Security Engineer - Vulnerability Management
About The Position
At American Financing, we're innovators with imagination. We do what it takes to help customers achieve their financial goals. And we stay ahead of the competition by challenging ourselves to become more efficient. We are one of the fastest-growing national mortgage lenders because we don't follow the status quo. See what it's like to work for a national mortgage lender that truly values its employees. Wherever your passions lie, you can find rewarding work and new opportunities here. Casual work environment Family-owned, Customer-focused Denver Post Top Workplace Top 50 Family-Owned Business Best of Colorado Business 5000 Fastest-growing Private Company JOB SUMMARY American Financing is seeking a talented and enthusiastic person to become the newest member of our growing Cybersecurity team at American Financing. The position is primarily responsible for evaluating deployed systems (3rd party and in house software, servers, software, network infrastructure) for weaknesses and risk. This role requires a service oriented mentality, a high sense of ownership of the problems and requests assigned, focus on managing and resolving issues, and proactively escalating any issues.
Requirements
- 1-3 years of experience in Cyber Security, Vulnerability Management, or a related field
- Knowledge of common cyber security analysis tools & techniques
- Strong critical thinking and problem-solving skills required
- Ability to take ownership of an issue and take it to completion
- Experience with at least 4 of the following: JIRA, GIT (Bitbucket), Sophos, PaloAlto, GCP, Gsuite, Active Directory, Windows, Linux
Nice To Haves
- CompTIA Security+, CompTIA Network+, or similar certificate a plus
Responsibilities
- Perform tasks as directed, to include, but not limited too:
- Running Active Directory reports and analyzing permissions.
- Audit Gsuite permissions, groups, and multi-factor authentication.
- Monitor Windows and Linux OS patch levels.
- Check patching/versions on other software as needed.
- Run reports in server and raise any issues found.
- Scan networks looking for misconfigurations, excessive open ports and unapproved software.
- Assist in the drafting and maintenance of our Risk Registrar.
- Knowledge of CI/CD pipelines and able to comment on secure software development practices
- Administer Sophos EDR/AV.
- Troubleshoot malware alerts and run scans.
- Audit systems to ensure Sophos is installed and working.
- Perform other tasks and duties as needed/requested.
Benefits
- Medical, Dental, Vision, 401k
- Paid time off and sick days
- Paid holidays
- Long-term paid disability
- Paid maternity and bonding leave
- Full desk equipment provided
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Entry Level
Education Level
No Education Listed
