Infrastructure Engineer - Security & Compliance

Details

The Global Corporate Technology Group is responsible for designing, deploying, and supporting Bloomberg’s enterprise IT systems used by nearly 27,000 employees worldwide. The Corporate Technology – Finance (BLPF) team designs, implements, and operates security, data protection, and compliance controls that protect sensitive financial and employee data within a highly regulated enterprise environment. BLPF is an engineering-driven control function that designs, builds, operates, and protects Bloomberg’s core financial operations.

Responsibilities

• Automate security application/system platform lifecycle including provisioning, configuration, observability, testing, troubleshooting, and capacity planning.
• Write software utilizing orchestration systems to automate tasks and interact with other systems.
• Implement innovative technologies, automate workflows, and craft CI/CD automation pipelines.
• Design and operate system integrity, configuration, and operational controls via identity and access management & network segmentation.
• Monitor user data access and user behavior to detect and report misuse or risk.
• Support secure file transfer and collaboration solutions with Digital Rights Management.
• Manage Data Loss Prevention (DLP) integration with proxy, email gateway, and endpoints.

Requirements

• 4+ years of experience supporting enterprise security, compliance, or data protection platforms.
• Degree in Computer Science, Engineering, Mathematics, or a similar field of study, or equivalent work experience.
• Experience operating controls in regulated, compliance- or audit-driven environments (e.g., SOX, PII requirements).
• Working knowledge of GitHub, PowerShell, or Python for automation, administration, and security.
• Working knowledge of monitoring and logging tools such as Grafana, Humio, and Sumo Logic.
• Experience with Entra ID, MFA, SSO, SAML, and Ping federation technologies.
• Experience with Windows and Linux administration and operations.
• Understanding of security control frameworks and fundamentals (NIST CSF, ISO/IEC 27001, SOC 2, and/or CIS controls).
• Clear communication skills and an ownership mindset.

Preferred Qualifications

• Familiarity with security applications such as Forcepoint, Varonis, and Tripwire.
• Familiarity with messaging and file-sharing applications/systems such as Proofpoint, Blackberry Workspaces, MDM Boxer, and Globalscape.
• Experience implementing network protocols, network administration, and network security.
• Familiarity with Infrastructure as Code (IaC) tools such as Ansible, Chef, or Salt.
• Familiarity with Zero Trust architecture and conditional access models.
• Excellent written and verbal communication skills and the ability to work independently.

Compensation

Salary Range: 130,000 - 225,000 USD Annual + Benefits + Bonus.

The referenced salary range is based on the company's good faith belief at the time of posting. Actual compensation may vary based on geographic location, work experience, market conditions, education/training, and skill level.

Benefits

The company offers a comprehensive benefits plan which may include merit increases, incentive compensation (exempt roles only), paid holidays, paid time off, medical, dental, vision, short and long term disability benefits, 401(k) with match, life insurance, and various wellness programs. The company does not provide benefits directly to contingent workers/contractors and interns.

How to Apply

Apply via the company careers site: https://bloomberg.avature.net/careers/Login?jobId=19832