Blackstone is the world’s largest alternative asset manager. We seek to create positive economic impact and long-term value for our investors, the companies we invest in, and the communities in which we work. We do this by using extraordinary people and flexible capital to help companies solve problems. Our $1.1 trillion in assets under management include investment vehicles focused on private equity, real estate, public debt and equity, infrastructure, life sciences, growth equity, opportunistic, non-investment grade credit, real assets and secondary funds, all on a global basis. Further information is available at www.blackstone.com. Follow @blackstone on LinkedIn, X, and Instagram.
Blackstone Technology and Innovations (BXTI) is the technology team at the core of each of Blackstone’s businesses and new growth initiatives. Serving both internal and external clients, we work to build the next generation of systems that manage risk, create efficiency, and improve transparency within the firm and across our broad community of investors and portfolio companies.
BXTI is nimble and entrepreneurial – our open, iterative design processes and rapid pace of development mean that everyone on the team has the opportunity to make an impact from day one. We are problem solvers who can take projects from idea to implementation. We believe in active mentoring and developing excellence. We collaborate to find the best answers for our customers and for Blackstone. We are critical to the firm maintaining its competitive edge.
Team and Role:
Blackstone’s Application & Cloud Security (AppSec) Team is responsible for empowering 500+ developers to set and meet security goals by identifying and managing software risks while balancing security with system agility. You will join an ambitious and talented team of software and security engineers that are responsible for evolving how Blackstone “does security” as it continues to move to modern cloud native architectures.
All BXTI teams are reliant on the Cloud Security team’s responses to requests for new AWS services, accounts, and many other key AWS infrastructure pieces. Cloud Security is responsible for owning Cloud Security Posture Management, Cloud Workload Protection, and Cloud Threat Monitoring Infrastructure. It is a cross cutting team that works regularly with all other cybersecurity teams, Cloud Platform Engineering, and Development to ensure we are delivering controls to protect and enable the firm.
The Senior Cloud Security Engineer role is one that will not only help serve both the Cloud Security needs of today but those of the future. It will require extensive knowledge and industry experience to help shape a secure architecture that will allow BXTI to continue to meet business needs as well as grow into a multi-cloud architecture. A successful candidate for this role will not only know AWS but other cloud services, containerization, CI/CD, SDLC, networking, and how software/API are built.
Responsibilities:
Build and own a multidiscipline cloud security program and strategy that encompasses data security in the cloud as a primary focus.
Design, build, and manage robust and resilient cloud security controls to AWS, Azure, and GCP.
Influence and drive standardization of secure by default services and frameworks that help scale security.
Work on cloud security risk mitigation campaigns to eliminate or reduce the most impactful threats to BXTI’s cloud environment.
Mentor and train junior-level engineers on the team to help them not only enhance their skillsets but better protect the firm long term.
Be at the forefront of cloud security in the community by working with product teams from established and emerging organizations that can better serve the needs of the team’s strategy and benefit anyone who uses the products.
Build and own a distributed systems architecture used to scan cloud configuration, container artifacts, and any infrastructure as code (IaC).
Understand and work towards a balanced approach for enabling developers to reliably identify and fix cloud security flaws while they actively develop.
Communicate security vulnerabilities, best practices, and mitigation options to stakeholders; balancing the business’ agility with security.
Partner with developer teams to meet security objectives through training and integrating vendors or building your own solutions into software development processes.
Establish policies & standards to guide developers to meet security requirements.
Collaborate with the SOC investigations of cloud security incidents by assisting in mitigating incidents and conducting post-incident reviews to implement improvements and reduce future risks.
Implement and manage IAM policies and solutions to ensure proper access controls, enforce least privilege principles, and continuously monitor and manage user access and permissions.
Qualifications:
A minimum of 8 years of professional experience in:
Software development, with a strong proficiency in programming languages relevant to cloud platform development (e.g., Python, Java, Go)
Efficiently managing support activities, including both general and security-related support tasks, adeptly handling tickets, requests, and other operational tasks as a security engineer, ensuring seamless assistance for the organization
Designing and building efficient, resilient, and well-documented systems to reduce operational overhead
Working with Platform, Systems, and DevOps teams to define and integrate key objectives into technology roadmaps and system designs
Mentoring and training junior-level engineers, encouraging their professional growth and empowering them to enhance their skillsets, while effectively safeguarding the long-term security of the organization
A minimum of 3 years of professional experience in:
Specializing in cloud security and infrastructure risk assessment, with expertise in identifying, assessing, and mitigating risks by implementing robust security controls and secure-by-default services to protect cloud infrastructure and enhance data protection.
Cloud-native and containerized workload architecture and development, with a strong preference for AWS and Kubernetes, ensuring secure, scalable and efficient deployment of applications in cloud environments.
Proficiently engaging in infrastructure-as-code development, demonstrating a strong preference for utilizing Terraform as the preferred tool.
A minimum of 1 years of experience:
Multi-Cloud architecture design and cloud security integration
Strong analytical and problem-solving skills in both software development and cybersecurity roles, effectively identifies and implements resolutions to address complex security and software issues
Proven track record of effectively communicating complex cloud security vulnerabilities and mitigation strategies to non-technical stakeholders
A Bachelors’ degree (or equivalent degree) in computer science, cybersecurity or a related field is required
A Masters’ degree (or equivalent degree) in cyber security is required
The duties and responsibilities described here are not exhaustive and additional assignments, duties, or responsibilities may be required of this position. Assignments, duties, and responsibilities may be changed at any time, with or without notice, by Blackstone in its sole discretion.
Expected annual base salary range:
$128,000 - $200,000Actual base salary within that range will be determined by several components including but not limited to the individual's experience, skills, qualifications and job location. For roles located outside of the US, please disregard the posted salary bands as these roles will follow a separate compensation process based on local market comparables.
Additional compensation and benefits offered in connection with the role consist of comprehensive health benefits, including but not limited to medical, dental, vision, and FSA benefits; paid time off; life insurance; 401(k) plan; and discretionary bonuses. Certain employees may also be eligible for equity and other incentive compensation at Blackstone’s sole discretion.
Blackstone is committed to providing equal employment opportunities to all employees and applicants for employment without regard to race, color, creed, religion, sex, pregnancy, national origin, ancestry, citizenship status, age, marital or partnership status, sexual orientation, gender identity or expression, disability, genetic predisposition, veteran or military status, status as a victim of domestic violence, a sex offense or stalking, or any other class or status in accordance with applicable federal, state and local laws. This policy applies to all terms and conditions of employment, including but not limited to hiring, placement, promotion, termination, transfer, leave of absence, compensation, and training. All Blackstone employees, including but not limited to recruiting personnel and hiring managers, are required to abide by this policy.
If you need a reasonable accommodation to complete your application, please contact Human Resources at 212-583-5000 (US), +44 (0)20 7451 4000 (EMEA) or +852 3656 8600 (APAC).
Depending on the position, you may be required to obtain certain securities licenses if you are in a client facing role and/or if you are engaged in the following:
Attending client meetings where you are discussing Blackstone products and/or and client questions;
Marketing Blackstone funds to new or existing clients;
Supervising or training securities licensed employees;
Structuring or creating Blackstone funds/products; and
Advising on marketing plans prepared by a sales team or developing and/or contributing information for marketing materials.
Note: The above list is not the exhaustive list of activities requiring securities licenses and there may be roles that require review on a case-by-case basis. Please speak with your Blackstone Recruiting contact with any questions.
To submit your application please complete the form below. Fields marked with a red asterisk * must be completed to be considered for employment (although some can be answered "prefer not to say"). Failure to provide this information may compromise the follow-up of your application. When you have finished click Submit at the bottom of this form.