happy to discuss all that LPL has to offer!

Why LPL?

At LPL, we believe that objective financial guidance is a fundamental need for everyone. As the nation's leading independent broker-dealer, we offer an integrated platform of proprietary technology, brokerage, and investment advisor services. We provide you with a work environment that encourages your creativity and growth, a leadership team that is supportive and responsive, and the opportunity to create a career that has no limits, only amazing potential.

We are one team on one mission. We take care of our advisors, so they can take care of their clients.

Because our company is not too big and not too small, you can seize the opportunity to make a real impact. We are committed to supporting workplace equality, and we embrace the different perspectives and backgrounds of our employees. We also care for our communities, and we encourage our employees to do the same. This creates an environment in which you can do your best work.

Want to hear from our employees on what it's like to work at LPL? Watch this!

We take social responsibility seriously. Learn more here

Want to see info on our benefits? Learn more here

Join the LPL team and help us make a difference by turning life's aspirations into financial realities. Please log in or create an account to apply to this position. Principals only. EOE.

Information on Interviews:

LPL will only communicate with a job applicant directly from an @lplfinancial.com email address and will never conduct an interview online or in a chatroom forum. During an interview, LPL will not request any form of payment from the applicant, or information regarding an applicant's bank or credit card. Should you have any questions regarding the application process, please contact LPL's Human Resources Solutions Center at (855) 575-6947.