Senior Cyber Security Operations Engineer

About The Position

Requirements

• Bachelor’s Degree, Information Systems, Computer Science, Information Security or related field (Desired
• 7-10 years IT security or information security experience.
• Proven ability to engage with Senior Management and regulators.
• Knowledge of technical infrastructure, networks, databases and systems.
• Knowledge and related experience in IT security issues and techniques.
• Effective communication skills, focusing on presentation of technical information.
• Strong analytical skills and attention to detail.

Nice To Haves

• Advanced technical degree and/or Security Certifications preferred.

Responsibilities

• Perform activities that ensure the security of corporate data, privacy, and record confidentiality
• Participate in periodic risk assessments, to ensure compliance with security standards
• Manage processes to assess cyber risk, and facilitate the application of fixes, patches and updates. Coordinate with IT Infrastructure the installation of manual patching of servers
• Implement compliance activities with IT Policies, procedures and tests including the Written Information Security, Asset Management, Disaster Recovery, Change Management, Problem Management, and Security Plans
• Assist in coordination of cyber drills, exercises and assessments with internal and external stakeholders
• Identifies security risks and exposures, and participate in response activities
• Provide reporting needed for IT Control monitoring and responses to external audits, external penetration tests and vulnerability assessments. Fulfill audit requests by providing supporting evidence.
• Evaluates vendor security assessments and assists in managing the program
• Report on compliance activities related to IT NERC, SOX, MA Privacy, PCI and other IT compliancy programs for the company.
• Follow IT policies and procedures to ensure the security of information assets against unauthorized or accidental modification, destruction, or disclosure. Work with Application Owners to obtain proper documentation for system/application changes
• Work with Application Owners to define critical security groups and process for maintaining ‘least privileged’ access to systems
• System access security administration of critical financial and key critical business systems
• Assist the Director of Information Security, and other Subject Matter Experts, in the evaluation and implementation of tools, policies and configurations to improve data security and business controls. Research new technologies and/or processes that will assist in achieving these goals.

Benefits

• competitive salaries
• a consumer-driven health plan
• dental and vision coverage
• flexible work
• company-paid holidays
• a, robust, highly competitive retirement plan
• educational assistance