Security Engineer III

Security Engineer III

Information Technology

The Information Technology team supports almost every area of the Bank. Utilizing technology solutions to collect and interpret data for business strategies and providing infrastructure for all business operations. Puneet Rawal, the Chief Information Officer for Credit One Bank, explains why an IT professional should join his team by bringing up one word repeatedly: Growth, with a capital G. “Individuals who have growth aspirations for their career, will not find a better place. You want to be in a growing company that can support your growth. We provide that unique mix.” Click here to learn more about the IT team.

Position Summary

The primary objective of the Senior Security Engineer is to provide support to the Security Analysts on the team, deploy new security tools, and maintain existing security tools.

The ideal candidate will also have extensive infrastructure experience including Windows Servers, Linux Services, TCP/IP, DNS, Encryption, E-Mail Security, and Active Directory.

Essential Job Functions:

• Track and ensure remediation of technical items identified from vulnerability management programs, audits, penetration testing, etc.
• Participate in operational management of security systems.
• Troubleshoot and solve a wide variety of security issues.
• Continual and daily research on what is happening in the security world – threat levels, new exploits, vulnerability research, etc.
• Develop and maintain security design and configuration documentation to ensure effective delivery and continual improvement of network solutions.
• Collaborate with IT and other teams to address gaps in security controls or solutions.
• Participate in the implementation of security best practices and platforms.
• Perform other duties as assigned.

Position Requirements:

• 3-5 years of relevant experience in offensive and defensive security tactics
• Extensive knowledge of hardware systems, system software, networks, and application software development lifecycle methodologies
• Ability to build architectural documentation for new and existing projects.
• Excellent communication skills, verbal and written.
• Must possess a strong teamwork ethic, with the ability to work with personnel at all levels in all departments.
• Familiar with audit and compliance functions
• Good knowledge of computer terminology.
• Understanding of NIST standards and experience implementing controls mandated by the standards.
• Outstanding communication skills, both oral and written
• An inquiring mentality with the ability to think analytically and provide effective feedback, where appropriate
• Work independently with guidance only in most sophisticated situations
• Experience with security systems including SIEM, IDS/IPS, Next Generation Firewalls, DLP, FIM, SAST, database security, etc.