Information Security Engineer

What You Will DoInitiate, develop, implement, and validate security programs and controls in accordance with organization's established security standards and practices. Collaborate with the Information Security team in the identification, protection, detection, response, and recovery from security threats, operational, and development vulnerabilities. Responds to internal and external audits, assessments, and examinations. Review security and related SIEM, IDS/IPS systems, vulnerability scans, logs, dashboards, and alerts for potential security issues and implement or recommend remediation steps or escalation. Review, recommend, identify, and implement security controls for online banking applications. Assist in creation of threat models and assessments supporting online banking platform development and operation. Recommend and implement automation frameworks to scale security responsiveness and mitigation. Monitor performance, schedule upgrades, and collaborate with network services teams for security network optimizations and maximization. Provides feedback to improve and enhance existing procedures. Completes any other job related duties needed to help drive to our Vision, fulfill our Purpose, and abide by our Organization's Values.What We RequireBachelor degree in Computer Science or equivalent field; or comparable education or comparable experience. Minimum of six (6) years of cybersecurity related work experience. Minimum of two (2) years of reviewing, assessing, or monitoring cloud or hybrid model deployed solutions experience. Knowledge of the CIS Top 20 Controls and OWASP security model and web application security. Implementation of security orchestration and automation frameworks experience. Experience implementing network and host security technologies including firewalls, WAF, proxy services, vulnerability scans, and IPS/IDS. Superior analytical and problem-solving skills. Excellent communication, documentation, and interpersonal skills. Accuracy, attention to detail, and confidentiality. Work well with others and independently. Provide seven day a week, twenty-four hour a day on call support.Ideal Candidate Will HaveCISSP or other advanced security certification. Skilled in identifying, investigating, and remediating security threats, exploits, and attacks across various vectors. Understanding, experience, and capability in reviewing various systems logs and alerts including Windows Event Logs, SIEM, firewall, and other related systems logs. Familiarity with various SDLC methodologies and development environments.