×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer Network Security

Senior Security Engineer, Cyber Defense Platforms

Job in Boston, Suffolk County, Massachusetts, 02298, USA
Listing for: STATE STREET CORPORATION
Full Time position
Listed on 2026-05-06
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer, Network Security
Salary/Wage Range or Industry Benchmark: 90000 - 157500 USD Yearly USD 90000.00 157500.00 YEAR
Job Description & How to Apply Below
Who we are looking forWe are looking for a Senior Security Engineer, Cyber Defense Platforms reporting directly to the Head of Defensive Engineering and Architecture. This role is hands‑on and engineering‑focused, responsible for hardening enterprise endpoints (workstations and servers) to reduce attack surface across the environment.

You will enforce secure configurations, minimize unnecessary services, and support execution control mechanisms in alignment with established security standards and architectural guidance. The role requires close collaboration with Network Security (Net Sec) teams to reduce endpoint‑to‑network exposure (e.g., restricted protocol usage, dependency reduction, and Zero Trust enforcement impacts), as well as with Data Security (Data Sec) teams to support endpoint controls that protect sensitive data, prevent unauthorized tools, and ensure alignment with approved software and data protection policies

Why this role is important to usThe team you will be joining is part of the Integrated Defensive Engineering and Architecture(IDEA) - Cyber Defense function, which is critical to reducing enterprise cyber risk and strengthening resilience against modern threats.

This role is vital because a significant portion of enterprise risk resides at the endpoint layer, where misconfigurations, excess privileges, and unapproved software are commonly exploited. By systematically reducing attack surface and enforcing strong endpoint controls, this role directly contributes to:

Lower likelihood of ransomware and malware propagation

Stronger Zero Trust posture

Improved protection of sensitive and regulated data Measurable reduction in cyber risk at scale

What you will be responsible forAs a Senior Security Engineer, Cyber Defense Platforms, you will:

Design, implement, and maintain endpoint hardening standards across workstations and servers, aligned with CIS benchmarks, internal standards, and risk‑based guidance

Reduce enterprise attack surface by disabling unnecessary services, features, protocols, and tooling across endpoint environments

Engineer and support execution control mechanisms, including application control, script control, and prevention of unauthorized software

Partner with Net Sec teams to reduce endpoint‑to‑network exposure, including protocol restrictions, dependency mapping, and Zero Trust enforcement considerations

Support Data Sec initiatives by enabling endpoint‑level controls that protect sensitive data and enforce approved software and data handling policies

Identify and assess unapproved or risky endpoint software, working with stakeholders on remediation, allow‑listing, or removal paths

Collaborate with platform, infrastructure, and operations teams to ensure controls are scalable, reliable, and operationally sustainable

Contribute to security architecture documentation, standards, and roadmaps related to endpoint and defense platforms

What we value

These skills will help you succeed in this role Strong security engineering mindset with the ability to translate risk into practical, enforceable technical controls

Deep problem‑solving skills and the ability to operate effectively in complex, large‑scale enterprise environments

Experience designing and deploying security controls across large scale multi‑region environments

Ability to collaborate across security, infrastructure, and application teams while maintaining a strong security posture

Clear communication skills to explain trade‑offs, risks, and control impacts to technical and non‑technical stakeholders

Education &

Preferred Qualifications Bachelor’s degree in Computer Science, Engineering, Cybersecurity, or a related discipline (or equivalent experience)8+ years of experience in security engineering, endpoint security, or defensive cyber roles

Strong hands‑on experience with endpoint security platforms (e.g., EDR, application control, configuration management, hardening frameworks)

Experience with Zero Trust principles, endpoint‑to‑network control models, or execution control technologies

Security certifications such as CISSP, GCED, GSEC, OSCP, or relevant vendor certifications are a plus Additional requirements

Experience…
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search