Systems Security Engineer II or III

Systems Security Engineer II This position will be hired as either a Systems Security Engineer (SSE) II or III depending on experience. Job Summary: The Systems Security Engineer II is responsible for working with cross‑functional teams to ensure that controls are properly designed, implemented, configured, and performing as expected in support of the company's security program and policies. This role designs, implements, and configures security tools and controls that enable the organization to detect and prevent computer and infrastructure security and cyber threats. The engineer will act as a subject matter expert on multiple security solutions and provide guidance to security team members and other IT teams on the adoption and support of these tools. The engineer identifies, prioritizes, and remediates cyber security risks and vulnerabilities, trains peers, prepares SOP documents, and troubleshoots projects. Primary Functions and Responsibilities: Apply knowledge of controls, threats, vulnerabilities, risk, and technical systems to assist with future‑state security planning and roadmaps to harden systems and close vulnerabilities. Research and analyze business trends and behavioral data to identify opportunities for improvements and new initiatives. Develop a deep understanding of the network and security infrastructure, systems, and tools to improve security strategies relative to business vision while meeting compliance obligations. Implement security systems by specifying intrusion detection methodologies and equipment; direct installation and calibration; prepare preventive and reactive measures; create, transmit, and maintain keys; provide technical support; complete documentation. Investigate intrusion detections, malware, file propagation, and any other malicious activity on the network. Roll out, maintain, and improve strict security policies to reflect industry best practices and banking sector compliance. Develop and maintain documentation critical to operating and executing the security program using tools such as Microsoft Visio and Office. Analyze security incidents using research and forensic techniques. Administer and monitor network security equipment and systems including Data Loss Prevention, SIEM, anti‑virus/anti‑malware, application whitelisting, web and email security, IAM, mobile access management, firewall, IPS, encryption, VPN, and other critical systems. Continually develop security skills and competencies; help transform control culture from detective to preventative controls. Prepare implementation, rollout, and rollback plans for security tool introductions. Adhere to existing disciplines for software/application change control processes to meet regulatory and business requirements. Provide superior customer service to all employees at multiple locations. Meet with auditors and compliance officers as needed to represent security. Collaborate with internal IT teams to coordinate projects and critical troubleshooting. Work on multiple projects simultaneously and manage project deliverables and expectations; prepare troubleshooting documents and train team members as necessary. Perform other duties as assigned. Education and Experience: Four‑year degree in Computer Science or equivalent, or a combination of education and experience. At least six years of experience in network security and/or systems management with a focus on information security. Certifications such as Security+, CEH, GSEC, OSCP, or CISSP are preferred. Specific Skills, Knowledge & Abilities: Understanding of Windows, Linux/Unix, and related hardware and peripherals. Experience with SIEM, SCCM, DLP, AV/AS, IPS/IDS, firewall, application whitelisting, basic penetration testing, web and email filtering, encryption, password management, IAM, and mobile access management. Systems Security Engineer III Job Summary: The Systems Security Engineer III establishes an enterprise security stance through policy, architecture, and training processes. The role evaluates and recommends security solutions, oversees vulnerability audits, and develops IT security policies. The engineer researches network security events, implements improvements, and responds to regulators and auditors. They assess network risk and cyber security vulnerability and recommend actions to protect the environment. Primary Functions and Responsibilities: Mentor and develop security engineers; provide technical expertise and training on threats and vulnerabilities. Architect, design, implement, support, and evaluate network and cyber security tools and services. Administer and monitor network security equipment and systems including DLP, SIEM/SOC, EDR, application whitelisting, web and email security, mobile access management, firewall, IPS, encryption, VPN, MFA, and other critical systems. Assess network risk and cyber security vulnerabilities using penetration testing tools such as vulnerability scanners and NMAP. Ensure confidentiality, integrity, and availability of data residing on or transmitted through enterprise workstations, servers, and databases. Monitor industry trends, threat reports, and vulnerabilities; ensure mitigation of known and anticipated threats; analyze security incidents using forensic techniques. Partner with the IT Compliance Administrator to respond to audit requests, communicate policies, and implement recommended changes. Maintain up‑to‑date knowledge of the IT security industry, new solutions, improved processes, and emerging attacks. Review and maintain enterprise security documents (policies, standards, baselines, guidelines, procedures) and the security awareness training program. Periodically test and update systems to ensure effective operation. Adhere to software/application change control processes for regulatory and business compliance. Manage multiple projects simultaneously, controlling project deliverables and expectations. Perform other duties as assigned. Education and Experience: Four‑year degree in Computer Science or equivalent, or a combination of education and experience. At least eight years of experience in network security and/or systems management with a focus on information security. Certifications such as Security+, CEH, GSEC, OSCP, or CISSP are preferred. Specific Skills, Knowledge & Abilities: Results oriented, high energy, and self‑motivated. Prior or current experience with banking or financial institutions is helpful. Knowledge of banking and financial regulatory requirements is helpful. Experience with toolsets such as Carbon Black, Cylance, Cisco ISE, Umbrella, Meraki, Palo Alto Panorama, Proofpoint, ObservIT, Digital Persona HID, F5, and Varonis is preferred. Hiring Salary Range Base salary ranges are determined at the time of the offer. Inclusive bonuses and incentives may apply. SSE III: $102,500 – $121,500 plus annual bonus. SSE II: $88,000 – $104,500 plus annual bonus. Benefits Group Health, Dental, and Vision Insurance Generous Paid Time Off (PTO) Volunteer Time Off (VTO) 401(k) plan with company match Tuition assistance Company paid life insurance Paid parental leave Lifestyle accounts for reimbursement of childcare, student loan payments, gym memberships, pet insurance, and more. Team Member Banking benefits. Hybrid Eligibility Position may require some days in the office each week.

EQUAL OPPORTUNITY EMPLOYER

PROTECTED VETERANS AND INDIVIDUAL WITH DISABILITY.

#J-18808-Ljbffr NCSL International