Job description 

Key Responsibilities and Duties

• Monitors analysis of system access logs, ensuring only permitted individuals have access to company information and Performs complex risk assessments and executes tests of data processing system to ensure functioning of data processing activities and security measures.
• Reviews violations of computer security procedures and discusses procedures with violators to ensure violations are not repeated.
• Trains users and promotes security awareness to ensure system security and to improve server and network efficiency.

Educational Requirements

• University (Degree) Preferred

Work Experience

• 3+ Years Required; 5+ Years Preferred

Career Level
7IC
 

POSITION SUMMARY:

The Senior Info Security Engineer will participate in the activities of a small, expert team that develops robust technical solutions and advanced analytics to enforce preventive threat detection and data loss prevention controls.  This role is part of the Security Technology Engineering team which is responsible for supporting the underlying security framework as well as collaborating and partnering with various Business Units (BUs) and stakeholders across the organization to implement effective threat detection controls. The Security Technologies Engineering Team will leverage various technical and non-technical datasets for early detection of threats and work closely with affected business units to ensure threat activities are managed effectively and efficiently.  The Senior Information Security Engineer is expected to be a self-starters, have a strong work ethic, leverage analytical and critical thinking and be resourceful in working as part of a global team.  The role also requires interfacing with other business units so the candidate must have strong verbal and written communication skills.

KEY RESPONSIBILITIES AND DUTIES:
 

Job Responsibilities include:

• Implement and maintain security solutions supporting various Cybersecurity programs.
• Implement monitoring mechanisms to ensure availability, integrity and confidentiality of the solutions. 
• Build and maintain operation and configuration documentation and create and maintain diagrams. 
• Work with Cybersecurity risk and security operation teams to enhance the security posture.
• Work with vendors to identify capabilities that would support process automation.
• Conducting proactive research to analyze security weaknesses and recommend appropriate strategies.
• Knowledge and experience with information security controls, infrastructure and implementation techniques.
• Attend daily standups, technical project meetings, and serve as a subject matter expert in providing guidance to ensure application and infrastructure configurations
• Document, formulate and enforce areas of security improvement that balance risk with business operations and do not diminish efficiencies or innovation.
• Adhere to Change Management & Incident Management processes and participate in Change Management activities to support application solutions.

QUALIFICATIONS:

Required skills 

• 3 years of experience in a Cyber security engineering or IT System engineering role.
• 1-2 years of experience in an engineering role supporting either Certificate Lifecycle Management, Hardware Secure Module, and Key Management Services systems with the following responsibilities:
  • Conduct product proof of concept initiatives 
  • Product implementation, management, and integration
  • Product maintenance (upgrades, business-as-usual, break fix, etc.)
• Highly proficient in engineering and debugging of complex IT systems
• Experience with at least one scripting language (Python, PowerShell, GoLang, Ruby, Bash, Perl, etc.)
• Experience administering back-end systems (Windows, Linux operating systems)

Preferred Skills

• Associate or Bachelor’s Degree in Computer Science, Cyber Security, or other related technical field of study.
• CISSP, Security+, CCSP, AWS, Azure (or equivalent) preferred
• Experience in supporting Venafi, KeyFactor, or AppViewX
• Foundational understanding of PKI and supporting services
• Experience working in Multi-Cloud environments
• Experience with automation tools such as Ansible or Terraform
• Strong comprehension of networking concepts
• Strong expertise with database concepts, and SQL queries/DBMS preferred.
• Experience with Splunk dashboards and queries
• Experience in Financial services industry.

#LI-RK1

Related Skills

Accountability, Adaptability, Business Continuity Planning, Cloud Computing Security, Collaboration, Communication, Compliance, Consultative Communication, Cybersecurity, Detail Oriented, General Risk Management, Network Security, Prioritizes Effectively