Overview
Founded in 1988, Trimont (www.trimont.com) is a specialized global commercial real estate loan services provider and partner for lenders and investors seeking the infrastructure and capabilities needed to help them scale their business and make informed, effective decisions related to the deployment, management and administration of commercial real estate secured credit. As the largest master servicer of commercial real estate loans in the United States, Trimont manages securitizations with meticulous oversight and coordinationprotecting cash flows, mitigating risk, and ensuring portfolio performance.
We do this with a team of 1100+ extraordinary team members who serve a global client base from offices in Atlanta (headquarters), Bengaluru, Charlotte, Dallas, Hyderabad, Kansas City, London, New York and Sydney. We empower our people with advanced technology, industry-leading knowledge, and a culture centered on our core values. This approach enables our teams to deliver exceptional client service, build lasting relationships and take pride in the high-quality work they perform.
Trimont is an innovative firm where visionary professionals come to learn, grow, and thrive with colleagues driven by curiosity and collaboration.
Learn: We believe ongoing learning is critical and are focused on providing a work environment where all team members can take ownership of their careers.
Grow: We work alongside the largest institutional lenders in the world, overseeing the most significant projects in the industry. This unique opportunity allows us to broaden our skillset and develop our abilities by tackling some of the industry's most challenging and exciting endeavors.
Thrive: Our firm is a place where ethics and excellence meet to create an experience that matches our capabilities. There are no limits to what we as team members and as an organization, can achieve together.
Where people, purpose, and progress come together every day.
TriVinna, a Trimont company, is redefining the future of commercial loan servicing through advanced technology and data-driven innovation. As the newest addition to the Trimont group, TriVinna introduces a modern loan servicing software platform that streamlines operations, increases transparency, and provides clients and partners with actionable insights. Leveraging Trimont's access to approximately 11% of all U.S. commercial real estate lending data, TriVinna integrates market-leading analytics, robust portfolio management tools, and a high-touch customer support model. This comprehensive approach enables clients to make informed decisions, manage risk effectively, and achieve greater efficiency and performance in commercial real estate loan servicing.
Job Summary
We are seeking an experienced Cyber Security Engineer to protect our commercial real estate loan servicing platform and the sensitive financial data it processes. You will be responsible for implementing security controls, monitoring threats, responding to incidents, and ensuring compliance with financial services regulations. This role is critical to safeguarding billions of dollars in loan data and maintaining the trust of our clients and partners.
Key Responsibilities
Security Architecture and Engineering
- Design and implement security controls for cloud infrastructure and applications
- Develop and maintain security architecture for loan servicing platform
- Implement identity and access management (IAM) solutions
- Configure and manage firewalls, WAFs, and network security controls
- Deploy and maintain encryption solutions for data at rest and in transit
- Integrate security tools into CI/CD pipelines (DevSecOps)
Threat Detection and Incident Response
- Monitor security events and alerts using SIEM and security analytics tools
- Conduct threat hunting and proactive security monitoring
- Lead incident response activities and forensic investigations
- Develop and maintain incident response playbooks and procedures
- Perform root cause analysis and implement remediation measures
- Coordinate with external security partners and law enforcement when necessary
Vulnerability Management
- Conduct regular vulnerability assessments and penetration testing
- Manage vulnerability scanning tools and remediation tracking
- Perform security code reviews and application security testing
- Prioritize and track remediation of security vulnerabilities
- Conduct security assessments of third-party vendors and integrations
- Maintain vulnerability management metrics and reporting
Compliance and Risk Management
- Support compliance with financial services regulations (SOC 2, PCI DSS)
- Conduct security risk assessments and maintain risk registers
- Develop and maintain security policies, standards, and procedures
- Support internal and external security audits
- Ensure compliance with data privacy regulations (GDPR, CCPA)
- Provide security awareness training to team members
Collaboration and Support
- Partner with Engineering teams on secure software development practices
- Work with Infrastructure team on secure cloud architecture
- Advise Database and Data Engineering teams on data security controls
- Document security architectures, procedures, and incident reports
- Stay current with emerging threats and security technologies
- Provide guidance on security best practices to development teams
Required Qualifications
- 5+ years of experience in cybersecurity or information security
- Strong knowledge of security frameworks (NIST, ISO 27001, CIS Controls)
- Experience with cloud security (AWS, Azure, or GCP security services)
- Proficiency with SIEM tools, IDS/IPS, and security monitoring platforms
- Hands-on experience with vulnerability assessment and penetration testing tools
- Knowledge of network security, firewalls, and encryption technologies
- Understanding of application security and secure coding practices
- Bachelor's degree in Computer Science, Cybersecurity, or related field (or equivalent experience)
Preferred Qualifications
- Experience in financial services, fintech, or SaaS environments
- Security certifications (CISSP, CISM, CEH, OSCP, or similar)
- Experience with DevSecOps and security automation
- Knowledge of container security (Kubernetes, Docker)
- Familiarity with compliance frameworks (SOC 2, PCI DSS, GDPR)
- Experience with threat intelligence and threat modeling
Trimont is an equal opportunity employer, and we're proud to support and celebrate diversity in the workplace. If you have a disability and need an accommodation or assistance with the application process and/or using our website, please contact us. We are proud to maintain a drug-free policy, ensuring that our community is a secure and productive space for all our team members.
