SUMMARY: Information Security Engineers are responsible for establishing and maintaining a corporate-wide information security technology program to ensure that information assets are adequately protected. This includes having an up-to-date understanding of the latest security threats, trends, and technologies, managing and supporting existing security solutions, evaluating, designing, and implementing new technical security controls and working to meet security objectives.
ESSENTIAL DUTIES AND RESPONSIBILITIES include the following. Other duties and special projects may be assigned.
- Assist in the design and implementation of the security infrastructure.
- Configure, upgrade, and troubleshoot various information security technologies such as anti-virus and email security solutions.
- Perform monitoring for security alerts for various systems and databases, alerting management to security issues and making recommendations on proposed resolutions.
- Assist in managing third-party SSL certificates for company websites.
- Assist in maintaining all technical security controls.
- Make recommendations on improvements to reduce the frequency and duration of incidents impacting confidentiality, integrity, and availability of the organization's data.
- Represent Information Security at change control meetings.
- Participate in disaster recovery activities as needed.
- Support end-user community with security-related issues.
- Must be able to work outside normal hours in order to perform diagnosis and/or implementation of product releases or changes, so that normal workflow is not interrupted.
- On-call duties will be required in a team environment.
- Perform additional duties as assigned.
- Perform data analysis of data derived from system logs and reports.
- Assist in the selection, testing, implementation, documentation, operation, and maintenance of various information security technologies such as authentication devices, access controls, firewalls, IDS/IPS/SIEM systems, malware detection systems, forensic, and vulnerability management tools.
- Interface with external vendors on hosted security services provided to the organization.
- Work with IT and business units on new and existing projects to identify security requirements that will ensure the confidentiality, integrity, and availability of the organization's assets.
- Assist with providing reports, presentations, and recommendations covering the operational aspects of information security to IT senior management.
- Assist with internal and external audit requests.
- Adhere to and comply with applicable federal and state laws, regulations, and guidance, including those related to anti-money laundering (i.e. Bank Secrecy Act, US PATRIOT Act, etc.).
- Adhere to Bank policies and procedures and complete required training.
- Identifies and reports suspicious activity.
EDUCATION
Bachelor's Degree in Information Systems or equivalent combination of related education and experience required.
EXPERIENCE
- Working experience with security technologies such as firewalls, DLP solutions, vulnerability scanners, anti-virus solutions, SIMS, email gateway solutions, and content proxies is required.
- At least 3 years of IT experience working extensively on network and data security infrastructure and analytical experience required.
KNOWLEDGE, SKILLS AND ABILITIES
- Familiarity with bank security policies and government regulations pertaining to information security preferred.
- Strong system administration, network, security, and troubleshooting skills.
- Working knowledge of network infrastructure, including routers, switches, firewalls, and associated network protocols and concepts required.
- Detail-oriented with strong organizational and prioritization skills.
- Strong communication and written skills.
- Ability to perform multiple projects simultaneously.
- Working knowledge of Microsoft Word, Excel, PowerPoint, and Visio.
CERTIFICATES, LICENSES, REGISTRATIONS
- CISSP Certified Information Systems Security Professional preferred.
- SANS GIAC preferred.
- CCNA/NP preferred.
- Security + or related security certification preferred.
Helping diverse candidates find great careers is our goal. The information you provide here is secure and confidential.
#J-18808-Ljbffr