CFA Institute
Senior Security Engineer
CFA Institute is seeking a hands-on Senior Security Engineer to design, build, and harden the systems that protect our global enterprise. In this role, you'll partner with Site Reliability Engineering, IT, and business teams to embed security into our platforms and productsimproving detection, prevention, and response while ensuring compliance with industry standards. This position sits within Strategic Operations (reporting to the Senior Director, Global Support Services and aligned to the CISO organization) and may be based in approved U.S. jurisdictions with flexible work arrangements. Please note: CFA Institute will not provide work authorization or visa sponsorship for this position (including student or temporary worker visas). What You'll Do
Engineer & Architect Defenses: Design, implement, and maintain secure infrastructure, applications, and services; automate controls to strengthen detection, prevention, and response.
Advance Cyber Hygiene: Lead system hardening, identity management, and patch governance; build guardrails with SRE across CI/CD pipelines, cloud platforms, and enterprise systems; ensure adherence to internal policies and external frameworks.
Respond & Evolve: Support proactive monitoring, logging, and threat detection; participate in incident response, root-cause analysis, forensics, and corrective actions; evaluate and implement emerging technologies to boost threat intelligence and detection capabilities.
Advise & Enable: Serve as a trusted SME to cross-functional partners; guide secure design during tech adoption and transformation; contribute to training and awareness that fosters a culture of resilience.
What You'll Bring
Minimum Qualifications
Bachelor's degree in Computer Science, Information Security, or related field (or equivalent combination of education and experience).
57+ years in security engineering, infrastructure security, or related roles.
Depth in at least two areas such as cloud security (AWS/Azure/GCP), application security, network security, endpoint protection, or identity and access management.
Hands-on experience with SIEM, IDS/IPS, vulnerability management, and security automation tools.
Scripting proficiency (Python, PowerShell, Bash, etc.).
Working knowledge of NIST, ISO 27001, CIS Benchmarks, and OWASP.
Preferred Qualifications
Professional certifications such as CISSP, OSCP, GIAC, or CCSP.
Why Join Us?
Impact that matters: Your engineering decisions directly protect the integrity of our systems and the trust of a global community.
Collaborative culture: Work closely with SRE, IT, and product partners to embed security at every layerwhile mentoring others and elevating cyber hygiene across the enterprise.
Growth mindset: Bring curiosity and courage to experiment, learn, and continuously improve in a supportive environment aligned to our leadership capabilities of being strategic, authentic, accountable, agile, and growth-oriented.
At CFA Institute, we are committed to transparency and equity in our hiring process. In compliance with wage transparency laws in many of the jurisdictions in which we recruit, we provide the following information regarding compensation for this position: Expected salary range: $135,000 - $155,000 Other benefits include eligibility for annual incentives,
12% retirement employer contribution , and competitive medical benefits. All salary ranges are subject to adjustment based on experience, education, and other factors relevant to the position. CFA Institute is an equal opportunity employer and encourages applications from all qualified individuals. CFA Institute are the global leader in investment excellence and ethics. With nearly 200,000 charterholders across 160 markets, we drive professional growth, ethical behavior, and better markets. We care about our employees' well-being, offering industry-leading benefits like: Comprehensive health coverage for you and your family
Generous leave and time off
Competitive retirement plans
Flexible work options
Wellness, education, and support programs
If you feel this opportunity could be the next step in your career, we encourage you to apply.
CFA Institute is seeking a hands-on Senior Security Engineer to design, build, and harden the systems that protect our global enterprise. In this role, you'll partner with Site Reliability Engineering, IT, and business teams to embed security into our platforms and productsimproving detection, prevention, and response while ensuring compliance with industry standards. This position sits within Strategic Operations (reporting to the Senior Director, Global Support Services and aligned to the CISO organization) and may be based in approved U.S. jurisdictions with flexible work arrangements. Please note: CFA Institute will not provide work authorization or visa sponsorship for this position (including student or temporary worker visas). What You'll Do
Engineer & Architect Defenses: Design, implement, and maintain secure infrastructure, applications, and services; automate controls to strengthen detection, prevention, and response.
Advance Cyber Hygiene: Lead system hardening, identity management, and patch governance; build guardrails with SRE across CI/CD pipelines, cloud platforms, and enterprise systems; ensure adherence to internal policies and external frameworks.
Respond & Evolve: Support proactive monitoring, logging, and threat detection; participate in incident response, root-cause analysis, forensics, and corrective actions; evaluate and implement emerging technologies to boost threat intelligence and detection capabilities.
Advise & Enable: Serve as a trusted SME to cross-functional partners; guide secure design during tech adoption and transformation; contribute to training and awareness that fosters a culture of resilience.
What You'll Bring
Minimum Qualifications
Bachelor's degree in Computer Science, Information Security, or related field (or equivalent combination of education and experience).
57+ years in security engineering, infrastructure security, or related roles.
Depth in at least two areas such as cloud security (AWS/Azure/GCP), application security, network security, endpoint protection, or identity and access management.
Hands-on experience with SIEM, IDS/IPS, vulnerability management, and security automation tools.
Scripting proficiency (Python, PowerShell, Bash, etc.).
Working knowledge of NIST, ISO 27001, CIS Benchmarks, and OWASP.
Preferred Qualifications
Professional certifications such as CISSP, OSCP, GIAC, or CCSP.
Why Join Us?
Impact that matters: Your engineering decisions directly protect the integrity of our systems and the trust of a global community.
Collaborative culture: Work closely with SRE, IT, and product partners to embed security at every layerwhile mentoring others and elevating cyber hygiene across the enterprise.
Growth mindset: Bring curiosity and courage to experiment, learn, and continuously improve in a supportive environment aligned to our leadership capabilities of being strategic, authentic, accountable, agile, and growth-oriented.
At CFA Institute, we are committed to transparency and equity in our hiring process. In compliance with wage transparency laws in many of the jurisdictions in which we recruit, we provide the following information regarding compensation for this position: Expected salary range: $135,000 - $155,000 Other benefits include eligibility for annual incentives,
12% retirement employer contribution , and competitive medical benefits. All salary ranges are subject to adjustment based on experience, education, and other factors relevant to the position. CFA Institute is an equal opportunity employer and encourages applications from all qualified individuals. CFA Institute are the global leader in investment excellence and ethics. With nearly 200,000 charterholders across 160 markets, we drive professional growth, ethical behavior, and better markets. We care about our employees' well-being, offering industry-leading benefits like: Comprehensive health coverage for you and your family
Generous leave and time off
Competitive retirement plans
Flexible work options
Wellness, education, and support programs
If you feel this opportunity could be the next step in your career, we encourage you to apply.