Who We Are Charles River Development (CRD) is the FinTech division of State Street. Together with State Street’s Middle and Back‑office services, Charles River’s cloud‑based Front‑Office technology forms the foundation of the State Street Alpha® Platform, the first front‑to‑back solution in the industry. Industry momentum has seen CRD grow over 135% in headcount over the last 5 years, and we continue to grow. As a digital innovation leader, we invest in our solutions, processes, systems, and talent. Position Summary Be an integral part of an agile organization and contribute to the security of our products. As a Security Engineer, you will be a technical contributor to the effort of maintaining and enhancing the software security program at Charles River Development (CRD) / Alpha Platform. The security program encompasses vulnerability identification and tracking, assessment, and scoring (via CVSS), as well as conducting code reviews and running security scans. Security engineers will receive coaching and guidance from senior security engineers and leadership as they develop their skills and will become an integral part of an agile organization contributing to the secure development of the CRD/Alpha Platform. Responsibilities Perform security code reviews (automated/manual) and identify implementations that will lead to security vulnerabilities. Perform security scans for open‑source software, and document findings. Conduct manual penetration tests, validate all applicable security controls, and document findings. Work with CRD Engineers to develop vulnerability remediation action plans and drive implementation. Identify vulnerabilities in third‑party libraries using security scan tools. Identify security vulnerabilities in the release artifacts and work with engineering and product management to close out open vulnerabilities and approve releases. Coach and mentor junior security engineers. Technical documentation and SOP for daily operational items. Contribute to technical projects and innovations. Education B.S. degree (or foreign education equivalent) in Computer Science, Engineering, Mathematics, Physics, or other technical course of study required. Qualifications / Experience 3+ years of network and/or application penetration testing. 3+ years of experience with various cloud platforms. 3+ years of experience in security/systems/network engineering and/or development. Demonstrated knowledge of common vulnerabilities and corresponding remediation approaches. Current knowledge of web related attack vectors, such as XSS, SQL Injection, and Remote Code Execution. Experience leveraging AI technologies in Security space will be an advantage. Strong written and verbal communication skills. Strong analytical and problem‑solving skills. CEH, OSCP, CISSP, or equivalent preferred. Salary Range $67,000 - $109,750 Annual. About State Street Across the globe, institutional investors rely on us to help them manage risk, respond to challenges, and drive performance and profitability. We keep our clients at the heart of everything we do, and smart, engaged employees are essential to our continued success. We are committed to fostering an environment where every employee feels valued and empowered to reach their full potential. As an essential partner in our shared success, you’ll benefit from inclusive development opportunities, flexible work‑life support, paid volunteer days, and vibrant employee networks that keep you connected to what matters most. Join us in shaping the future. Equal Opportunity Employer As an Equal Opportunity Employer, we consider all qualified applicants for all positions without regard to race, creed, color, religion, national origin, ancestry, ethnicity, age, disability, genetic information, sex, sexual orientation, gender identity or expression, citizenship, marital status, domestic partnership or civil union status, familial status, military and veteran status, and other characteristics protected by applicable law. #J-18808-Ljbffr