If you’re looking for a meaningful career, you’ll find it here at Webster. Founded in 1935, our focus has always been to put people first--doing whatever we can to help individuals, families, businesses and our colleagues achieve their financial goals. As a leading commercial bank, we remain passionate about serving our clients and supporting our communities. Integrity, Collaboration, Accountability, Agility, Respect, Excellence are Webster’s values, these set us apart as a bank and as an employer.
Come join our team where you can expand your career potential, benefit from our robust development opportunities, and enjoy meaningful work!
Position Overview:
The Cybersecurity Engineer will be responsible for the design, implementation, and maintenance of critical security controls across our enterprise. This role will have a specific focus on Endpoint Security, Privilege Access Management, and Data Loss Prevention. The ideal candidate will be responsible for safeguarding our organization’s data, managing access to critical systems, and ensuring endpoint devices are secure. This position plays a key role in identifying and mitigating risks, improving security posture, and responding to security incidents across the organization.
Key Responsibilities:
Security Controls Management
- Design, implement, and maintain critical security controls to protect sensitive data and systems.
- Monitor and analyze security systems for potential threats, vulnerabilities, and incidents.
- Develop and enforce security policies, standards, and procedures.
Privileged Access Management
- Supporting the engineering aspects of the Privileged Access Management program, ensuring secure and efficient access control mechanisms.
Endpoint Security
- Deploy, configure, and manage endpoint security solutions (e.g., antivirus, EDR, endpoint encryption).
- Monitor endpoint environments for suspicious activities and potential threats.
- Ensure endpoint devices comply with security policies and standards.
Data Loss Prevention (DLP)
- Develop, implement, and maintain DLP strategies and technologies to prevent unauthorized access or transfer of sensitive information.
- Integrate Device Controls with DLP systems to prevent unauthorized copying of data.
Risk Assessment and Management
- Perform regular risk assessments to identify and mitigate potential security risks.
- Collaborate with cross-functional teams to assess the security impact of new projects and technologies.
- Recommend and implement security controls to reduce risk exposure.
Compliance and Auditing
- Ensure compliance with industry standards and regulatory requirements (e.g., SOX, PCI-DSS, GDPR).
- Participate in internal and external security audits, providing necessary documentation and support.
Security Awareness and Training
- Develop and deliver security awareness training programs for employees.
- Promote a culture of security awareness and best practices within the organization.
- Stay current with the latest cybersecurity trends, threats, and technologies.
Qualifications
- Bachelor's degree in Computer Science, Information Security, or a related field.
- 5+ years of experience in cybersecurity, with a focus on EDR, CASB, DLP, and Endpoint Security technologies.
- Strong knowledge of security frameworks and standards (e.g., NIST, ISO 27001).
- Experienced in implementing and managing CASB solutions.
- Proficient in DLP concepts and methodologies to safeguard sensitive information.
- Experience with endpoint security solutions.
- Proficiency in security incident response and investigation.
- Strong analytical and problem-solving skills.
- Excellent communication and interpersonal skills.
- Relevant certifications (e.g., CISSP, CISM, CEH) are highly desirable.
The estimated salary range for this position is $120,000.00 to $135,000.00. Actual salary may vary up or down depending on job-related factors which may include knowledge, skills, experience, and location. In addition, this position is eligible for incentive compensation.
#J-18808-Ljbffr