The Workplace Engineering organization is responsible for designing securing and operating the firms digital workplace platforms including cloudhosted desktops endpoint management identity services productivity and collaboration services and data security and compliance capabilities.
Within this organization Workplace Security Engineering partners closely with Technology Risk Cyber Security and Audit teams to ensure workplace platforms are secure by design compliant with firm standards and able to meet regulatory and audit expectations throughout their lifecycle.
Role Summary
We are seeking a Workplace Security Engineer to focus on security architecture control design and risk governance for modern workplace environments including cloud desktop platforms cloud identity services endpoint management and information protection and compliance tooling.
This role sits at the intersection ofsystem engineering security architecture and technology risk. The successful candidate will translate risk and control requirements into practical platform designs lead security design reviews and approvals and ensure workplace solutions are delivered with clear control ownership traceability and auditready evidence.
The role works closely with Technology Risk(TR) enterprise security teams and platform engineers to support architecture reviews risk assessments control attestations and remediation activities across both onpremise and cloudhosted workplace environments.
Act as a security design authority for digital workplace platforms including cloud desktops cloud identity endpoint management and cloud productivity services
Define and review security reference architectures control patterns and guardrails for endpoint identity access data protection and compliance capabilities
Ensure platform designs align with firm security standards zero trust principles and regulatory requirements
Assess new workplace capabilities and architectural changes for security risk and control impact
Technology Risk & Design Governance
Partner closely with Technology Risk Management to:
Support architecture and design reviews
Contribute to risk assessments and threat modeling
Respond to risk challenge control testing and remediation planning
Own or contribute to formal security design approvals for new or materially changed workplace solutions
Translate highlevel policies and risk statements into implementable and testable technical controls
Control Engineering & Assurance
Ensure workplace security controls are:
Designed intentionally (not implicit)
Implemented consistently
Measurable and defensible under audit
Produce and maintain control documentation including:
Architecture diagrams
Control narratives
Supporting technical evidence
Support audit regulatory and compliance activities including walkthroughs and evidence requests
Partner with engineering teams to close control gaps and risk findings
Endpoint Identity & Data Protection
Govern secure design of:
Cloudmanaged endpoint onboarding and configuration
Identitycentric access controls and device trust signals
Data classification retention eDiscovery and data loss prevention
Ensure consistent application of hardening standards configuration baselines and policy enforcement across physical virtual and cloud desktops
Review integrations between workplace platforms and downstream services from a security and datahandling perspective
CrossFunctional Collaboration
Work across Workplace Engineering Cyber Security Technology Risk and Audit teams
Act as a trusted advisor to platform and product owners
Communicate complex technical and risk concepts clearly to technical risk and executive stakeholders
Basic Qualifications
410 years of experience in workplace engineering security engineering platform security or riskaligned engineering roles
Strong experience with Windowsbased desktop environments including cloudhosted or virtual desktop models
Proven experience working with Technology Risk Audit or Governance teams
Strong understanding of security control design (preventive detective corrective)
Experience creating architecturegrade and auditready documentation
Excellent written and verbal communication skills
Preferred Qualifications
Experience securing cloudhosted digital workplace platforms
Strong familiarity with:
Cloud identity and access management models
Endpoint management and configuration enforcement
Information protection data governance and compliance tooling
Experience supporting regulated environments with formal risk and audit processes
Understanding of zero trust and identitycentric security architectures
Ability to balance engineering pragmatism with risk discipline
What Success Looks Like
Workplace platforms are delivered with approved security architectures
Technology Risk teams have confidence in control coverage and implementation
Audit and regulatory interactions are supported by clear defensible evidence
Engineering teams receive practical designtime security guidance
Security and risk considerations are embedded early and consistently
ABOUT GOLDMAN SACHS
At Goldman Sachs we commit our people capital and ideas to help our clients shareholders and the communities we serve to grow. Founded in 1869 we are a leading global investment banking securities and investment management firm. Headquartered in New York we maintain offices around the world.
We believe who you are makes you better at what you do. Were committed to fostering and advancing diversity and inclusion in our own workplace and beyond by ensuring every individual within our firm has a number of opportunities to grow professionally and personally from our training and development opportunities and firmwide networks to benefits wellness and personal finance offerings and mindfulness programs. Learn more about our culture benefits and people at
Were committed to finding reasonable accommodations for candidates with special needs or disabilities during our recruiting process. Learn more:
The Goldman Sachs Group Inc. 2023. All rights reserved.
Goldman Sachs is an equal opportunity employer and does not discriminate on the basis of race color religion sex national origin age veterans status disability or any other characteristic protected by applicable law.
Required Experience:
Exec
DescriptionTeam OverviewThe Workplace Engineering organization is responsible for designing securing and operating the firms digital workplace platforms including cloudhosted desktops endpoint management identity services productivity and collaboration services and data security and compliance capab...
Description
Team Overview
The Workplace Engineering organization is responsible for designing securing and operating the firms digital workplace platforms including cloudhosted desktops endpoint management identity services productivity and collaboration services and data security and compliance capabilities.
Within this organization Workplace Security Engineering partners closely with Technology Risk Cyber Security and Audit teams to ensure workplace platforms are secure by design compliant with firm standards and able to meet regulatory and audit expectations throughout their lifecycle.
Role Summary
We are seeking a Workplace Security Engineer to focus on security architecture control design and risk governance for modern workplace environments including cloud desktop platforms cloud identity services endpoint management and information protection and compliance tooling.
This role sits at the intersection ofsystem engineering security architecture and technology risk. The successful candidate will translate risk and control requirements into practical platform designs lead security design reviews and approvals and ensure workplace solutions are delivered with clear control ownership traceability and auditready evidence.
The role works closely with Technology Risk(TR) enterprise security teams and platform engineers to support architecture reviews risk assessments control attestations and remediation activities across both onpremise and cloudhosted workplace environments.
Act as a security design authority for digital workplace platforms including cloud desktops cloud identity endpoint management and cloud productivity services
Define and review security reference architectures control patterns and guardrails for endpoint identity access data protection and compliance capabilities
Ensure platform designs align with firm security standards zero trust principles and regulatory requirements
Assess new workplace capabilities and architectural changes for security risk and control impact
Technology Risk & Design Governance
Partner closely with Technology Risk Management to:
Support architecture and design reviews
Contribute to risk assessments and threat modeling
Respond to risk challenge control testing and remediation planning
Own or contribute to formal security design approvals for new or materially changed workplace solutions
Translate highlevel policies and risk statements into implementable and testable technical controls
Control Engineering & Assurance
Ensure workplace security controls are:
Designed intentionally (not implicit)
Implemented consistently
Measurable and defensible under audit
Produce and maintain control documentation including:
Architecture diagrams
Control narratives
Supporting technical evidence
Support audit regulatory and compliance activities including walkthroughs and evidence requests
Partner with engineering teams to close control gaps and risk findings
Endpoint Identity & Data Protection
Govern secure design of:
Cloudmanaged endpoint onboarding and configuration
Identitycentric access controls and device trust signals
Data classification retention eDiscovery and data loss prevention
Ensure consistent application of hardening standards configuration baselines and policy enforcement across physical virtual and cloud desktops
Review integrations between workplace platforms and downstream services from a security and datahandling perspective
CrossFunctional Collaboration
Work across Workplace Engineering Cyber Security Technology Risk and Audit teams
Act as a trusted advisor to platform and product owners
Communicate complex technical and risk concepts clearly to technical risk and executive stakeholders
Basic Qualifications
410 years of experience in workplace engineering security engineering platform security or riskaligned engineering roles
Strong experience with Windowsbased desktop environments including cloudhosted or virtual desktop models
Proven experience working with Technology Risk Audit or Governance teams
Strong understanding of security control design (preventive detective corrective)
Experience creating architecturegrade and auditready documentation
Excellent written and verbal communication skills
Preferred Qualifications
Experience securing cloudhosted digital workplace platforms
Strong familiarity with:
Cloud identity and access management models
Endpoint management and configuration enforcement
Information protection data governance and compliance tooling
Experience supporting regulated environments with formal risk and audit processes
Understanding of zero trust and identitycentric security architectures
Ability to balance engineering pragmatism with risk discipline
What Success Looks Like
Workplace platforms are delivered with approved security architectures
Technology Risk teams have confidence in control coverage and implementation
Audit and regulatory interactions are supported by clear defensible evidence
Engineering teams receive practical designtime security guidance
Security and risk considerations are embedded early and consistently
ABOUT GOLDMAN SACHS
At Goldman Sachs we commit our people capital and ideas to help our clients shareholders and the communities we serve to grow. Founded in 1869 we are a leading global investment banking securities and investment management firm. Headquartered in New York we maintain offices around the world.
We believe who you are makes you better at what you do. Were committed to fostering and advancing diversity and inclusion in our own workplace and beyond by ensuring every individual within our firm has a number of opportunities to grow professionally and personally from our training and development opportunities and firmwide networks to benefits wellness and personal finance offerings and mindfulness programs. Learn more about our culture benefits and people at
Were committed to finding reasonable accommodations for candidates with special needs or disabilities during our recruiting process. Learn more:
The Goldman Sachs Group Inc. 2023. All rights reserved.
Goldman Sachs is an equal opportunity employer and does not discriminate on the basis of race color religion sex national origin age veterans status disability or any other characteristic protected by applicable law.
The Goldman Sachs Group, Inc. is a leading global investment banking, securities, and asset and wealth management firm that provides a wide range of financial services.
Job Location:
Monthly Salary:
Posted on:
Vacancies:
