At Franklin Templeton, we believe success is built through powerful partnerships. As a forward thinking asset manager, we build dynamic relationships with clients, understand their goals, and navigate complex markets together. We leverage cutting edge strategies and deep insights to unlock opportunities for long term wealth creation. Our talented, global teams bring expertise that is both broad and unique.
From our welcoming, inclusive, and supportive culture to our globally diverse business, we offer opportunities not only to help you reach your potential, but also to contribute to our clients’ success.
Global Information Security securely enables business transformation while enhancing the organization's global security and risk posture, protecting clients, employees, brand integrity, and digital assets.
The Security Engineer is a hands-on member of the Security Engineering team responsible for designing, implementing, operating, and improving enterprise security capabilities across endpoint, network, cloud, data protection, vulnerability management, certificate services, and third-party cyber risk platforms. This role partners with Security Operations, Incident Response, Infrastructure, Cloud, and business teams to reduce risk, improve control effectiveness, and enable secure business outcomes. The ideal candidate is technically strong, operationally disciplined, and comfortable leading implementation work, troubleshooting production issues, and translating security requirements into reliable engineering solutions.
Engineer, administer, tune, and continuously improve enterprise security platforms including CrowdStrike, Tenable, AvePoint, BitSight, Palo Alto firewalls, AWS Security, Azure Security, Netskope, and Microsoft PKI.
Provide Tier 2 to Tier 3 technical ownership for security tools, including platform configuration, policy management, health monitoring, upgrades, integrations, troubleshooting, and operational support.
Design and implement security controls for endpoint protection, vulnerability management, cloud security, network segmentation, secure web access/CASB/SASE, email and collaboration security, data protection, certificate management, and third-party cyber risk monitoring.
Partner with SOC and Incident Response teams to investigate alerts, validate detections, analyze logs, support containment and remediation, and improve alert fidelity and operational playbooks.
Lead vulnerability management activities using Tenable and related processes, including scan coverage, prioritization, validation, exception handling, reporting, and remediation coordination with technology owners.
Support cloud security posture across AWS and Azure by reviewing configurations, enforcing security standards, assisting with identity and access controls, and enabling secure cloud adoption.
Manage network and perimeter security capabilities, including Palo Alto firewall policies, rule hygiene, traffic analysis, control validation, and change support.
Administer endpoint security capabilities in CrowdStrike, including policy tuning, sensor health, detection review, response actions, and collaboration with endpoint and server teams.
Support Netskope capabilities for secure access, cloud application visibility, DLP policy enforcement, web protection, and user activity investigation.
Support AvePoint and Microsoft 365 security operations related to collaboration security, data governance, backup/recovery, and policy enforcement.
Operate and improve Microsoft PKI services, including certificate lifecycle management, templates, issuance controls, renewal processes, and documentation.
Maintain operational runbooks, standards, architecture diagrams, procedures, metrics, and evidence required for audit, regulatory, and internal governance needs.
Evaluate emerging threats, security advisories, and vendor capabilities; recommend tactical and strategic improvements to strengthen the security control environment.
Participate in after-hours support, incident response, and change windows as required.
Perform other duties as assigned.
Minimum of 5 years of hands-on information security, security engineering, infrastructure security, cloud security, or related technology experience.
Practical working experience with several of the following technologies or equivalent platforms: CrowdStrike, Tenable, AvePoint, BitSight, Palo Alto firewalls, AWS Security, Azure Security, Netskope, and Microsoft PKI.
Strong knowledge of endpoint detection and response, vulnerability management, firewall and network security, cloud security, data loss prevention, secure web gateway/CASB/SASE, certificate services, and third-party cyber risk concepts.
Experience supporting enterprise security tools in production environments, including implementation, configuration, monitoring, troubleshooting, upgrades, and operational lifecycle management.
Strong understanding of Windows, Linux/UNIX, networking, DNS, DHCP, routing, authentication, identity and access management, and common enterprise infrastructure patterns.
Ability to analyze security events, system logs, vulnerability data, firewall traffic, endpoint telemetry, and cloud security findings to identify risk and drive remediation.
Experience developing or maintaining runbooks, procedures, standards, control documentation, dashboards, and operational metrics.
Working knowledge of security frameworks and best practices such as CIS Controls, NIST Cybersecurity Framework, MITRE ATT&CK, OWASP, and defense-in-depth principles.
Automation or scripting experience is preferred, including Python, PowerShell, API integrations, or infrastructure-as-code/security-as-code approaches.
Strong analytical, communication, collaboration, and problem-solving skills with the ability to work across local and remote teams.
Relevant certifications are a plus, such as CISSP, CCSP, AWS Security, Azure Security, GIAC, CrowdStrike, Palo Alto, Tenable, or other security/vendor certifications.
Work arrangement: This role will work a hybrid schedule in the St. Petersburg, FL office, 3 days/week.
Franklin Templeton offers employees a competitive and valuable range of total rewards – monetary and non-monetary – designed to support their well-being and recognize their time, talents, and results. Along with base compensation, employees are eligible for an annual discretionary bonus, a 401(k) plan with a generous match, and recognition rewards. We also offer a comprehensive benefits package, which includes a range of competitive healthcare options, insurance, and disability benefits, employee stock investment program, learning resources, career development programs, reimbursement for certain education expenses, paid time off (vacation / holidays / sick / leave / parental & caregiving leave / bereavement / volunteering / floating holidays) and a motivational wellbeing program. We expect the annual salary for this position to range between $110,000 – $130,000, depending on location and level of relevant experience, plus discretionary bonus.
At Franklin Templeton, we believe your benefits should support your life, your goals, and your future. That’s why we offer a comprehensive Total Rewards package designed to help you thrive both personally and professionally.
- Paid Time Off: Three weeks of PTO in your first year
- Health Coverage: Competitive medical, dental, and vision insurance to support your well-being
- Retirement Savings: 401(k) plan with an 85% company match on pre-tax and/or Roth contributions, up to IRS limits
- Equity & Investing: Employee Stock Investment Plan (ESIP) with discounted share purchase opportunities
- Learning Education Assistance Program (LEAP): To support your ongoing growth and career advancement
- Employee Investment Benefits: Opportunity to purchase company funds with no sales charge
Franklin Templeton is an Equal Opportunity Employer. We are committed to providing equal employment opportunities to all applicants and employees, and we evaluate qualified applicants without regard to ancestry, age, color, disability, genetic information, gender, gender identity, or gender expression, marital status, medical condition, military or veteran status, national origin, race, religion, sex, sexual orientation, and any other basis protected by federal, state, or local law, ordinance, or regulation.