Cybersecurity Director

Sr. Cybersecurity Lead

New York, New York, United States

ATLAS SP Partners is a global investment firm providing stable funding, financing, advisory and institutional products to market participants seeking innovative and bespoke structured credit and asset-backed solutions. Our experienced team works closely with clients to determine optimal approaches for capital optimization and goal achievement, leveraging a holistic suite of integrated capabilities – including asset and portfolio advisory, warehouse and acquisition financing, whole loan purchase and sale, and securitization and distribution. ATLAS is proud to build upon a legacy of client excellence, distinguished by certainty of execution, deep expertise, and comprehensive service across the asset management landscape.

ATLAS operates as "one team" where every individual makes an impact. We grow together, win together, and embrace change as a unified organization. Our commitment extends beyond advancing markets, and we strive to make a meaningful difference in our communities and for our clients. Our people are industry leaders, driven by a passion for client service, complex problem solving, and innovation. We foster professional and personal growth in a collaborative, inclusive environment, and are proud to build upon a legacy of excellence anchored in deep expertise and client service across the asset management landscape.

Position Overview

ATLAS SP is seeking a Senior Cybersecurity Professional to join the CISO's cybersecurity team.

The Senior Cybersecurity Professional is responsible for protecting the organization's computer systems and networks from cyber threats. This is a hands-on role. Only candidates with direct experience in the "Primary Responsibilities" and "Requirements" sections will be considered. This role involves proactively identifying potential security risks, help develop, implement and manage security measures and ongoing monitoring of the effectiveness of security systems. The person in this role will also respond to and analyze cyber incidents, providing actionable insights to prevent future attacks. This role will also be responsible for working on cybersecurity projects and assist in the development of the company's cybersecurity strategy with Atlas' CISO. You will help shape Atlas' cybersecurity readiness and security posture.

Primary Responsibilities

• Manage security monitoring and incident response, ensuring timely detection, investigation, escalation, and resolution of security events. • Develop and implement security policies, protocols, and procedures that align with industry standards, best practices, and regulatory requirements. • Define, architect, and continuously improve the firm's security strategy and control framework including endpoints, mobile devices, authentication and authorization, logging, and threat detection. • Monitor and respond to alerts for security incidents and events. • Conduct regular vulnerability assessments and penetration tests to identify weaknesses in security posture. Implement countermeasures and strategies to enhance overall network security. • Experience managing and influencing third-party security vendors. • Manage phishing tests, user cybersecurity training and social engineering tests to promote a culture of security awareness and compliance. • Work with the network security team to monitor and implement firewall rules and policies. • Drive security initiatives and projects, from concept through execution, ensuring measurable improvement to the firm's security posture. • Write detailed incident response reports and maintain documentation. • Collaborate with IT and other departments to enhance security measures. • Stay updated on the latest cyber threat landscape and security technologies. • Provide training and mentorship to junior cybersecurity staff. • Track and manage desktop and server patching. • Participate in DR, BCP and incident response tabletop tests. • Security projects as assigned.

Requirements:

• Bachelor's degree in computer science, Cybersecurity, Information Systems, or a related field preferred. • 6-8 years of experience in information technology and cybersecurity. • Expertise in security frameworks, protocols, and products. • Demonstrable experience in leveraging native security capabilities of cloud platforms from both a configuration management & security monitoring perspective. • Experience in defining & implementing processes to provide higher-quality control processes where emphasis is on integration & automation. • Certifications such as CISSP, CISA, CEH, or equivalent a +. • Strong knowledge of SIEM, firewalls, VPNs, and proxies • Experience with Azure and AWS cloud architecture and security. • Experience with Windows, Mac, and Linux operating systems. • Excellent problem-solving and analytical skills. • Strong communication and teamwork abilities based on 'can-do' approach. • Experience with vendor management.

Preferred Skills:

• Familiarity with regulatory requirements and compliance standards (e.g., ISO 27001, SSAE 18/19, GDPR). • Experience integrating security into cloud-native and DevSecOps workflows. • Knowledge of scripting languages (e.g., Python, PowerShell) a +. • Experience operating security programs in regulated environments. • Prior experience acting as a security lead or security architect.

The base salary range for this position is listed above. This position is also eligible for a discretionary annual bonus based on personal, team, and Firm performance. Compensation ranges are based on several factors including job function, level, and geographic location. Final offer amounts are determined by multiple factors including candidate experience and expertise and may vary from the amounts listed here.

ATLAS SP is an equal opportunity employer. The firm and its affiliates do not discriminate in employment because of race, color, religion, gender, national origin, veteran status, disability, age, citizenship, marital or domestic/civil partnership status, sexual orientation, gender identity or expression or because of any other criteria prohibited under controlling federal, state or local law.