Senior Security Engineer

Role Summary

At T. Rowe Price, we are committed to advancing our technology and safeguarding our business and clients. We are looking for a Senior Security Engineer with a strong development background and a passion for designing secure, scalable, and automated solutions. In this role, you will work closely with engineering and product teams throughout the organization to deliver secure platforms, establish guardrails, and drive security initiatives.

You will have the autonomy to solve complex problems, clarify technical challenges, and shape our engineering culture by promoting secure development practices.

• Lead the development and implementation of security engineering solutions, focusing on infrastructure automation, cloud governance, and secure onboarding experiences for new workloads and teams.
• Design, maintain, and enhance security guardrails using Terraform, including reusable modules, policy-as-code solutions, and related automation.
• Participate in code reviews, offering constructive feedback to promote secure coding and improve design quality.
• Develop automation tools and security guardrails utilized by engineering teams to streamline developer workflows and minimize manual tasks, including Java and Python-based automations, and Git Lab automations with Infrastructure as Code (IaC) gates.
• Collaborate with cloud engineering and application teams to embed automated security controls into their workflows, simplifying operational tasks and reducing friction for developers.
• Mentor engineers across teams on IaC best practices, cloud identity management, and principles of least privilege, including conducting AWS IAM reviews and configuring resource policies.

Required:

• Bachelor’s degree in Computer Science, Information Security, Engineering, or a related technical discipline, or equivalent practical experience and 5+ years of progressive engineering and/or security experience.
• Extensive experience with AWS, including developing guardrails and detective controls.
• Expertise in Infrastructure as Code, especially Terraform: authoring reusable modules, implementing policy-as-code (OPA or Trivy), and supporting multi-account deployment patterns.
• Experience automating AWS guardrails, baseline configurations, identity bindings, and logging/monitoring controls for new accounts or teams.
• Strong knowledge of AWS IAM (roles, permission boundaries, SCPs, and RCPs).
• Experience developing Git Lab CI/CD pipelines and automating guardrail checks and deployment controls.
• Solid software engineering skills in Python, Go, or Java for automation tooling.
• Ability to write secure, maintainable, and testable code.
• Demonstrated ability to quickly learn new technologies and stay up-to-date with industry trends.
• Familiarity with architecture and cybersecurity frameworks.
• Strong organizational skills, able to prioritize tasks across competing requirements and balance security risks with delivery timelines.
• Proven ability to work independently.

Preferred:

• Experience in financial services or other highly regulated environments, with knowledge of risk management, audit, and compliance requirements.

FINRA licenses are not required and will not be supported for this role.

This role is eligible for hybrid work, with up to three days per week from home.