Systems Security Engineer II or III

About The Position

Requirements

• Four-year degree in Computer Science or equivalent required, or a combination of education and experience.
• At least six years of experience in network security and/or systems management with a focus on information security required (for SSE II).
• At least 8 years of experience in network security and/or systems management with a focus on information security required (for SSE III).
• Computer, peripherals, software, hardware including Windows, Linux/Unix.
• SIEM, SCCM, DLP, AV/AS, IPS/IDS, Firewall, Application Whitelisting, Basic Penetration Testing, Web and Email Filter, Encryption, Password Management, Identity Access Management, Mobile Access Management.

Nice To Haves

• Certification in the Technology Industry related to Cybersecurity, such as, but not limited to, Security+, CEH, GSEC, OSCP and CISSP, preferred (for SSE II).
• Certification in the Technology Industry related to Cybersecurity, such as, but not limited to, Security+, CEH, GSEC, OSCP and CISSP, preferred (for SSE III).
• Results oriented, high energy, and self-motivated (for SSE III).
• Prior/Current experience with Banking or Financial Institutions helpful (for SSE III).
• Knowledge of Banking/Financial Institution regulatory requirements helpful (for SSE III).
• Experience with the following toolsets preferred: Carbon Black, Cylance +Optics, Cisco ISE and Umbrella, Meraki, Palo Alto Panorama and firewall o/s, Proofpoint email security and ObservIT, Digital Persona HID multi-factor authentication, F5, Varonis (for SSE III).

Responsibilities

• Applies knowledge of controls, threats, vulnerabilities, risk, and technical systems to assist with future-state security planning and roadmaps to harden systems and close vulnerabilities.
• Develops a deep understanding of the network and security infrastructure, systems, and tools to improve security strategies relative to the vision of the business while meeting compliance obligations by evaluating cyber security threats, risk, vulnerabilities, and processes to determine relative risk to the product, system, and organization.
• Implements security systems by specifying intrusion detection methodologies and equipment; directing equipment and software installation and calibration; preparing preventive and reactive measures; creating, transmitting, and maintaining keys; providing technical support; completing documentation.
• Investigates intrusion detections, malware, file propagation and any other form of malicious activity on the network.
• Rolls out, maintains and improves strict security policies to reflect industry best practices and banking sector's compliance obligations.
• Develops and maintains documentation critical to operating and executing the security program using tools such as Microsoft Visio and office.
• Analyzes security incidents using research and forensic techniques.
• Administers and monitors network security equipment and systems including but not limited to Data Loss Prevention (DLP), Security Incident and Event Monitoring (SIEM), anti-virus/anti-malware, application whitelisting, web and email security, Identity Access Management (IAM), Mobile Access Management, firewall, Intrusion Prevention Systems (IPS), Encryption, Virtual Private Networks (VPN), and other systems critical to the security of the corporate network.
• Continually develops security skills and competencies. Helps transform control culture from current detective controls to preventative controls.
• Prepares implementation, rollout and rollback plan for security tool introduction to the organization.
• Adheres to existing disciplines in place for software/application change control processes in order to meet both regulatory and business requirements.
• Provides superior customer service to all employees at multiple locations.
• Meets with auditors and compliance officers as needed to represent security.
• Collaborates with internal IT teams to coordinate projects and critical troubleshooting.
• Works on multiple projects simultaneously and controls project deliverables and expectations. Troubleshoots documents preparation and train other team members as necessary.
• Performs other duties as assigned.
• Mentors and develops security engineers responsible for delivering and supporting the technology infrastructure, toolsets/solutions, and critical systems. Provides technical expertise and provides training to other Technology department personnel on existing threats and vulnerabilities.
• Possesses a thorough understanding of all aspects of computer, network, and physical security with the ability to architect, design, implement, support, and evaluate network + cyber security tools and services.
• Administers and monitors network security equipment and systems including Data Loss Prevention (DLP), collaborate with SEIM/SOC provider, Endpoint Detection and Response (antivirus/anti-malware), application whitelisting, web and email security), Mobile Access Management, firewall, Intrusion Protection Systems (IPS), Encryption, Virtual Private Networks (VPN), Multi-Factor Authentication (MFA), and other systems critical to the security of the corporate network.
• Assesses network risk and cyber security vulnerabilities using penetration testing tools for information gathering (vulnerability scanners, NMAP), analyzing and exploitation.
• Ensures the confidentiality, integrity and availability of the data residing on or transmitted to/from/through enterprise workstations, servers, and other systems and in databases.
• Monitors industry trends, analysis, threat reports, and vulnerabilities, and ensures mitigation of known and anticipated threats. Analyzes security incidents using research and forensic techniques.
• Partners with IT Compliance Administrator to respond to auditing body information requests, communicate IT security policies and procedures, and implement approved recommended changes.
• Maintains up-to-date knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectors.
• Reviews and maintains the enterprise’s security documents (policies, standards, baselines, guidelines, and procedures) and the security awareness training program.
• Periodically tests and updates systems to ensure they are operating effectively.
• Works on multiple projects simultaneously and control project deliverables and expectations.

Benefits

• Group Health, Dental, and Vision Insurance
• Generous Paid Time Off (PTO)
• Volunteer Time Off (VTO)
• 401(k) plan with lucrative company match
• Tuition assistance
• Company Paid Life Insurance
• Paid Parental Leave
• Lifestyle Accounts that provide employees with reimbursement for the things that are most important to them such as childcare, student loan payments, gym memberships, pet insurance and much more.
• Team Member Banking - a suite of products and services with special benefits for employees