IT Security Consultant - Web Security
Apply: locations Hartford, CT, time type Full time, posted on Posted 3 Days Ago, job requisition id JR0028770
Together we fight for everyone’s opportunity for a better financial future.
We will do this together — with customers, partners, and colleagues. We will fight for others, not against: We will stand up for and champion everyone’s access to opportunities. The status quo is not good enough … we believe every individual and every community deserves access to financial opportunities. We are determined to support both individuals and communities in reaching a better financial future. We know that reaching this future depends on our actions today.
Like our Purpose Statement, Voya believes in being bold and committed to action. We are committed to a work environment where the differences that we are born with — and those we acquire throughout our lives — are understood, valued, and intentionally pursued. We believe that our employees own our culture and have a responsibility to foster an environment where we all feel comfortable bringing our whole selves to work. Purposefully bringing our differences together to positively influence our culture, serve our clients and enrich our communities is essential to our vision.
Get to Know the Opportunity:
The Senior Security Systems Engineer will be part of a leading-edge security systems team transforming a modern-day enterprise infrastructure to an agile, agnostic, and highly trusted computing platform. This position will be responsible for the design, implementation, and support of the web security platforms/toolsets necessary to protect the financial future of Voya customers.
The Contributions You Will Make:
- Platform engineering responsibilities for supported platforms including:
- Design requirements.
- Configuration to enable value to the enterprise.
- Oversight of day-to-day operational support responsibilities.
- Integration of the technical tools with other technical platforms.
- Adoption of the technical tools deeper into the enterprise.
- Experience with:
- IBM Security Verified Access Manager/WebSeal, MFA implementations required.
- IBM Security Verified Access Manager (ISVA) required.
- Prior experience working with Ping Federate, IBM Datapower a plus.
- Web reverse proxies.
- RESTful/SOAP services.
- Various forms of Web Authentication (Mutual TLS, SAML, OAuth, XMLSig, etc.).
- Strong XSLT, Javascript, Bash shell scripting required. Some experience with Perl, Python, and other scripting languages preferred.
- GIT or other version control system.
- Knowledge of WS-* standards.
- Ability to understand and troubleshoot encryption (SSL/TLS), web traffic, and packet analysis.
- Assisting in defining standards, guidelines, leading practices, metrics, and continuous validation of system and capabilities.
- Troubleshooting unique and complex problems related to processes, infrastructure, & web security.
- Expected to learn and implement new security products as needed.
- Develop pioneering approaches to emerging Information Security industry trends and assist with automation of the environment.
Minimum Knowledge & Experience:
- Bachelor’s degree in Computer Science, Engineering or a directly related field; Master’s Degree preferred.
- 5+ years of experience with an enterprise level IT environment.
- 3-5 years of experience in monitoring, developing, and implementation of information security systems.
- Experience in the consultative approach and support the cross-organizational implementation of IT services.
- Leverage a wide range of security technologies including, but not limited to: logical access controls, identity and access management, LDAP, security, incident response, privileged access management, database and system monitoring, end-user password management, and single sign-on systems.
- Experience effectively working directly with clients, team members, technical experts, professional staff, and management as needed to provide operational support.
- Experience planning and executing software and/or infrastructure upgrades with minimal service disruption.
- Experience using ServiceNow a plus.
- Unix/Windows/VMWare hands-on experience.
- Familiarity with IP/Network/Cloud infrastructure components.
- Information Security Principles & Technologies.
- Disciplined in documentation maintenance.