Senior Security Engineer

We’re an energized bunch, who love to be at the forefront of innovation. We make it our mission to develop and stay ahead of the latest trends and technology. Our goal? To put customers at the core of what we do and to deliver solutions that drive transformation and unlock the potential of people and businesses.

Required Experience:

Good understanding of server-client computing and relational database environments.

Knowledge of security tools, security best practices including FFIEC CAT, NIST CSF, ISO2700 and regulatory requirements including PCI.

Hands-on server troubleshooting experience.

Strong understanding of firewall concepts and security in depth, and the risk-based approach to security

Strong knowledge of Information Security technologies and solutions

Application of defense in depth

IT Systems Architecture/Infrastructure knowledge

A minimum of 5 years of combined experience in information security, information technology and related services and management.

Experience in the FinTech or Financial Services industry is a plus

Previous experience designing and building Information Security solutions

Previous experience integrating Information Security technologies through M&A is a plus

Experience with complex projects that have enterprise-wide impact and require subject matter expertise of process improvement areas and process improvement tools

Bachelor's degree from an accredited college or university, or equivalent experience. A degree in Computer Science, Computer/Data Systems Management or a related field or discipline is preferred

Certification in one or more of the following areas will be desired but not required: Certified Information Security Professional (CISSP), GIAC Security Essentials Certification (GSEC), Certified Ethical Hacker (CEH), Certified Red Hat Engineer (RHCE), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), and/or Microsoft Certified Solutions Expert (MCSE). If incumbent does not possess the CISSP certification, they must obtain the certification before their one-year anniversary with the Corporation

Responsibilities & Deliverables:

Serve as the lead for security driven projects that include the implementation of technical controls;

Serve as a consultant to other systems engineering teams, providing security-relevant subject-matter expertise in support of the team’s engineering efforts.

Maintaining a comprehensive and holistic system view while addressing stakeholder security and risk concerns;

Ensure adequate security controls are defined and verified to be implemented;

Ensuring the effectiveness and suitability of the security elements of the system as an enabler to mission/business success;

Ensuring that relevant threat and vulnerability data is considered in support of security-relevant decisions;

Providing input to analyses of alternatives and to requirements, engineering, and risk trade-off analyses to achieve a cost-effective security architectural design for protections that enable mission/business success;

Providing the evidence necessary to support assurance claims and to substantiate the determination that the system is sufficiently trustworthy; and

Conducting security risk management activities, producing related security risk management information, and advising the engineering team and key stakeholders on the security-relevant impact of threats and vulnerabilities to the mission/business supported by the system.