Windows File Share Security Engineer, AVP

Who we are looking for:

As a Windows File Share Security Engineer/ AVP, you will be a member of our highly technical production support team, who supports security for the unstructured data environment. You will be responsible for the design, implementation, and ongoing management of secure enterprise file sharing environments. This role ensures the confidentiality, integrity, and availability of shared data by managing permissions, enforcing access controls, monitoring usage, and protecting file systems against unauthorized access, data loss, and cyber threats.

What you will be responsible for:

As Windows File Share Security Engineer/AVP you will:

• Maintain secure file sharing platforms including Windows file servers and NAS storage devices.
• Administer and manage share-level and NTFS permissions using role-based and least-privilege access models.
• Conduct regular access reviews and audits to ensure appropriate user and group permissions.
• Monitor file share activity for anomalies, unauthorized access, or potential data exfiltration using logging and security tools.
• Troubleshoot access issues and support users while maintaining security standards.
• Respond to security incidents related to file services and participate in remediation efforts.
• Utilize expertise for security related problem solving and risk mitigation.
• Maintain documentation for file share architecture, access controls, and procedures.
• Collaborate with Cyber Security, Infrastructure, and Risk teams to meet regulatory and organizational requirements.
• Participate in projects to support larger scale initiatives.

What we value

These skills will help you succeed in this role:

• Contributing to a wide variety of security initiatives as a dependable and flexible resource.
• Develop and maintain comprehensive documentation of Data Security processes, configurations, and controls.
• Proactively identify opportunities for process optimization and automation to enhance efficiency.
• Experience with development and/or scripting languages.
• Experience in securing data.
• Ability to follow policies and procedures; attention to detail.
• Ability to work collaboratively with team members as well as stakeholders across the organisation.
• Strong critical thinking skills and decision-making ability around complex problems.
• Excellent oral and written communication skills with technical and non-technical stakeholders.

Education & Preferred Qualifications

• Associate’s/Bachelor’s degree in Information Technology, Cybersecurity, or related field (or equivalent experience).
• 5+ years’ experience administering Windows file servers or enterprise storage environments.
• Security or infrastructure certifications (Security+, CISSP, Microsoft, or similar) a plus.

 Additional requirements

• Experience with NTFS and share permissions.
• Strong understanding of security principles including least privilege, RBAC, and auditing.
• Experience troubleshooting permissions and access issues in complex environments.

• Experience in handling and administering permissions on Storage devices like NetApp, EMC, etc.
• Knowledge of automation tools, such as PowerShell, Power Automate, and Power BI.
• Familiarity with Active Directory and Group Policy
• Familiarity with SMB/CIFS protocols
• Working experience on Varonis DatAdvantage a plus
• Basic Microsoft Office operations

Across the globe, institutional investors rely on us to help them manage risk, respond to challenges, and drive performance and profitability. We keep our clients at the heart of everything we do, and smart, engaged employees are essential to our continued success.

We are committed to fostering an environment where every employee feels valued and empowered to reach their full potential. As an essential partner in our shared success, you’ll benefit from inclusive development opportunities, flexible work-life support, paid volunteer days, and vibrant employee networks that keep you connected to what matters most. Join us in shaping the future.

As an Equal Opportunity Employer, we consider all qualified applicants for all positions without regard to race, creed, color, religion, national origin, ancestry, ethnicity, age, disability, genetic information, sex, sexual orientation, gender identity or expression, citizenship, marital status, domestic partnership or civil union status, familial status, military and veteran status, and other characteristics protected by applicable law.

Discover more information on jobs at StateStreet.com/careers

Read our CEO Statement