SecOps Security Engineer

About The Position

Requirements

• Bachelor’s degree in Computer Science, Information Technology, or a related field. Advanced degree or certifications are the preferred
• 3-5 years of hands-on information security engineering and administration experience
• Demonstrated technical knowledge of perimeter security devices and configuration
• Proficiency in virtualized environments, including substantial experience with VMware and other virtualization technologies
• Ability to assess problems and situations possesses analytic ability and good judgment
• Demonstrate effective business communication and technical writing skills
• In-depth knowledge of financial institution regulations, including NCUA (National Credit Union Administration), GLBA (Gramm-Leach-Bliley Act), and PCI DSS (Payment Card Industry Data Security Standard)
• In depth working knowledge of a variety of network perimeter security technologies including: Web Filter (ForcePoint) Security Information and Event Management (SIEM) (SPLUNK) Intrusion Detection/ Protection Systems DLP - Network Based Data Loss Prevention Vulnerability Scanners (Nessus) Zero Day technologies (FireEye/Trellix) Email security technologies Cisco Secure Workload (CSW) Cisco Identity Services Engine (ISE) XDR solutions (Cisco AMP, Trellix, MS Defender)
• Working knowledge of Security Risk Assessment Methodology, Vulnerability Analysis and strong knowledge of SIEM technology (SPLUNK)
• Monitor and maintain network security appliances to ensure the integrity of all systems from both internal and external entities.
• Accurately document current and future InfoSec systems configuration and changes following PFFCU’s change control guidelines.
• Tier 2 problem escalation contact including rotating afterhours support
• Develop a working knowledge of the business side of PFFCU and be able to effectively interface with other IT teams using the technology.
• Strong project skills required, specifically the ability to maintain focus and complete projects with multi-month timeframes
• Worked with third party service provider
• Ability to handle multiple projects at the same time
• Ability to think logically and visualize abstract concepts
• Ability to prioritize multiple tasks
• Ability to work varying hours, sometimes includes evening and weekend work
• Ability to participate in an on-call rotation

Responsibilities

• Design, implement, and manage SIEM solutions for centralized security monitoring, advanced threat detection, and comprehensive incident response, leveraging extensive experience to optimize and enhance security operation
• Manage and monitor intrusion detection and prevention systems, responding to suspicious activities
• Deploy and maintain network-based DLP solutions and develop policies to ensure data privacy
• Conduct regular vulnerability assessments with tools like Nessus and work on remediation
• Deploy zero-day threat protection and develop response strategies
• Manage endpoint protection technologies to guard against malware
• Implement identity and access management solutions like Okta and RSA
• Architect and configure secure network solutions, including FW, NGFW, Web Content Filtering
• Maintain security architecture documentation and generate regular security posture reports
• Collaborate with IT and compliance teams, providing guidance on security best practices

Benefits

• EXCELLENT MEDICAL, DENTAL, VISION BENEFITS: 75% to 95% of premiums covered by PFFCU
• 401K – PFFCU contributes automatic 6% regardless of employee contribution after 1 year
• Great benefits, paid time off, and more!