Security Engineer

Curinos is looking for a detail-oriented Security Engineer to join our Information Security team. Operating in an AWS-native environment with select on-premises workload, this role will contribute across cloud security posture management, vulnerability management, threat detection, application security support, and incident response. The ideal candidate will have hands-on experience with modern cloud and security tooling and the ability to work across engineering and operations teams to reduce risk in a hybrid environment. This role will work closely with Information Security, Information Technology, and Engineering teams, executing established priorities while building broader depth across our security program., * Support day-to-day security operations and engineering activities across our cloud and hybrid environment, partnering with Information Security, IT, and Engineering teams to identify risks, coordinate remediation, and improve detection and response capabilities

• Monitor and respond to findings in AWS Security Hub and Amazon Guard Duty, triaging alerts and coordinating remediation with engineering teams
• Support cloud security posture management activities using a CNAPP platform, reviewing findings, assisting with risk prioritization, and coordinating remediation with asset owners
• Perform vulnerability assessments and support the remediation lifecycle using an enterprise vulnerability management platform; assist with penetration test coordination and track findings through resolution
• Support the triage of application security findings within development pipelines and partner with developers on remediation
• Operate and monitor endpoint detection and response tooling for telemetry review, detections, and response support, escalating as needed
• Review network detection and response alerts, tune signal quality, and escalate high-confidence threats for investigation
• Support security incident investigation and response activities, contribute to root cause analysis, and assist with post-incident documentation and follow-up actions
• Prepare weekly security posture and health reports for management review
• Contribute to the automation of repetitive security operations tasks to improve team efficiency and consistency
• Stay current with emerging threats, CVEs, and updates to the security controls and platforms used across our environment

• AWS cloud security: hands-on experience with Amazon managed services, such as Security Hub, GuardDuty, CloudTrail, IAM, and VPC
• CNAPP / cloud posture management: experience reviewing cloud posture findings, identifying misconfigurations, and supporting remediation efforts within a cloud security platform
• Vulnerability management: proficiency with vulnerability scanning, prioritization, remediation tracking, and follow-up across a mixed asset inventory
• Endpoint and network threat detection: working knowledge of endpoint and network detection workflows, including alert triage, investigation support, and response coordination
• Application security tooling: familiarity with software composition analysis, secure development workflows, and integrating security findings into engineering processes
• Linux and Kubernetes: working knowledge of Linux-based systems and Kubernetes environments, including security hardening, monitoring, and remediation support
• Security frameworks: practical understanding of NIST 800-53, CIS Benchmarks, and/or ISO 27001, with the ability to apply control concepts to day-to-day security findings and operational activities, * 2-4 years of hands-on experience in security operations, security engineering, or security analyst roles
• Demonstrable hands-on experience with several of the following areas: AWS security services, cloud security posture management vulnerability management, endpoint detection and response, network threat detection, or application security tooling
• Experience with vulnerability management: scanning, prioritization, and remediation tracking
• Solid understanding of cloud security principles in AWS (IAM, networking, logging, encryption), including hands-on experience with AWS CloudWatch (Logs, Metrics, Alarms, APM, and infrastructure monitoring) for visibility and alerting
• Familiarity with observability and metrics tooling used to support monitoring, alerting, and security visibility.
• Knowledge of security frameworks such as NIST 800-53, CIS Benchmarks, and ISO 27001
• Working knowledge of Python or Bash for basic security automation, scripting, or data gathering tasks
• Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent experience
• Certification desired (Security+, CySA+, AWS Security Specialty, CEH) but not required

Pulled from the full job description

• Unlimited paid time off
• Employee assistance program
• Flexible schedule, * Competitive benefits, including a range of Financial, Health and Lifestyle benefits to choose from
• Flexible working options, including home working, flexible hours and part time options, depending on the role requirements - please ask!
• Unlimited PTO policy, floating holidays, volunteering days and a day off for your birthday
• Learning and development tools to assist with your career development
• Work with industry leading Subject Matter Experts and specialist products
• Regular social events and networking opportunities
• Collaborative, supportive culture, including an active DE&I program
• Employee Assistance Program which provides expert third-party advice on wellbeing, relationships, legal and financial matters, as well as access to counselling services

Curinos empowers financial institutions to put customers at the center of every decision. Our AI-first platform transforms proprietary data, advanced analytics and deep financial services expertise into timely recommendations - delivered right where teams work. The result: confident decisions, stronger customer relationships, and lasting, profitable growth. Curinos operates under a hybrid modality and has office locations in New York, Chicago, Boston, Toronto, and London. This role is open to remote candidates based in the US and able to travel as needed.