Salary Range:
$140,000 USD - $160,000 USD
Specific compensation will be based on candidate’s experience, skills, qualifications, commercial considerations, and other job-related factors permitted by law. At Russell Investments, salary is just one part of our compensation package. Our total rewards approach includes an annual performance bonus (subject to eligibility criteria) in addition to participation in our competitive benefits programs including healthcare, retirement, vacation, and wellbeing programs.
Job Description:
At Russell Investments, our purpose is to improve financial security for people.
We are seeking a Senior Cybersecurity Engineer – IAM & Endpoint Security to lead the design and engineering of identity, endpoint, and privileged access security capabilities across a global hybrid environment.
This role combines hands-on engineering expertise with architectural alignment, focusing on scalable, automated, and risk-informed solutions grounded in Zero Trust principles.
Key Responsibilities
- Lead the implementation and optimization of identity, endpoint, and privileged access controls across hybrid environments.
- Own identity lifecycle management, endpoint security, and access governance, ensuring secure configurations and consistent enforcement of standards.
- Drive automation and operational efficiency across provisioning, compliance, and access management processes.
- Apply Zero Trust principles and threat modeling to strengthen identity and endpoint security design.
- Partner with Cyber Operations to enhance detection, response, and control monitoring capabilities.
- Conduct risk assessments and control validation, focusing on identity compromise and endpoint threats.
- Collaborate with global teams and mentor engineers to promote consistent, scalable security practices.
Qualifications and Experience
- 15+ years of experience in cybersecurity engineering.
- Strong hands-on expertise in IAM, endpoint security, and privileged access management.
- Experience in hybrid environments (on-premises and cloud).
- Ability to translate architectural principles into practical engineering solutions.
- Preferred Certifications: CISSP, CISM, or equivalent.
Technical Expertise
- Identity and Access Management (authentication, authorization, federation, governance)
- Privileged Access Management and least privilege enforcement
- Endpoint security, hardening, and threat detection/response
- Device management and endpoint compliance
- Zero Trust architecture and identity-centric security models
- Threat modeling and risk-based security practices
- Automation/scripting for security operations
- Familiarity with NIST, ISO, and CIS frameworks
Core Competencies
- Technical leadership and hands-on problem solving
- Risk-based decision making
- Collaboration across global teams
- Clear and effective communication
Values & Culture
- Acts with non-negotiable integrity and maintains the highest professional standards.
- Demonstrates intellectual curiosity, seeking to continually advance the firm’s cybersecurity engineering posture.
- Embodies collaboration, transparency, and accountability in all engagements.
- Dedicated to protecting client trust through security excellence and proactive risk management.
Special Requirements
- Hybrid work model (4 days onsite preferred)
- Occasional after-hours support for global operations
This role is not eligible for employment-based immigration sponsorship. Applicants must be legally authorized to work in the United States without employer sponsorship, now or in the future.
Equal Employment Opportunity
Russell Investments is committed to providing equal employment opportunities for all associates and employment applicants regardless of race, religion, ancestry, creed, color, gender (including gender identity which refers to a person's actual or perceived sex, and includes self-image, appearance, behavior or expression, whether or not different from that traditionally associated with a person's biological sex), age, national origin, citizenship status, disability, medical condition, military status, veteran status, marital status, sexual orientation, past or present unemployment status , or any other characteristic protected by law.