Security Engineer, Data Protection - Associate

About the role

We are seeking a motivated and technically proficient Associate Systems Engineer with a strong focus on security technologies to support and enhance our enterprise security posture. This role will work closely with senior engineers and security analysts to implement, maintain, and troubleshoot key security infrastructure components including Data Loss Prevention (DLP), email security platforms, firewalls, VPN solutions, and Cloud Access Security Broker (CASB) tools

Responsibilities

• Assist in the deployment, configuration, and maintenance of DLP solutions to prevent unauthorized data exfiltration across endpoints, email, and cloud platforms.
• Support email security tools (e.g., Proofpoint, Mimecast, Microsoft Defender) to ensure protection against phishing, spam, and malware.
• Monitor and manage firewall policies and rule sets across perimeter and internal firewalls (e.g., Palo Alto, Fortinet, Cisco ASA).
• Maintain and troubleshoot VPN infrastructure (e.g., Cisco AnyConnect, GlobalProtect, OpenVPN) to ensure secure remote access for users.
• Collaborate on the integration and tuning of CASB solutions (e.g., Netskope, McAfee MVISION, Palo Alto, Microsoft Defender for Cloud Apps) to enforce cloud security policies.
• Participate in incident response and troubleshooting efforts related to security infrastructure.
• Document configurations, procedures, and troubleshooting steps for knowledge sharing and compliance.
• Stay current with emerging security threats and technologies relevant to the role.

Qualifications

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or related field (or equivalent experience).
• 1–3 years of experience in systems engineering or IT security support.
• Familiarity with DLP platforms (e.g., Symantec, Forcepoint, Microsoft Purview).
• Working knowledge of email security tools and protocols (SMTP, SPF, DKIM, DMARC).
• Basic understanding of firewall technologies, NAT, ACLs, and packet inspection.
• Experience supporting VPN solutions and remote access technologies.
• Exposure to CASB platforms and cloud security concepts.
• Strong troubleshooting and analytical skills.
• Ability to work independently and collaboratively in a fast-paced environment.
• Security certifications such as CompTIA Security+, Cisco CCNA Security, or Fortinet NSE.
• Experience with SIEM tools and log analysis.
• Experience with Information Classisification tools like Microsoft IRM, Purview etc.
• Familiarity with scripting (PowerShell, Python) for automation and reporting.
• Hands-on experience with enterprise-grade security tools and technologies. Support for professional development and certifications.

Benefits

The base salary range for this role is $90,000 to $110,000. iCapital offers a compensation package which includes salary, equity for all full-time employees, and an annual performance bonus. Employees also receive a comprehensive benefits package that includes an employer matched retirement plan, generously subsidized healthcare with 100% employer paid dental, vision, telemedicine, and virtual mental health counseling, parental leave, and unlimited paid time off (PTO).

We believe the best ideas and innovation happen when we are together. Employees in this role will work in the office Monday-Thursday, with the flexibility to work remotely on Friday.

For additional information on iCapital, please visit https://www.icapitalnetwork.com/about-us  Twitter: @icapitalnetwork | LinkedIn: https://www.linkedin.com/company/icapital-network-inc | Awards Disclaimer: https://www.icapitalnetwork.com/about-us/recognition/

iCapital is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, gender, sexual orientation, gender identity, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.