×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer Network Security

Senior Security Engineer, Cyber Defense Platforms

Job in Boston, Suffolk County, Massachusetts, 02298, USA
Listing for: State Street
Full Time position
Listed on 2026-06-13
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer, Network Security
Salary/Wage Range or Industry Benchmark: 90000 - 157500 USD Yearly USD 90000.00 157500.00 YEAR
Job Description & How to Apply Below

Who We Are Looking For

We are looking for a Senior Security Engineer, Cyber Defense Platforms reporting directly to the Head of Defensive Engineering and Architecture
. This hands‑on, engineering‑focused role is responsible for hardening enterprise endpoints (workstations and servers) to reduce attack surface across the environment. The role requires close collaboration with Network Security (Net Sec) teams to limit endpoint‑to‑network exposure and with Data Security (Data Sec) teams to protect sensitive data and enforce approved software and data protection policies.

Why This Role Is Important

This position is part of the Integrated Defensive Engineering and Architecture (IDEA) Cyber Defense function, critical to reducing enterprise cyber risk and strengthening resilience against modern threats. By systematically reducing attack surface and enforcing strong endpoint controls, the role directly contributes to lower likelihood of ransomware and malware propagation, a stronger Zero Trust posture, improved protection of sensitive and regulated data, and measurable reduction in cyber risk at scale.

What

You Will Be Responsible For
  • Design, implement, and maintain endpoint hardening standards across workstations and servers, aligned with CIS benchmarks, internal standards, and risk‑based guidance.
  • Reduce enterprise attack surface by disabling unnecessary services, features, protocols, and tooling across endpoint environments.
  • Engineer and support execution control mechanisms, including application control, script control, and prevention of unauthorized software.
  • Partner with Net Sec teams to reduce endpoint‑to‑network exposure, including protocol restrictions, dependency mapping, and Zero Trust enforcement considerations.
  • Support Data Sec initiatives by enabling endpoint‑level controls that protect sensitive data and enforce approved software and data handling policies.
  • Identify and assess unapproved or risky endpoint software, working with stakeholders on remediation, allow‑listing, or removal paths.
  • Collaborate with platform, infrastructure, and operations teams to ensure controls are scalable, reliable, and operationally sustainable.
  • Contribute to security architecture documentation, standards, and roadmaps related to endpoint and defense platforms.
What We Value
  • Strong security engineering mindset with the ability to translate risk into practical, enforceable technical controls.
  • Deep problem‑solving skills and the ability to operate effectively in complex, large‑scale enterprise environments.
  • Experience designing and deploying security controls across large scale multi‑region environments.
  • Ability to collaborate across security, infrastructure, and application teams while maintaining a strong security posture.
  • Clear communication skills to explain trade‑offs, risks, and control impacts to technical and non‑technical stakeholders.
Education &

Preferred Qualifications
  • Bachelor’s degree in Computer Science, Engineering, Cybersecurity, or a related discipline (or equivalent experience).
  • 8+ years of experience in security engineering, endpoint security, or defensive cyber roles.
  • Strong hands‑on experience with endpoint security platforms (e.g., EDR, application control, configuration management, hardening frameworks).
  • Experience with Zero Trust principles, endpoint‑to‑network control models, or execution control technologies.
  • Security certifications such as CISSP, GCED, GSEC, OSCP, or relevant vendor certifications are a plus.
Additional Requirements
  • Experience working in regulated or large enterprise environments preferred.
  • Ability to influence and drive security improvements without direct authority.
  • Occasional after‑hours support for high‑risk changes or security incidents, as required.
Work Requirement
  • Hybrid work model (specific in‑office requirements aligned with team and location policy).
  • Standard business hours with flexibility to support global teams and critical security initiatives.
Salary Range

$90,000 - $157,500 Annual. The range quoted above applies to the role in the primary location specified. If the candidate would ultimately work outside of the primary location, the applicable range could differ.

Benefits

Employe…

Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search