100 Information Security jobs in Ireland

**Application Security Engineer (Defender)**
**Location: Europe-Based** (Office/ Hybrid/Home)
**Position Summary:**
We are seeking a passionate and skilled **Application Security Engineer** to join our global Product Security team. As part of a collaborative group of AppSec experts, you'll play a vital role in protecting our innovative software solutions. This is a unique opportunity to work at the forefront of cybersecurity, helping shape secure development practices across a wide range of technologies-from C#, Typescript, JavaScript, Node.js, single-page applications and Electron applications, Azure cloud services, K8s, and more.
**Responsibilities:**
+ Conduct **manual security code reviews** to identify vulnerabilities.
+ Collaborate with developers to ensure **secure design, implementation, and verification** of applications.
+ Provide **remediation guidance** and actionable recommendations.
+ Help define and promote **Secure Software Development Lifecycle (SSDLC)** best practices.
+ Support stakeholders in making **risk-based security decisions** .
+ Deliver **training sessions** and create educational materials for development teams.
+ Build **tools and automation** to streamline security processes.
**Qualifications:**
+ 3+ years of experience in **software development and security** , with a strong focus on **manual code review** and **white-box vulnerability analysis** .
+ Proficiency in reading, writing, and auditing code across multiple languages and platforms.
+ Strong analytical skills and a passion for **software security** and **secure coding practices** .
+ Experience with **web technologies** (JavaScript, HTML5, HTTP, REST, SOAP).
+ Familiarity with programming languages such as **.NET Core, Node.js, C#, Java, TypeScript, C/C++** .
+ Solid understanding of **OWASP Top 10** , **SANS Top 25** , and common security flaws.
+ Hands-on experience with **cloud technologies** (Azure preferred).
+ Proficiency in **containerization** using **Kubernetes and Docker** .
+ Ability to **quickly learn new technologies** and conduct independent research
**Bonus Points:**
+ Experience with **OAuth 2.0 / OpenID Connect** .
+ Ability to **exploit vulnerabilities** (e.g., deserialization, HTTP smuggling).
+ Interest in **fuzzing, reverse engineering, and crash analysis** .
+ Relevant certifications such as **CCSP, CISSP, CEH** , or similar.
**What We Offer:**
+ A great Team and culture - please see our colleague video .
+ An exciting career as an integral part of a world-leading software company providing solutions for architecture, engineering, and construction - watch this short documentary about how we got our start.
+ An attractive salary and benefits package.
+ A commitment to inclusion, belonging, and colleague wellbeing through global initiatives and resource groups.
+ A company committed to making a real difference by advancing the world's infrastructure for a better quality of life, where your contributions help build a more sustainable, connected, and resilient world. Discover our latest user success stories for an insight into our global impact.
+ _Please note that this information applies only to Lithuania_ . If you are employed full-time, the salary for this position ranges from 4000 EUR gross (before taxes, applicable only in Lithuania), depending on your knowledge and experience.

**About Bentley Systems**
Around the world, infrastructure professionals rely on software from Bentley Systems to help them design, build, and operate better and more resilient infrastructure for transportation, water, energy, cities, and more. Founded in 1984 by engineers for engineers, Bentley is the partner of choice for engineering firms and owner-operators worldwide, with software that spans engineering disciplines, industry sectors, and all phases of the infrastructure lifecycle. Through our digital twin solutions, we help infrastructure professionals unlock the value of their data to transform project delivery and asset performance. Opportunity Employer:**
Bentley is proud to be an equal opportunity employer and considers for employment all qualified applicants without regard to race, color, gender/gender identity, sexual orientation, disability, marital status, religion/belief, national origin, caste, age, or any other characteristic protected by local law or unrelated to job qualifications.
**#LI-VP**
**#LI-Remote**
**#LI-Hybrid**
Equal Opportunity Employer/Minorities/Females/Veterans/Disabled

About Us:
We are the leader in human-centric cybersecurity. Half a million customers, including 87 of the Fortune 100, rely on Proofpoint to protect their organizations. We're driven by a mission to stay ahead of bad actors and safeguard the digital world. Join us in our pursuit to defend data and protect people.
How We Work:
At Proofpoint, you'll be part of a global team that breaks barriers to redefine cybersecurity, guided by our BRAVE core values: Bold in how we dream and innovate, Responsive to feedback, challenges, and opportunities, Accountable for results and best-in-class outcomes, Visionary in future-focused problem-solving, Exceptional in execution and impact.
**Corporate Overview**
Proofpoint is a leading cybersecurity company protecting organizations' greatest assets and biggest risks: vulnerabilities in people. With an integrated suite of cloud-based solutions, Proofpoint helps companies around the world stop targeted threats, safeguard their data, and make their users more resilient against cyber-attacks. Leading organizations of all sizes, including more than half of the Fortune 1000, rely on Proofpoint for people-centric security and compliance solutions mitigating their most critical risks across email, the cloud, social media, and the web.
We are singularly devoted to helping our customers protect their greatest assets and biggest security risk: their people. That's why we're a leader in next-generation cybersecurity. Protection Starts with People. #Proofpoint.
**The Role**
We are looking for a highly skilled and experienced Senior Security Engineer with a strong focus on Cloud/Data Centre Security Automation and DevSecOps to join our Security Engineering team.
In this role, you will lead initiatives to design, build, and scale cloud/data centre security automation from first principles, enabling secure-by-default infrastructure and secure software delivery pipelines. You will also bring deep hands-on experience with tools such as Tenable, Wiz, Veracode, Splunk and apply your expertise in scripting, infrastructure-as-code (IaC), and cloud-native security practices to improve posture, visibility, and response.
Based in Cork, Ireland this key role will drive key Cloud/Data Centre security initiatives for Proofpoint Product portfolio. This role offers a unique opportunity to own security automation strategy, shape DevSecOps pipelines, and influence the future of scalable security tooling in a fast-moving engineering environment.
**Key Responsibilities**
+ Design and build automated cloud security controls using Terraform, CI/CD, and scripting (Python, Go)
+ Develop and scale infrastructure-as-code (IaC) security validation pipelines
+ Integrate and manage platform such as Tenable, Wiz, Veracode, Splunk etc. to orchestrate and automate security scans across infrastructure and application layers
+ Architect, build, and maintain security data pipelines to ingest, normalize, and analyze telemetry at scale
+ Build and support tools for asset inventory management, EDR deployment at scale, and compliance-driven discovery
+ Develop custom logic for automating remediation and enrichment of scan results
+ Collaborate with Engineering, DevOps, and GRC teams to integrate security controls into the SDLC and cloud deployments
+ Lead or contribute to threat modelling, risk assessments, and architecture reviews
**What You Bring to the Team**
+ Extensive experience in Security Engineering, Cloud Security, or DevSecOps roles
+ Thorough understanding of AWS, Azure, or GCP security models, IAM, and threat surfaces
+ Proven ability to build cloud-native security automation using Terraform (IaC), CI/CD tools and pipelines, Python/Go/Bash
+ Compliance knowledge with a grasp of NIST 800-53, and other regulatory frameworks
+ Experience building Enterprise-scale Asset management systems or platforms, EDR tooling deployment at scale, Security data pipelines and analytics frameworks
+ Experience with API-based integrations, webhooks, event-driven security automation
+ Excellent communication and collaboration skills with the ability to drive cross-functional initiatives
**Beneficial Experience**
+ Experience with SIEMs, SOAR, or threat intel platforms
+ Experience with container security (e.g., Docker, Kubernetes, Falco, Trivy)
+ Familiarity with Secret Management (Vault, AWS Secrets Manager)
+ Exposure to managing Network IPS/IDS systems (such as Stamus/Suricata)
+ Exposure to compliance programs such as FedRAMP, SOC 2, or PCI-DSS
+ Certifications: CISSP, CSSLP, GWAPT, or equivalent are a plus
**Why Proofpoint**
Protecting people is at the heart of our award-winning lineup of cybersecurity solutions, and the people who work here are the key to our success. We're a customer-focused and a driven-to-win organization with leading-edge products. We are an inclusive, diverse, multinational company that believes in culture fit, but more importantly 'culture-add', and we strongly encourage people from all walks of life to apply.
We believe in hiring the best and the brightest to help cultivate our culture of collaboration and appreciation. Apply today and explore your future at Proofpoint! #LifeAtProofpoint
#LI-CB1
Why Proofpoint? At Proofpoint, we believe that an exceptional career experience includes a comprehensive compensation and benefits package. Here are just a few reasons you'll love working with us:
- Competitive compensation
- Comprehensive benefits
- Learning & Development: We are committed to the growth and development of our team members, offering a range of programs including leadership and professional development workshops, stretch project assignments, and mentoring opportunities to help employees reach their full potential.
- Flexible work environment: (Remote options, hybrid schedules, flexible hours, etc.).
- Annual wellness and community outreach days
- Always on recognition for your contributions
- Global collaboration and networking opportunities
Our Culture:
Our culture is rooted in values that inspire belonging, empower purpose and drive success-every day, for everyone. We encourage applications from individuals of all backgrounds, experiences, and perspectives. If you need accommodation during the application or interview process, please reach out to . How to Apply Interested? Submit your application here . We can't wait to hear from you!
Proofpoint has been honored with six Best Places to Work Awards in 2024 by workplace culture leader Comparably, including Best Company Career Growth, Best Company Outlook, Best Global Culture, Best Engineering Teams, Best Sales Teams, and Best HR Teams.
We are the leader in human-centric cybersecurity. Half a million customers, including 87 of the Fortune 100, rely on Proofpoint to protect their organizations. We're driven by a mission to stay ahead of bad actors and safeguard the digital world. Join us in our pursuit to defend data and protect people.
Our BRAVE Values:
At Proofpoint, we are BRAVE in everything we do, and our values aren't just words-they shape how we work, collaborate, and grow.
We seek people who are bold enough to challenge the status quo, responsive in the face of ever-evolving threats, and accountable for delivering real impact.
We value those with a visionary mindset who anticipate what's next and push cybersecurity forward, and we celebrate exceptional execution that ensures we continue to defend data and protect people.
Proofpoint is an equal opportunity employer, we hire without consideration to race, religion, creed, color, national origin, age, gender, sexual orientation, marital status, veteran status or disability.
Find your network, your allies, and your biggest fans. We know that work is simply better when you're surrounded by people who inspire you-who share ideas, cheer you on, and genuinely want to see you succeed. That's why we offer social circles, sponsored networks, and connection points across teams and time zones-to help you find your people, build your community, and thrive together.
This isn't just a job-it's a mission to protect people and defend data in a world that never slows down. We're building the future of human-centric cybersecurity, and that future belongs to all of us. We take ownership, move fast, and hold ourselves accountable-because that's what it takes to stay ahead. And we do it together, winning as one.
Be empowered to reach your full potential through meaningful challenges and personalized support-designed around you and your goals. Whether you're growing as a leader or leveling up from great to exceptional as an individual contributor, we're here to help you get there.
Proofpoint is an equal opportunity employer, we hire without consideration to race, religion, creed, color, national origin, age, gender, sexual orientation, marital status, veteran status or disability.

Manager, Cyber & Information Security - Hybrid - Dublin, Ireland
ICON plc is a world-leading healthcare intelligence and clinical research organization. We're proud to foster an inclusive environment driving innovation and excellence, and we welcome you to join us on our mission to shape the future of clinical development.
**About the role:**
_Office Hybrid - 60% office-based in Leopardstown, Dublin 18; 40% remote._
We are currently recruiting an experienced and driven Information Security Manager to work across key functions within our Information Security program, with a focus on Third Party Risk Management (TPRM) and Governance, Risk & Compliance (GRC). Reporting to the Senior Director of Information Security, this role will be instrumental in assessing and managing supplier risk, responding to third-party incidents, and driving strategic enhancements to our TPRM framework. In addition, the role will support internal and external audit activities, client security assessments, and ensure ongoing compliance with our information security certifications.
**Key responsibilities will include:**
Third Party Risk Management (TPRM)
+ Lead and execute supplier risk assessments, including initial due diligence and ongoing monitoring.
+ Maintain and enhance operational processes related to supplier management and periodic reviews.
+ Collaborate with Procurement, Legal, Data Privacy and Business stakeholders to ensure alignment on third-party risk requirements and assessment outcomes.
+ Manage third-party security incidents, coordinating response efforts and remediation activities.
+ Maintain the third-party corrective actions register, treatment plans and ensure timely updates and closure.
+ Management of third-party continuous security monitoring and ratings platforms.
+ Drive strategic initiatives to mature the TPRM program, including continuous monitoring, automation, metrics, and reporting.
+ Perform TPRM activities in accordance with company policies and industry standard frameworks (e.g., ISO 27001, NIST CSF, CIS, Cloud Security Alliance).
+ Stay current on emerging information security threats, incidents, and trends, and assess their potential impact on the organisation and our suppliers.
Governance, Risk & Compliance (GRC)
+ Support internal and external information security audits, including evidence collection, coordination with control owners, and remediation tracking.
+ Respond to client security questionnaires and due diligence requests in collaboration with Sales and Business stakeholders.
+ Assist in maintaining compliance with information security certifications.
+ Contribute to the development and maintenance of security policies, standards, and procedures.
+ Perform GRC activities in accordance with company policies and industry standard frameworks (e.g., ISO 27001, NIST CSF).
+ Stay current on new or emerging information security standards and regulatory requirements.
**Desired Qualifications and Experience**
+ 8+ years of experience in Information Security, with a focus on TPRM and/or GRC.
+ Relevant certifications (e.g., CISM, CRISC, CISSP, ISO Lead Auditor/Implementer, SANS GCLD, SANS GSLC) are a plus.
+ Strong understanding of risk management frameworks and information security standards (e.g., ISO 27001, NIST, SOC 2, Cloud Security).
+ Experience managing supplier incidents, defining treatments plans and managing to closure.
+ Familiarity with audit processes and compliance reporting.
+ Demonstrate a strong awareness of the current threat landscape.
+ Ability to work independently and drive initiatives in a fast-paced environment.
#LI-Hybrid
#LI-MK2
**What ICON can offer you:**
Our success depends on the quality of our people. That's why we've made it a priority to build a diverse culture that rewards high performance and nurtures talent.
In addition to your competitive salary, ICON offers a range of additional benefits. Our benefits are designed to be competitive within each country and are focused on well-being and work life balance opportunities for you and your family.
Our benefits examples include:
+ Various annual leave entitlements
+ A range of health insurance offerings to suit you and your family's needs.
+ Competitive retirement planning offerings to maximize savings and plan with confidence for the years ahead.
+ Global Employee Assistance Programme, LifeWorks, offering 24-hour access to a global network of over 80,000 independent specialized professionals who are there to support you and your family's well-being.
+ Life assurance
+ Flexible country-specific optional benefits, including childcare vouchers, bike purchase schemes, discounted gym memberships, subsidized travel passes, health assessments, among others.
Visit our careers site ( to read more about the benefits ICON offers.
At ICON, inclusion & belonging are fundamental to our culture and values. We're dedicated to providing an inclusive and accessible environment for all candidates. ICON is committed to providing a workplace free of discrimination and harassment. All qualified applicants will receive equal consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.
If, because of a medical condition or disability, you need a reasonable accommodation for any part of the application process, or in order to perform the essential functions of a position, please let us know or submit a request here ( in the role, but unsure if you meet all of the requirements? We would encourage you to apply regardless - there's every chance you're exactly what we're looking for here at ICON whether it is for this or other roles.
Are you a current ICON Employee? Please click here ( to apply

**Our Story**
Unum Technology Centre in Carlow serves as a strategic software development and IT services centre supporting Unum, a leading provider of income protection in the US. Our team of IT professionals build solutions and critical business applications to digitally transform the way we do business.
We're looking for a Senior Application Security Engineer to lead the integration of secure development practices across our SDLC in both cloud and on-prem environments. This role combines hands-on technical expertise with strategic influence, focusing on secure architecture, CI/CD automation, and developer enablement. You'll collaborate with cross-functional teams to drive threat modeling, build secure-by-default tooling, and mentor engineers across Ireland and the US-helping to elevate our overall security maturity and culture.
**Key Responsibilities**
**Secure Software Development & DevSecOps Integration**
+ Architect and integrate security into CI/CD pipelines using modern automation and guardrails.
+ Develop secure frameworks, SDKs, and CI integrations to enable frictionless adoption of security controls.
+ Maintain secure coding standards and guidance tailored to our technology stack.
+ Collaborate with DevOps and platform teams to enhance container and infrastructure security (Docker, Kubernetes, IaC).
**Threat Modeling, Reviews & Remediation**
+ Lead threat modeling workshops across product and platform teams.
+ Identify and assess vulnerabilities using SAST, DAST, SCA, manual code reviews, and penetration testing.
+ Promote reusable remediation patterns for code and infrastructure vulnerabilities.
+ Leverage threat intelligence to prioritize mitigations based on business risk.
**Engineering & Automation**
+ Build and maintain automation tools for vulnerability triage, mitigation, and reporting.
+ Strengthen API security through robust authentication protocols (OAuth 2.0, OpenID Connect, SAML).
+ Integrate with API gateways (e.g., Layer7, MuleSoft) to enforce secure communication and tokenization.
+ Support secure deployment of microservices and distributed systems using best-in-class tooling.
**Security Culture & Enablement**
+ Mentor engineers and analysts, fostering secure development capabilities across teams.
+ Lead internal workshops, onboarding sessions, and lunch-and-learns to promote security awareness.
+ Collaborate with Security Champions to build advocacy and threat modeling expertise.
+ Create internal documentation, playbooks, and training materials aligned with real-world threats.
**Cross-Functional Leadership & Collaboration**
+ Act as a bridge between Security, Engineering, and Product teams to align on secure architecture and SDLC practices.
+ Participate in incident response, forensic analysis, and post-incident remediation.
+ Support compliance initiatives (SOC 2, ISO 27001, HIPAA, PCI DSS, GDPR) through technical guidance and documentation.
+ Define and track KPIs to measure and improve security maturity across the organization.
**Required Qualifications**
+ 5+ years in application security, software engineering, or a related technical security role.
+ Proficient in at least one modern programming language (e.g., Java, C#, Python, JavaScript).
+ Experience with security tools: SAST, DAST, SCA, IaC scanners, RASP.
+ Strong knowledge of cloud infrastructure (AWS preferred), containers (Docker, Kubernetes), and CI/CD security.
+ Familiarity with OWASP Top 10, ASVS, CVSS, MITRE ATT&CK, STRIDE, and software supply chain security.
**Technical Skills**
+ Deep understanding of API security protocols and secure service-to-service communication.
+ Experience with secure artifact/package management and container registries.
+ Ability to script or build internal tools to scale security practices.
+ Hands-on experience with DevSecOps tools (GitHub Actions, Jenkins, GitLab CI, Terraform, etc.).
**Compliance & Governance**
+ Working knowledge of privacy and security regulations (GDPR, CCPA, HIPAA, PCI, SOC 2, ISO 27001).
+ Experience supporting audits, risk assessments, and policy development.
**Preferred Qualifications**
+ Professional certifications (e.g., OSCP, CSSLP, CISSP, Security+).
+ Contributions to open-source security projects or community involvement.
+ Experience with policy-as-code tools (e.g., Open Policy Agent).
+ Familiarity with secure runtimes (e.g., Firecracker), sidecars, or service meshes (e.g., Istio).
**Key Attributes**
+ Strategic thinker with a hands-on, problem-solving mindset.
+ Strong communicator, able to engage both technical and non-technical stakeholders.
+ Collaborative leader with a growth mindset and a passion for mentoring.
+ Comfortable navigating fast-paced, cross-functional environments.
#LI-SF1
**#LI-Hybrid**
#Hybrid
**What We Offer**
Our size and successful history in Carlow means we can offer you exceptional development and progression, supported by continual learning programs, IT Certifications & third level tuition reimbursement. We offer work-life-balance with flexible working arrangements (including hybrid) and initiatives in support of your well-being. Our attractive range of benefits and reward initiatives includes competitive compensation, 25 days annual leave, paid health insurance, pension scheme, annual performance-based bonus, paid maternity/paternity/adoptive leave, reward programs, and an opportunity to engage with charity and community activities.
Company:
Unum

SMBC Group is a top-tier global financial group. Headquartered in Tokyo and with a 400-year history, SMBC Group offers a diverse range of financial services, including banking, leasing, securities, credit cards, and consumer finance. The Group has more than 130 offices and 80,000 employees worldwide in nearly 40 countries. Sumitomo Mitsui Financial Group, Inc. (SMFG) is the holding company of SMBC Group, which is one of the three largest banking groups in Japan. SMFG's shares trade on the Tokyo, Nagoya, and New York (NYSE: SMFG) stock exchanges.
In the Americas, SMBC Group has a presence in the US, Canada, Ireland, Mexico, Brazil, Chile, Colombia, and Peru. Backed by the capital strength of SMBC Group and the value of its relationships in Asia, the Group offers a range of commercial and investment banking services to its corporate, institutional, and municipal clients. It connects a diverse client base to local markets and the organization's extensive global network. The Group's operating companies in the Americas include Sumitomo Mitsui Banking Corp. (SMBC), SMBC Nikko Securities America, Inc., SMBC Capital Markets, Inc., SMBC MANUBANK, JRI America, Inc., SMBC Leasing and Finance, Inc., Banco Sumitomo Mitsui Brasileiro S.A., and Sumitomo Mitsui Finance and Leasing Co., Ltd.
+ This is a hybrid role, requiring the successful candidate to attend our Tralee office.
+ Occasional scheduled Saturday work required.
**Role Description**
SMBC is seeking a Network Security Engineer who has a strong passion for Security Systems and is interested in building a career at a fast growing and reputable Bank. The Network Security Engineer will be responsible for configuring firewall rules, analyzing security events, and implementing robust security controls across systems and networks. This role involves close collaboration with cross-functional IT teams to ensure effective protection strategies are seamlessly integrated into infrastructure operations.
The ideal candidate will also have opportunities to serve as a subject matter expert, leveraging their technical expertise to resolve complex challenges while navigating established policies, standards, and governance frameworks.
This role will report to the Security Systems Engineer Team Lead
**Role Objectives: Delivery**
+ Works with internal IT Application, Infrastructure, Network and Support teams to ensure that security controls are implemented at all significant and relevant phases of IT processes.
+ Configures firewall rulebase and objects.
+ Configures system and network related parameters.
+ Performs IDS/IPS configuration, updates and tuning.
+ Participates in incident response and investigations; tracks and documents the remediation process.
+ Coordinates and performs security audits and vulnerability assessments to determine internal security procedures and compliance requirements.
+ Reviews security event log data and investigates anomalies.
+ Implements and supports information security solutions including security architectures, change and configuration management and security product integration.
+ Performs testing to evaluate new products for network and system controls.
+ Provides training to Help Desk staff on access request procedures.
+ Adheres to project management methodology/SDLC/PLC processes as it relates to projects and their implementation.
**Qualifications and Skills**
+ 2 years experience supporting IT Security tools and applications.
+ Bachelor's Degree in Computer Science or related field.
+ Process documentation, flow charting and re-engineering experience.
+ Some Project Management Experience a plus.
+ Encryption technologies and PKI infrastructure.
+ Knowledge of Information Security regulatory requirements, codes and industry guidance such as such as NIST 800-53, ISO27001, CIS and Cobit.
+ Ability to utilize resources to contribute valuable input to Information Security projects and Risk Assessments, e.g. ISACA, CIS, FS-ISAC.
+ Networking technologies (TCP/IP/etc.) and protocols (SSL, SSH, LDAP, SMTP, DNS, etc.).
+ Microsoft Active Directory.
+ Familiarity with security monitoring concepts.
+ Administration of more than Palo Alto Firewall, Checkpoint Firewall, Imperva Waf, Tufin.
+ Have strong verbal and written communication skills.
+ Ability to demonstrate a self-motivated and disciplined approach to learning and working.
+ Ability to work in a team environment and demonstrate leadership skills when needed.
+ Possess a highly developed sense of personal accountability and follow-through with an ability to effectively prioritize multiple personal tasks, projects, and goals.
**Additional Requirements**
SMBC's employees participate in a hybrid workforce model that provides employees with an opportunity to work from home, as well as, from an SMBC office. SMBC requires that employees live within a reasonable commuting distance of their office location. Prospective candidates will learn more about their specific hybrid work schedule during their interview process.
SMBC provides reasonable accommodations during candidacy for applicants with disabilities consistent with applicable federal, state, and local law. If you need a reasonable accommodation during the application process, please let us know at

SMBC Group is a top-tier global financial group. Headquartered in Tokyo and with a 400-year history, SMBC Group offers a diverse range of financial services, including banking, leasing, securities, credit cards, and consumer finance. The Group has more than 130 offices and 80,000 employees worldwide in nearly 40 countries. Sumitomo Mitsui Financial Group, Inc. (SMFG) is the holding company of SMBC Group, which is one of the three largest banking groups in Japan. SMFG's shares trade on the Tokyo, Nagoya, and New York (NYSE: SMFG) stock exchanges.
In the Americas, SMBC Group has a presence in the US, Canada, Ireland, Mexico, Brazil, Chile, Colombia, and Peru. Backed by the capital strength of SMBC Group and the value of its relationships in Asia, the Group offers a range of commercial and investment banking services to its corporate, institutional, and municipal clients. It connects a diverse client base to local markets and the organization's extensive global network. The Group's operating companies in the Americas include Sumitomo Mitsui Banking Corp. (SMBC), SMBC Nikko Securities America, Inc., SMBC Capital Markets, Inc., SMBC MANUBANK, JRI America, Inc., SMBC Leasing and Finance, Inc., Banco Sumitomo Mitsui Brasileiro S.A., and Sumitomo Mitsui Finance and Leasing Co., Ltd.
+ This is a hybrid role, requiring the successful candidate to attend our Tralee office.
+ Occasional scheduled Saturday work required.
**Role Description**
SMBC is seeking a Security Systems Engineer who has a strong passion for Security Systems and is interested in building a career at a fast growing and reputable Bank. Security Systems Engineer role is part of a team responsible for administering security projects designed to safeguard the bank's information systems. The Engineer focuses on defining and documenting projects, creating and executing project plans, engaging in project cost management, resource management and performing periodic reporting. Acts as a subject matter expert who uses expertise to resolve complex problems in consideration of established policies, guidelines or processes.
This role will report to the This role will report to the Security Systems Engineer Team Lead
**Role Objectives: Delivery**
+ Some experience in process documentation and project management.
+ Functional knowledge of some of the following: Unix, Linux, Windows 10/11, Windows 2016/19 Server, Sharepoint, MS O365, Microsoft Active Directory and Azure, SQL and Oracle.
+ Databases, Certificate Management, Privileged Access Management.
+ Ability to utilize resources to contribute valuable input to Information Security projects and Risk Assessments, (e.g. ISACA, CIS, FS-ISAC).
+ Basic knowledge of security monitoring concepts.
+ Highly developed sense of accountability and follow through with discipline to effectively prioritize multiple tasks within the context of conflicting deadlines and changing priorities.
+ Ability to raise awareness and issues to executive leadership, engage leaders and stakeholders in understanding their roles in delivering enterprise Change, Configuration and Release Management processes.
+ Ability to communicate effectively to all levels in the organization and adapt information delivery based on audience.
+ Excellent verbal and written communication skills with ability to articulate concepts and ideas to business and technology staff.
+ Ability to work cooperatively and effectively with others to set goals, resolve problem, and make decisions that enhance organizational effectiveness.
+ Knowledge and Administration of some of the following Security Applications (multiple required): CyberArk, Ivanti Application and Device Control, Imprivata, Centrify, Vasco, Varonis,
+ Imperva, SEIM Solutions, UIPath, Crowdstrike, Forescout, Illumio, PolicyPak.
**Qualifications and Skills**
+ 3-5 years experience supporting IT Security tools and applications.
+ Bachelor's Degree in Computer Science or related field.
+ Minimum one year secure browser understanding and administration (eg. island.io).
+ Process documentation, flow charting and re-engineering experience.
+ Some Project Management Experience a plus.
+ Encryption technologies and PKI infrastructure.
+ Knowledge of Information Security regulatory requirements, codes and industry guidance such as NIST 800-53, ISO27001, CIS and Cobit.
+ Ability to utilize resources to contribute valuable input to Information Security projects and Risk Assessments, e.g. ISACA, CIS, FS-ISAC.
+ Networking technologies (TCP/IP/etc.) and protocols (SSL, SSH, LDAP, SMTP, DNS, etc.).
+ Unix, Linux, and Windows Operating Systems.
+ Microsoft Active Directory, Azure Active Directory.
+ Familiarity with security monitoring concepts.
+ Have strong verbal and written communication skills.
+ Ability to demonstrate a self-motivated and disciplined approach to learning and working.
+ Ability to work in a team environment and demonstrate leadership skills when needed.
+ Possess a highly developed sense of personal accountability and follow-through with an ability to effectively prioritize multiple personal tasks, projects, and goals.
**Additional Requirements**
SMBC's employees participate in a hybrid workforce model that provides employees with an opportunity to work from home, as well as, from an SMBC office. SMBC requires that employees live within a reasonable commuting distance of their office location. Prospective candidates will learn more about their specific hybrid work schedule during their interview process.
SMBC provides reasonable accommodations during candidacy for applicants with disabilities consistent with applicable federal, state, and local law. If you need a reasonable accommodation during the application process, please let us know at

SMBC Group is a top-tier global financial group. Headquartered in Tokyo and with a 400-year history, SMBC Group offers a diverse range of financial services, including banking, leasing, securities, credit cards, and consumer finance. The Group has more than 130 offices and 80,000 employees worldwide in nearly 40 countries. Sumitomo Mitsui Financial Group, Inc. (SMFG) is the holding company of SMBC Group, which is one of the three largest banking groups in Japan. SMFG's shares trade on the Tokyo, Nagoya, and New York (NYSE: SMFG) stock exchanges.
In the Americas, SMBC Group has a presence in the US, Canada, Ireland, Mexico, Brazil, Chile, Colombia, and Peru. Backed by the capital strength of SMBC Group and the value of its relationships in Asia, the Group offers a range of commercial and investment banking services to its corporate, institutional, and municipal clients. It connects a diverse client base to local markets and the organization's extensive global network. The Group's operating companies in the Americas include Sumitomo Mitsui Banking Corp. (SMBC), SMBC Nikko Securities America, Inc., SMBC Capital Markets, Inc., SMBC MANUBANK, JRI America, Inc., SMBC Leasing and Finance, Inc., Banco Sumitomo Mitsui Brasileiro S.A., and Sumitomo Mitsui Finance and Leasing Co., Ltd.
+ This is a hybrid role, requiring the successful candidate to attend our Tralee office.
**Role Description**
SMBC is seeking a Cyber Security Analyst who has a strong passion for Information Security Operations and is interested in building a career at a fast growing and reputable Bank. The Cyber Security Analyst will assist with monitoring, reviewing and performance of audits on security lists. The successful candidate will access logs, policy compliance reports and threat detection. They will be given opportunities to participate in monitoring network traffic for signs of irregular activity that may indicate a breach. You will provide incident response and support in the event of a cyber security event. You will play a key role in troubleshooting and remediate any issues and analyze threats once they have been contained. This role will report to the Cyber Monitoring & Response Team Lead.
**Role Objectives: Delivery**
+ Act as a core member of the Cyber Monitoring & Response in support of the bank
+ Analyze security alerts and respond to security events and incidents.
+ Maintain and update monitoring & response playbooks.
+ Conduct proactive threat hunting.
+ Develop expertise in our monitoring systems and technology and support Threat Detection team developing new detection ideas.
+ Identify opportunities for efficiency, work hand in hand with Security Automation team to automate and improve our response processes.
+ Assist in the implementation and ongoing support of security systems.
+ Execute tasks or support projects to enhance team's capabilities.
+ Follow standards for security excellence within the SOC.
+ Bring a positive outlook and seek to motivate and inspire your fellow team members.
+ Demonstrate understanding of cyber security best practices, risk vectors, mitigation techniques and protection software.
+ Display basic knowledge of network security concepts such as firewalls, proxy servers, email security and suspicious traffic flows.
+ Exhibit proficiency to quickly identify potential cyber security threats from logs and monitoring, and follow steps to minimize impact.
+ Show ability to convey cyber security polices and concepts to employees and conduct training efforts to ensure all employees follow recommended best practices relating to cyber security.
+ Understanding of MITRE Cyber Kill Chain and similar frameworks.
+ Knowledge of security controls related to the detection, analysis, and response (SIEM, EDR, NDR, XDR, UEBA).
+ Knowledge of Windows and Linux systems, Active Directory, Cloud technologies.
**Qualifications and Skills**
+ Bachelors Degree in Cyber Security.
+ Strong organizational, analytical, and problem-solving skills.
+ Have strong verbal and written communication skills.
+ Ability to demonstrate a self-motivated and disciplined approach to learning and working.
+ Ability to work in a team environment and demonstrate leadership skills when needed.
+ Possess a highly developed sense of personal accountability and follow-through with an ability to effectively prioritize multiple personal tasks, projects, and goals.
+ 1- 3 years of experience highly desired
**Additional Requirements**
SMBC's employees participate in a hybrid workforce model that provides employees with an opportunity to work from home, as well as, from an SMBC office. SMBC requires that employees live within a reasonable commuting distance of their office location. Prospective candidates will learn more about their specific hybrid work schedule during their interview process.
SMBC provides reasonable accommodations during candidacy for applicants with disabilities consistent with applicable federal, state, and local law. If you need a reasonable accommodation during the application process, please let us know at

SMBC Group is a top-tier global financial group. Headquartered in Tokyo and with a 400-year history, SMBC Group offers a diverse range of financial services, including banking, leasing, securities, credit cards, and consumer finance. The Group has more than 130 offices and 80,000 employees worldwide in nearly 40 countries. Sumitomo Mitsui Financial Group, Inc. (SMFG) is the holding company of SMBC Group, which is one of the three largest banking groups in Japan. SMFG's shares trade on the Tokyo, Nagoya, and New York (NYSE: SMFG) stock exchanges.
In the Americas, SMBC Group has a presence in the US, Canada, Ireland, Mexico, Brazil, Chile, Colombia, and Peru. Backed by the capital strength of SMBC Group and the value of its relationships in Asia, the Group offers a range of commercial and investment banking services to its corporate, institutional, and municipal clients. It connects a diverse client base to local markets and the organization's extensive global network. The Group's operating companies in the Americas include Sumitomo Mitsui Banking Corp. (SMBC), SMBC Nikko Securities America, Inc., SMBC Capital Markets, Inc., SMBC MANUBANK, JRI America, Inc., SMBC Leasing and Finance, Inc., Banco Sumitomo Mitsui Brasileiro S.A., and Sumitomo Mitsui Finance and Leasing Co., Ltd.
+ This is a hybrid role, requiring the successful candidate to attend our Tralee office.
**Role Description**
SMBC is seeking a Senior Application Security Engineer who is interested in building a career at a fast growing and reputable Bank. Senior Application Security Engineer will be responsible for ensuring that all code scanning vulnerabilities follow organizational policies and work closely with developers to ensure issues are fixed before releasing code to production. This candidate will have a strong development background and the ability to read and explain code deficiencies to stakeholders in various programming and scripting languages. Acts as a subject matter expert who uses expertise to resolve complex problems in consideration of established policies, guidelines or processes.
This role reports into SMBC AD Head of Application Security.
**Role Objectives: Delivery**
+ Strong ability to work with stakeholders and being able to explain code issues and fixes to development community.
+ You will work very closely with developers on day-to-day basis to ensure all code in the environment is scanned and reported focusing on SAST, SCA, DAST, IAST and Container Security issues.
+ Interface with development and security architecture teams on topics related to application security for example vulnerability remediation, best practices, threat modeling, etc.
+ Interface with the vulnerability management team to ensure vulnerabilities identified are reported and validated according to SLA's
+ Publish and present high level management reports on State of AppSec Program within Americas Division entities.
+ Some manual testing activities validate vulnerability or penetration testing findings
+ Weekend and night work may be needed at times based on project, support, and business needs.
**Qualifications and Skills**
+ 7+ years of experience as a Application Security analyst or Application Penetration Testing analyst
+ Expertise with programming languages, C#, C++, Java, Python, .Net
+ Ability to read and understand code deficiencies - Required.
+ Ability to write code fixes for stakeholders and create automation scripts to support internal cybersecurity projects.
+ Experience in developing and maturing CI/CD pipeline with respect to code quality and detecting vulnerabilities.
+ 4+ years of experience with Static Application Security Testing (SAST) or Dynamic App Security Testing (DAST)
+ 2+ years of experience with container security issues and container technologies
+ Through understanding of the components of the Secure Software Development Lifecycle
+ Strong knowledge of OWASP Top 10 or CWE
+ Understanding of common software threats and mitigations
+ Must be process and detail oriented, ability to create detailed process documentation.
+ Experience with Jira/Confluence
+ Bug Bounty and/or penetration testing experience a bonus.
+ Have strong verbal and written communication skills.
+ Ability to demonstrate a self-motivated and disciplined approach to learning and working.
+ Ability to work in a team environment and demonstrate leadership skills when needed.
+ Possess a highly developed sense of personal accountability and follow-through with an ability to effectively prioritize multiple personal tasks, projects, and goals.
**Additional Requirements**
SMBC's employees participate in a hybrid workforce model that provides employees with an opportunity to work from home, as well as, from an SMBC office. SMBC requires that employees live within a reasonable commuting distance of their office location. Prospective candidates will learn more about their specific hybrid work schedule during their interview process.
SMBC provides reasonable accommodations during candidacy for applicants with disabilities consistent with applicable federal, state, and local law. If you need a reasonable accommodation during the application process, please let us know at

SMBC Group is a top-tier global financial group. Headquartered in Tokyo and with a 400-year history, SMBC Group offers a diverse range of financial services, including banking, leasing, securities, credit cards, and consumer finance. The Group has more than 130 offices and 80,000 employees worldwide in nearly 40 countries. Sumitomo Mitsui Financial Group, Inc. (SMFG) is the holding company of SMBC Group, which is one of the three largest banking groups in Japan. SMFG's shares trade on the Tokyo, Nagoya, and New York (NYSE: SMFG) stock exchanges.
In the Americas, SMBC Group has a presence in the US, Canada, Ireland, Mexico, Brazil, Chile, Colombia, and Peru. Backed by the capital strength of SMBC Group and the value of its relationships in Asia, the Group offers a range of commercial and investment banking services to its corporate, institutional, and municipal clients. It connects a diverse client base to local markets and the organization's extensive global network. The Group's operating companies in the Americas include Sumitomo Mitsui Banking Corp. (SMBC), SMBC Nikko Securities America, Inc., SMBC Capital Markets, Inc., SMBC MANUBANK, JRI America, Inc., SMBC Leasing and Finance, Inc., Banco Sumitomo Mitsui Brasileiro S.A., and Sumitomo Mitsui Finance and Leasing Co., Ltd.
+ This is a hybrid role, requiring the successful candidate to attend our Tralee office.
+ Weekend and late-night work will be required on occasion for support.
**Role Description**
SMBC is seeking a Cloud Security Engineer who has a strong passion for Security Systems and is interested in building a career at a fast growing and reputable Bank. The Cloud Security Engineer will assist with various duties including installing and configure servers, storage devices, network and telecommunications equipment. You will perform upgrades and maintenance on all IT infrastructure hardware. You will be given opportunities to participate on installations and configure server operating systems, database software, file server structure and protocols, email servers, authentication servers, back-up systems and firewalls. The successful candidate will play a key role in monitoring system performance daily and provide support on all IT infrastructure-related issues. This role will report to the Team Lead of Security Cloud Engineering.
**Role Objectives**
+ Administration some of the following Security Applications (multiple required): Azure AD, WIZ, O365 (Security), Sentinel, Proofpoint, Google Cloud (GCP), AWS, Azure Data Bricks, O365 Messaging (Security), O365 Compliance Center, WORM, Defender for Cloud, Crowdstrike
+ Provision services and accounts for new users.
+ Manage software library and perform updates as needed.
+ Run monitoring and reporting utilities, operations logs and access auditing tools.
+ Monitor system performance daily and generate reports on key metrics such as storage capacity, server resource utilization, connectivity and uptime, back-up performance and incident logs.
+ Provide support on all IT infrastructure-related issues and escalation support for all other IT departments.
+ Collaborate incident response for any major outages.
+ Maintain disaster recovery systems and implement DR plans as needed.
+ Support other IT departments requiring additional expertise to resolve user issues or provide internal support on system performance or maintenance needs.
+ Coordinate incident response with all engineers and system owners during outages.
+ Engage with other IT infrastructure teams to install hardware, configure devices and policies, and perform upgrades and maintenance.
+ Coordinate incident response with all engineers and system owners during outages.
+ Partner with application, web administration, database and other development focused teams to monitor and maintain IT infrastructure supporting their platforms.
+ Work with disaster recovery, storage management, and cyber security architects to maintain systems, hardware and policy configurations supporting their designs.
**Qualifications and Skills**
+ Demonstrate understanding of IT infrastructure hardware, cloud service platforms, operating systems, virtual environments and configuration tools.
+ Display familiarity with application integration, update and change management, database design and structures, system deployments and automated reporting and monitoring tools.
+ Exhibit knowledge of regulations regarding data security and retention, anti-virus tools and protection models, network security and access protocols
+ Show ability to support projects across multiple functions and divisions and coordinate incident response while providing clear communications to affected parties.
+ Have strong verbal and written communication skills.
+ Ability to demonstrate a self-motivated and disciplined approach to learning and working.
+ Ability to work in a team environment and demonstrate leadership skills when needed.
+ Possess a highly developed sense of personal accountability and follow-through with an ability to effectively prioritize multiple personal tasks, projects, and goals.
+ Ability to utilize resources to contribute valuable input to Information Security projects and Risk Assessments, (e.g. ISACA, CIS, FS-ISAC).
+ Basic knowledge of security monitoring concepts.
+ 3 years of experience highly desired
SMBC's employees participate in a hybrid workforce model that provides employees with an opportunity to work from home, as well as, from an SMBC office. SMBC requires that employees live within a reasonable commuting distance of their office location. Prospective candidates will learn more about their specific hybrid work schedule during their interview process.
SMBC provides reasonable accommodations during candidacy for applicants with disabilities consistent with applicable federal, state, and local law. If you need a reasonable accommodation during the application process, please let us know at