LPL Financial Logo

LPL Financial

AVP Cloud Vulnerability Management Engineer

Posted 24 Days Ago
Be an Early Applicant
In-Office
6 Locations
119K-198K Annually
Senior level
In-Office
6 Locations
119K-198K Annually
Senior level
The AVP Cloud Vulnerability Management Engineer will develop and support the Cloud Security program, focusing on managing cloud vulnerabilities and ensuring secure deployments in conjunction with cloud engineering.
The summary above was generated by AI

What if you could build a career where ambition meets innovation? At LPL Financial, we empower professionals to shape their success while helping clients pursue their financial goals with confidence.

What if you could have access to cutting-edge resources, a collaborative environment, and the freedom to make an impact? If you're ready to take the next step, discover what’s possible with LPL Financial.

Job Overview:

As a member of the Information Security team, the AVP Cloud Vulnerability Management Engineer will be responsible for developing, maturing, and supporting the Cloud Security program with an emphasis on identifying, prioritizing and tracking vulnerabilities and misconfigurations in cloud or external resources as well as focusing on infrastructure as code security.  This position will partner with Cloud Engineering and other Information Security teams to ensure that company private cloud resources are securely configured and maintained to address cyber threats. 

Cloud security and attack surface management is a top area of focus at LPL. This is an exciting time to join the Information Security team as we are continuing to build and mature the program.

Responsibilities:

  • Develop and implement an end-to-end process for managing cloud vulnerabilities, misconfigurations, and external exposures

  • Implement and maintain appropriate controls within the CI/CD pipelines used to deploy cloud resources to ensure that resources are securely designed and deployed

  • Review Infrastructure as Code scripts and code repositories using Terraform to identify potential security issues or noncompliance with coding best practices

  • Implement and maintain tools to perform automated security scanning/analysis of Infrastructure as Code, containers, and serverless functions

  • Review, implement, and maintain cloud security posture management policies to identify misconfigurations or vulnerabilities in cloud resources

  • Develop and maintain a framework for assessing and prioritizing cloud security and external attack surface management alerts based on risk

  • Work with appropriate remediation teams to prioritize remediation efforts, review potential false-positives and evaluate potential mitigating factors

  • Automate the communication of cloud security and attack surface management alerts to remediation stakeholders for actioning by configuring integrations with issue tracking tools

  • Produce and track routine reports/metrics on cloud vulnerabilities and misconfigurations   

  • Partner with Security Engineering to implement and manage Cloud Security Posture Management tools to perform automated security scanning/analysis of cloud resources, including containers and serverless functions

  • Implement and manage external attack surface management tool policies

  • Monitor and review CVEs, industry developments, and provide inputs for continuous improvement

  • Work with Internal Audit, IT Governance, IT Compliance and other key stakeholder groups on specific projects to ensure compliance with applicable regulatory requirements

  • Act as an SME in the area of Cloud Security and external attack surface management

What are we looking for?

We want strong collaborators who can deliver a world-class client experience. We are looking for people who thrive in a fast-paced environment, are client-focused, team oriented, and are able to execute in a way that encourages creativity and continuous improvement.

Requirements:

  • 5+ years of Cloud experience specifically working with AWS and Azure environments

  • 5+ years of experience managing and using Cloud Security Posture Management and External Attack Surface Management scanning tools such as Wiz, XPanse, Prisma, Laceworks, Orca

  • 5+ years of experience with reviewing, analyzing, managing, and remediating security vulnerabilities and misconfigurations in cloud resources

  • 1+ years of experience specifically working with Infrastructure as Code (Terraform) and helping to secure automated Cloud deployment pipelines

  • 1+ years of experience using Cloud Security and IAC scanning tools

Preferences:

  • Bachelor’s Degree or equivalent in Information Security, Engineering, Computer Science

  • Experience developing Infrastructure as Code using tooling such as Terraform, Cloud Formation, or HashiCorp

  • Expert-level knowledge in securing Infrastructure as Code scripts and Cloud resource deployments

  • Advanced level of knowledge of the major Cloud platforms, the types of resources that can be deployed within each platform, common cloud misconfigurations/vulnerabilities and how to fix such issues

  • Understanding of OWASP Top 10 Cloud Native Application Security Risks, their identification, and architecture, design, ways to mitigate them

  • Experience developing controls to secure Cloud native applications

  • Strong scripting experience in languages such as Powershell, Python, and Bash

  • Strong analytical, interpersonal and communication skills

#LI-Hybrid

#LI-PA 


 

Pay Range:

$118,988-$198,313/year
 
Actual base salary varies based on factors, including but not limited to, relevant skill, prior experience, education, base salary of internal peers, demonstrated performance, and geographic location. Additionally, LPL Total Rewards package is highly competitive, designed to support your success at work, at home, and at play – such as 401K matching, health benefits, employee stock options, paid time off, volunteer time off, and more. Your recruiter will be happy to discuss all that LPL has to offer!
 

Company Overview:

LPL Financial Holdings Inc. (Nasdaq: LPLA) was founded on the principle that the firm should work for advisors and institutions, and not the other way around. Today, LPL is a leader in the markets we serve, serving more than 23,000 financial advisors, including advisors at approximately 1,000 institutions and at approximately 580 registered investment advisor ("RIA") firms nationwide. We are steadfast in our commitment to the advisor-mediated model and the belief that Americans deserve access to personalized guidance from a financial professional.

At LPL, independence means that advisors and institution leaders have the freedom they deserve to choose the business model, services, and technology resources that allow them to run a thriving business. They have the flexibility to do business their way. And they have the freedom to manage their client relationships, because they know their clients best. Simply put, we take care of our advisors and institutions, so they can take care of their clients.

Join LPL Financial: Where Your Potential Meets Opportunity

At LPL Financial, we believe that everyone deserves objective financial guidance. As the nation’s leading independent broker-dealer, we offer an integrated platform of cutting-edge technology, brokerage, and investment advisor services.

Why LPL?

  • Innovative Environment: We foster creativity and growth, providing a supportive and responsive leadership team. Learn more about our leadership team here!

  • Limitless Career Potential: Your career at LPL has no limits, only amazing potential. Learn more about our careers here!

  • Unified Mission: We are one team on one mission—taking care of our advisors so they can take care of their clients. Learn more about our mission and values here!

  • Impactful Work: Our size is just right for you to make a real impact. Learn more here!

  • Commitment to Equality: We support workplace equality and embrace diverse perspectives and backgrounds. Learn more here!

  • Community Focus: We care for our communities and encourage our employees to do the same. Learn more here!

  • Benefits and Total Rewards: Our Total Rewards package goes beyond just compensation and insurance. It includes a mix of traditional and unique benefits, perks, and resources designed to enhance your life both at work and at home. Learn more here!

Join the LPL team and help us make a difference by turning life’s aspirations into financial realities. Please log in or create an account to apply to this position. Principals only. EOE.

Information on Interviews:

LPL will only communicate with a job applicant directly from an @lplfinancial.com email address and will never conduct an interview online or in a chatroom forum.  During an interview, LPL will not request any form of payment from the applicant, or information regarding an applicant’s bank or credit card.  Should you have any questions regarding the application process, please contact LPL’s Human Resources Solutions Center at (855) 575-6947.

EAC1.22.25

Top Skills

AWS
Azure
Bash
Ci/Cd
Laceworks
Orca
Powershell
Prisma
Python
Terraform
Wiz
Xpanse

LPL Financial Fort Mill, South Carolina, USA Office

1055 LPL Way, Fort Mill, SC, United States, 29715

Similar Jobs

22 Hours Ago
Hybrid
Phoenix, AZ, USA
105K-179K Annually
Mid level
105K-179K Annually
Mid level
Aerospace • Hardware • Information Technology • Security • Software • Cybersecurity • Defense
The Program Manager will oversee multiple programs, ensuring compliance with cost, schedule, and technical execution while interfacing with customers and leading program planning efforts.
Top Skills: ExcelMicrosoft PowerpointMicrosoft ProjectMicrosoft Word
22 Hours Ago
Easy Apply
Hybrid
Phoenix, AZ, USA
Easy Apply
22-22
Junior
22-22
Junior
Automotive • Fintech • Hardware • Payments • Travel • Financial Services
As a Collections Specialist, you will manage customer payments, maintain records, recommend actions for loan issues, and improve customer satisfaction.
Top Skills: Cloud Based ProductsGoogle AppsMicrosoft
22 Hours Ago
Easy Apply
Hybrid
Phoenix, AZ, USA
Easy Apply
21-21
Junior
21-21
Junior
Automotive • Fintech • Hardware • Payments • Travel • Financial Services
As a Customer Service Representative, you will provide excellent service via calls, emails, and chats, assisting customers with inquiries and ensuring satisfaction.
Top Skills: Cloud Based ProductsGoogle AppsMicrosoft

What you need to know about the Charlotte Tech Scene

Ranked among the hottest tech cities in 2024 by CompTIA, Charlotte is quickly cementing its place as a major U.S. tech hub. Home to more than 90,000 tech workers, the city’s ecosystem is primed for continued growth, fueled by billions in annual funding from heavyweights like Microsoft and RevTech Labs, which has created thousands of fintech jobs and made the city a go-to for tech pros looking for their next big opportunity.

Key Facts About Charlotte Tech

  • Number of Tech Workers: 90,859; 6.5% of overall workforce (2024 CompTIA survey)
  • Major Tech Employers: Lowe’s, Bank of America, TIAA, Microsoft, Honeywell
  • Key Industries: Fintech, artificial intelligence, cybersecurity, cloud computing, e-commerce
  • Funding Landscape: $3.1 billion in venture capital funding in 2024 (CED)
  • Notable Investors: Microsoft, Google, Falfurrias Management Partners, RevTech Labs Foundation
  • Research Centers and Universities: University of North Carolina at Charlotte, Northeastern University, North Carolina Research Campus

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account