Search
Header navigation
Principal, Perimeter Security Engineer

Principal, Perimeter Security Engineer

Fidelity Investments
locationDurham, NC, USA
PublishedPublished: 10/8/2025
Full Time

Job Description:

Are you prepared to embrace a rigorous and top-tier challenge? Serving as a Principal Perimeter Security Engineer at Fidelity Investments, you will be instrumental in safeguarding our perimeter against evolving cyber threats. Your tasks will include analyzing and reverse-engineering malware, formulating detection signatures, and collaborating with cloud teams to secure our AWS infrastructure. Join us in Durham, NC and help make a significant difference in our cybersecurity strategies!

  • Examining and deconstructing malware samples to comprehend their behavior and repercussions.

  • Crafting detection signatures and devising strategies to counter different cyber threats.

  • Partnering with DevOps and cloud teams to rollout and maintain secure AWS infrastructure.

  • Crafting and maintaining secure and scalable Kubernetes clusters.

  • Integrating and optimizing Web Application Firewall (WAF) solutions to protect web applications.

  • Providing technical mentorship and threat intelligence to incident response and SOC teams.

  • Detailing findings, crafting reports, and contributing to knowledge bases and threat feeds.

The Expertise You Have and The Skills You Bring

We are searching for a remarkably skilled individual with a verified history in malware engineering and threat detection. Your extensive experience and technical savvy will support us in countering the most sophisticated cyber threats.

  • Must have at least 5 years of experience in malware engineering, reverse engineering, or threat research.

  • Strong proficiency in AWS services such as EC2, S3, IAM, VPC, and Lambda.

  • Hands-on experience with Kubernetes deployment and management.

  • Familiarity with WAF technologies like AWS WAF, Akamai and Imperva.

  • Solid understanding of networking protocols, operating systems, and exploit techniques.

  • Programming/scripting skills in Python, C/C++, Go, or similar languages.

  • Bachelor’s degree in Computer Science, Cybersecurity, or a related field is preferred. Degree requirements can be waived for candidates with 5+ years of relevant experience.

  • Preferred certifications such as GREM, OSCP, AWS Certified Security, or Kubernetes Administrator.

  • Strong analytical and problem-solving skills, with excellent written and verbal communication abilities.

The Team

We are the Enterprise Cyber Security - External Defense team, committed to developing a secure and resilient perimeter for Fidelity Investments. Our team closely engages with External Defense Ops team, cloud teams, and incident response units, to deploy and sustain robust security measures. We maintain a steadfast dedication to our clients' safety and the safeguarding of our digital assets. Our team-oriented and inclusive culture promotes continuous learning and ingenuity, establishing us as a pioneer in the cybersecurity industry. Join us as we pursue flawless security solutions and contribute to achieving our mission!

Certifications:

Category:

Information Technology

Most roles at Fidelity are Hybrid, requiring associates to work onsite every other week (all business days, M-F) in a Fidelity office. This does not apply to Remote or fully Onsite roles.

Please be advised that Fidelity’s business is governed by the provisions of the Securities Exchange Act of 1934, the Investment Advisers Act of 1940, the Investment Company Act of 1940, ERISA, numerous state laws governing securities, investment and retirement-related financial activities and the rules and regulations of numerous self-regulatory organizations, including FINRA, among others. Those laws and regulations may restrict Fidelity from hiring and/or associating with individuals with certain Criminal Histories.