Job description

Job Description SUMMARY: Information Security Engineers are responsible for establishing and maintaining a corporate-wide information security technology program to ensure that information assets are adequately protected. This includes having an up-to-date understanding of the latest security threats, trends, and technologies, managing and supporting existing security solutions, evaluating, designing, and implementing new technical security controls and working to meet security objectives. ESSENTIAL DUTIES AND RESPONSIBILITIES include the following. Other duties and special projects may be assigned. Assist in the design and implementation of the security infrastructure. Configure, upgrade, and troubleshoot various information security technologies such as anti-virus and email security solutions. Perform monitoring for security alerts for various systems and databases, alerting management to security issues and making recommendations on proposed resolutions. Assist in managing third party SSL certificates for company websites Assist in maintaining all technical security controls. Make recommendations on improvements to reduce the frequency and duration of incidents impacting confidentiality, integrity, and availability of the organization's data. Represent Information Security at change control meetings. Participate in disaster recovery activities as needed. Support end-user community with security related issues. Must be able to work outside normal hours in order to perform diagnosis and/or implementation of product releases or changes, so that normal workflow is not interrupted On-call duties will be required in a team environment Perform additional duties as assigned. Perform data analysis of data derived from system logs, and reports Assist in the selection, testing, implementation, documentation, operation, and maintenance of various information security technologies such as authentication devices, access controls, firewalls, IDS/IPS/SIEM systems, malware detection systems, forensic, and vulnerability management tools. Configure, upgrade, and troubleshoot various information security technologies such as firewalls, VPN solutions, anti-virus, SIMS, DLP, vulnerability scanners, web filtering and email security solutions. Interface with external vendors on hosted security services provided to the organization. Work with IT and business units on new and existing projects to identify security requirements that will ensure the confidential, integrity and availability of the organization's assets. Assist with providing reports, presentations, and recommendations covering the operational aspects of information security to IT senior management. Assist with internal and external audit requests. Adhere to and comply with applicable, federal and state laws, regulations and guidance, including those related to anti-money laundering ( Bank Secrecy Act, US PATRIOT Act, etc.). Adhere to Bank policies and procedures and completing required training. Identifies and reports suspicious activity. EDUCATION Bachelor's Degree in Information Systems or equivalent combination of related education and experience required EXPERIENCE Working experience with security technologies such as firewalls, DLP solutions, vulnerability scanners, anti-virus solutions, SIMS, email gateway solutions and content proxies is requiredrequired At least 3 years of IT experience working extensively on network and data security infrastructure and analytical experiencerequired KNOWLEDGE, SKILLS AND ABILITIES Familiarity with bank security policies and government regulations pertaining to information security preferred. Strong system administration, network, security and troubleshooting skills. Working knowledge of network infrastructure, including routers, switches, firewalls and associated network protocols and concepts required Working knowledge of network infrastructure, including routers, switches and associated network protocols and concepts required. Detail oriented with strong organizational and prioritization skills. Strong communication and written skills. Ability to perform multiple projects simultaneously. Working knowledge of Microsoft Word, Excel, PowerPoint, and Visio. CERTIFICATES, LICENSES, REGISTRATIONS CISSP Certified Information Systems Security Professional preferred SANS GIAC preferred CCNA/NP preferred Security + or related security certification preferred

Requirements