Lead Security Engineer

THE ROLE

A technical and operational resource in Information Security and is responsible for the implementation and effective and efficient maintenance of related security technologies.

In addition, this individual has practical, advanced, and broad knowledge of Information Technology at large, with an understanding of related disciplines and how they interoperate.

This role is an active participant and contributor in implementation and troubleshooting efforts of security technologies and controls and aids in control design and monitoring efforts.

WHAT YOU WILL DO

Serves as a subject matter resource in the field of Information Security, maintaining a strong understanding of the field, its practices and controls, and its related technologies.

Stays abreast of current technologies, threats, vulnerabilities and exposures.

• Provides technical support to ensure the ongoing efficient and reliable operations of related security solutions and controls supporting business products and services.
• Proactively develops and maintains knowledge of information systems, security solutions, controls, processes, and their related components, and makes recommendations to improve the reliability, scalability, performance, or security of these systems as appropriate.
• Leverages technology to automate manual tasks and seeks to improve efficiency wherever practicable and appropriate. Assesses, recommends, and implements security process improvements.
• Develops, enforces and maintains Information Security controls, procedures, and standards. Works closely with Information Technology and business units to take a risk-based approach that security controls are properly implemented across the environment, both during design and after deployment.
• Leads security risk assessments and due diligence efforts to methodically analyze technology, solutions and processes, identifying risks from both a technical and business perspective, and recommending mitigation strategies to mitigate those risks to an acceptable level.
• Works and manages projects of moderate to advanced complexity and may allocates resources and budgets to meet project needs under minimal supervision.
• Receives broad goals and overall performance and project objectives from Management and assists in establishing and implementing the methods to attain them.
• Accountable for meeting assigned performance and project objectives including timelines and budgeting. Works on the most complex security projects, provides innovative suggestions for solutions and executes plans.
• Foster a collaborative and inclusive environment by acting as a resource for team members to address questions, obstacles, and guidance to promote success.
• Collaborates with other IT and business groups, and readily shares information to resolve problems.
• Assesses, evaluates, and presents security risk assessment data to wide range of peers and stakeholders

WHAT WE ARE LOOKING FOR

• Bachelor’s degree or equivalent experience in a related technical field.
• 5-6+ years of relevant work experience is required.
• Strong subject matter expertise in the field, with familiarity with other related security technologies, controls and processes.
• Solid knowledge of fundamental concepts, practices and procedures of particular information security disciplines, (e.g.

incident, vulnerability, compliance, cloud and application security and access management, business resiliency, etc.)

Demonstrated proficiency in and knowledge of implementation and post-production support for at least one Information Security related technology.

PREFERRED SKILLS, QUALIFICATIONS & EXPERIENCE :

• 7+ years of related Information Technology experience with 3+ years of Information Security-specific experience.
14 days ago