State Street

Financial Services

SeniorSecurityEngineer,CyberDefensePlatforms

$90–158k Boston, Massachusetts, United States; Lawrence, Massachusetts, United States; Lynn, Massachusetts, United States; Chelsea, Massachusetts, United States; Fall River, Massachusetts, United States; Springfield, Massachusetts, United States FULL TIME Remote Friendly
Market Sentiment
HIGH DEMAND

Neural analysis suggests this role is
optimal for Senior candidates.

The Brief

“Senior Security Engineer, Cyber Defense Platforms at State Street. Skills: Endpoint hardening, Attack surface reduction, Execution control, Zero Trust. Design endpoint hardening standards. Implement endpoint hardening standards”

What You'll Achieve.

Reduce attack surface; Strengthen Zero Trust posture; Improve protection of sensitive data; Reduce cyber risk at scale

Industry & Context.

Financial Services
Problems you'll solve

Deep problem-solving skills

Eligibility Requirements

Occasional after-hours support, Support high-risk changes, Support security incidents

What They're Looking For.

Must Have

8 + years of experience in security engineering, 8 + years of experience in endpoint security, 8 + years of experience in defensive cyber roles, Hands-on experience with endpoint security platforms, Experience with Zero Trust principles, Experience with endpoint-to-network control models, Experience with execution control technologies, Bachelor's degree in Computer Science, Engineering, Cybersecurity, or related discipline (or equivalent experience)

Nice to Have

CISSP certification, GCED certification, GSEC certification, OSCP certification, Relevant vendor certifications, Experience working in regulated environments, Experience working in large enterprise environments

What You'll Do.

Design endpoint hardening standards

Implement endpoint hardening standards

Maintain endpoint hardening standards

Reduce enterprise attack surface

Disable unnecessary services

Engineer execution control mechanisms

Support execution control mechanisms

Prevent unauthorized software

Partner with NetSec teams

Reduce endpoint-to-network exposure

Support DataSec initiatives

Enable endpoint-level controls

Protect sensitive data

Enforce approved software

Identify risky endpoint software

Assess risky endpoint software

Work with stakeholders on remediation

Work with stakeholders on allow-listing

Work with stakeholders on removal paths

Collaborate with platform teams

Collaborate with infrastructure teams

Collaborate with operations teams

Ensure controls are scalable

Ensure controls are reliable

Ensure controls are sustainable

Contribute to security architecture documentation

Contribute to security standards

Contribute to roadmaps

How You'll Work.

Team & Collaboration

Network Security teams; Data Security teams; Platform teams; Infrastructure teams; Operations teams; Security teams; Application teams

Communication Scope

Explain trade-offs; Explain risks; Explain control impacts

Full Job Description

**Who we are looking for** We are looking for a **Senior Security Engineer, Cyber Defense Platforms** reporting directly to the **Head of Defensive Engineering and Architecture**. This role is hands‑on and engineering‑focused, responsible for **hardening enterprise endpoints (workstations and servers)** to reduce attack surface across the environment. You will enforce secure configurations, minimize unnecessary services, and support execution control mechanisms in alignment with established security standards and architectural guidance. The role requires close collaboration with **Network Security (NetSec)** teams to reduce endpoint‑to‑network exposure (e.g., restricted protocol usage, dependency reduction, and Zero Trust enforcement impacts), as well as with **Data Security (DataSec)** teams to support endpoint controls that protect sensitive data, prevent unauthorized tools, and ensure alignment with approved software and data protection policies **Why this role is important to us** The team you will be joining is part of the **Integrated** **Defensive Engineering and Architecture(IDEA) - Cyber Defense function** , which is critical to reducing enterprise cyber risk and strengthening resilience against modern threats. This role is vital because a significant portion of enterprise risk resides at the **endpoint layer** , where misconfigurations, excess privileges, and unapproved software are commonly exploited. By systematically reducing attack surface and enforcing strong endpoint controls, this role directly contributes to: * Lower likelihood of ransomware and malware propagation * Stronger Zero Trust posture * Improved protection of sensitive and regulated data * Measurable reduction in cyber risk at scale **What you will be responsible for** As a **Senior Security Engineer, Cyber Defense Platforms** , you will: * Design, implement, and maintain **endpoint hardening standards** across workstations and servers, aligned with CIS benchmarks, internal standards, and

Free ATS check

Applying for this Senior Security Engineer, Cyber Defense Platforms role?

Most applicants get filtered before a human reads their resume. See if yours makes the cut.

How to Apply on Workday

  • Workday has a multi-step form — save your progress after every section.
  • "Apply With LinkedIn" can fail or lose data; manual entry is more reliable.
  • Watch for the "Submit for Review" final step — hitting "Save" alone does not submit.
  • Job requisition numbers are useful when following up with HR by email.

ANONYMOUS · UNFILTERED

What do employees actually say about State Street?

Real rants from real employees. Read before you apply.

Read Company Rants →