Description:
The Security Engineering role is part of a team responsible for administering security projects designed to safeguard the bank's information systems. The Engineer focuses on defining and documenting projects, creating and executing project plans, engaging in project cost management, resource management and performing periodic reporting. Acts as a subject matter expert who uses expertise to resolve complex problems in consideration of established policies, guidelines or processes.
Role Objectives
- Works with internal IT Application, Infrastructure, Network and Support teams to ensure that security controls are implemented at all significant and relevant phases of IT processes.
- Configures firewall rulebase and objects.
- Configures system and network related parameters.
- Performs IDS/IPS configuration, updates and tuning.
- Participates in incident response and investigations; tracks and documents the remediation process.
- Coordinates and performs security audits and vulnerability assessments to determine internal security procedures and compliance requirements.
- Reviews security event log data and investigates anomalies
- Implements and supports information security solutions including security architectures, change and configuration management and security product integration.
- Performs testing to evaluate new products for network and system controls.
- Provides training to Help Desk staff on access request procedures
- Adheres to project management methodology/SDLC/PLC processes as it relates to projects and their implementation
Qualifications And Skills
- 2 years experience supporting IT Security tools and applications.
- Bachelor’s degree in Computer Science or related field.
- Process documentation, flow charting and re-engineering experience.
- Some Project Management Experience a plus
- Encryption technologies and PKI infrastructure
- Knowledge of Information Security regulatory requirements, codes and industry guidance such as NIST 800-53, ISO27001, CIS and Cobit.
- Ability to utilize resources to contribute valuable input to Information Security projects and Risk Assessments, e.g. ISACA, CIS, FS-ISAC.
- Networking technologies (TCP/IP/etc…) and protocols (SSL, SSH, LDAP, SMTP, DNS, etc.).
- Microsoft Active Directory.
- Familiarity with security monitoring concepts.
- Administration of more than Palo Alto Firewall, Checkpoint Firewall, Imperva Waf, Tufin
- Strong verbal and written communication skills.
- Ability to communicate effectively to all levels in the organization and adapt information delivery based on audience.
- Ability to communicate information security concepts across a broad range of technical and non-technical staff.
- Ability to multitask and work under tight deadlines.
- Ability to raise awareness and issues to executive leadership, engage leaders and stakeholders in understanding their roles in delivering enterprise Change, Configuration and Release Management process.
- Good communication and written skills.
- Self motivated and ability to work within stringent time frames.
- Strong analytical and investigation skills.
- Strong team player.
- Experience dealing with both technical and non technical staff.
- Weekend and late night work will be required on occasion for support.