Overview
The Security Engineer is responsible for incorporating Information Security best practices and guidelines into system designs during business initiative deployments. As a technical and engineering subject matter expert in Cyber Security domains—including network, application, cloud, and enterprise security controls—they collaborate extensively with the Cyber organization. This role includes conducting threat modeling, deploying, and maintaining secure solutions, and leveraging deep technical understanding and robust security engineering expertise to effectively mitigate business challenges and enhance organizational security.
Principal Duties & Responsibilities
- Design, develop, and deploy security architectures and strategies to secure systems and networks against cyber threats.
- Collaborate with key stakeholders, including the Technology organization, Business units, Legal, Internal Audit, and Compliance, to establish and enforce security policies.
- Work with cross-functional teams to integrate security features into the entire development lifecycle of products and services.
- Conduct comprehensive risk assessments, threat modeling, and vulnerability analyses to proactively identify and address potential security loopholes.
- Drive continuous improvement initiatives to enhance security processes and response capabilities, staying ahead of emerging threats.
- Partner with the Vulnerability Management team to support triage investigations around identified critical vulnerabilities.
- Define and operationalize program metrics to understand program health, increase program adoption, and report on those metrics to key stakeholders.
- Act as a security subject-matter expert for Cyber Security by providing best practice guidance on how systems should be deployed or architected.
- Perform periodic control tests to identify and exploit vulnerabilities.
- Participate in or lead security audits to ensure compliance with security policies and regulations.
Qualifications
- 4-6 years of experience in Cybersecurity and Technology related fields.
- Strong understanding of network protocols, firewalls, VPNs, IDS/IPS, and other security technologies.
- Experience with security information and event management (SIEM) systems, antivirus software, and vulnerability assessment tools.
- Knowledge of programming languages such as Python, C, C++, Java, and scripting languages like Bash, PowerShell for automating tasks and developing security solutions.
- Understanding of cryptography standards, encryption algorithms, digital signatures, and secure communication protocols.
- Understanding of securing virtual machines, hypervisors, and containerized environments on host systems.
- Experience performing control tests to identify and exploit vulnerabilities in systems.
- Experience with endpoint protection platforms (EPP), endpoint detection and response (EDR) tools, and next-generation antivirus solutions.
- In-depth knowledge of securing various operating systems (Windows, Linux) through hardening techniques and best practices.
The following credentials, licenses, and/or degrees are desired but not required if appropriate experience exists:
- Certified Information Security Manager (CISM)
- GIAC Security Essentials (GSEC)
- Certified Cloud Security Professional (CCSP)
- Microsoft Certified: Azure Security Engineer Associate
Education
- Bachelor's Degree in Computer Science, or related discipline.
Special Information To Candidates
- Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities.
- Please view Equal Employment Opportunity Posters provided by OFCCP here.
- The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)
- Reasonable accommodation may be made to assist individuals with disabilities to complete the online application process. Please contact our Human Resources Department at 305-577-7680 or by e-mail at employment@citynational.com.