Senior Cybersecurity Engineer

Specific compensation will be based on candidate’s experience, skills, qualifications, commercial considerations, and other job-related factors permitted by law. At Russell Investments, salary is just one part of our compensation package. Our total rewards approach includes an annual performance bonus (subject to eligibility criteria) in addition to participation in our competitive benefits programs including healthcare, retirement, vacation, and wellbeing programs.

At Russell Investments, our purpose is to improve financial security for people.

We are seeking a Senior Cybersecurity Engineer – IAM & Endpoint Security to lead the design and engineering of identity, endpoint, and privileged access security capabilities across a global hybrid environment.

This role combines hands-on engineering expertise with architectural alignment, focusing on scalable, automated, and risk-informed solutions grounded in Zero Trust principles.

• Lead the implementation and optimization of identity, endpoint, and privileged access controls across hybrid environments.
• Own identity lifecycle management, endpoint security, and access governance, ensuring secure configurations and consistent enforcement of standards.
• Drive automation and operational efficiency across provisioning, compliance, and access management processes.
• Apply Zero Trust principles and threat modeling to strengthen identity and endpoint security design.
• Partner with Cyber Operations to enhance detection, response, and control monitoring capabilities.
• Conduct risk assessments and control validation, focusing on identity compromise and endpoint threats.
• Collaborate with global teams and mentor engineers to promote consistent, scalable security practices.

• 15+ years of experience in cybersecurity engineering.
• Strong hands-on expertise in IAM, endpoint security, and privileged access management.
• Experience in hybrid environments (on-premises and cloud).
• Ability to translate architectural principles into practical engineering solutions.
• Preferred Certifications: CISSP, CISM, or equivalent.

• Identity and Access Management (authentication, authorization, federation, governance)
• Privileged Access Management and least privilege enforcement
• Endpoint security, hardening, and threat detection/response
• Device management and endpoint compliance
• Zero Trust architecture and identity-centric security models
• Threat modeling and risk-based security practices
• Automation/scripting for security operations
• Familiarity with NIST, ISO, and CIS frameworks

• Technical leadership and hands-on problem solving
• Risk-based decision making
• Collaboration across global teams
• Clear and effective communication

• Acts with non-negotiable integrity and maintains the highest professional standards.
• Demonstrates intellectual curiosity, seeking to continually advance the firm’s cybersecurity engineering posture.
• Embodies collaboration, transparency, and accountability in all engagements.
• Dedicated to protecting client trust through security excellence and proactive risk management.

• Hybrid work model (4 days onsite preferred)
• Occasional after-hours support for global operations

This role is not eligible for employment-based immigration sponsorship. Applicants must be legally authorized to work in the United States without employer sponsorship, now or in the future.

Russell Investments is committed to providing equal employment opportunities for all associates and employment applicants regardless of race, religion, ancestry, creed, color, gender (including gender identity which refers to a person's actual or perceived sex, and includes self-image, appearance, behavior or expression, whether or not different from that traditionally associated with a person's biological sex), age, national origin, citizenship status, disability, medical condition, military status, veteran status, marital status, sexual orientation,  past or present unemployment status , or any other characteristic protected by law.