at Early Warning Services in Chicago, Illinois, United States
Job Description
At Early Warning, we've powered and protected the U.S. financial system for over thirty years with cutting-edge solutions like Zelle, Paze, and so much more. As a trusted name in payments, we partner with thousands of institutions to increase access to financial services and protect transactions for hundreds of millions of consumers and small businesses.
Positions located in Scottsdale, San Francisco, Chicago, or New York follow a hybrid work model to allow for a more collaborative working environment.
Candidates responding to this posting must independently possess the eligibility to work in the United States, for any employer, at the date of hire. This position is ineligible for employment Visa sponsorship.
Overall Purpose
This senior position drives the use and availability of the information security tool set, providing a key role in maintaining vulnerability management and configuration management baselines for the company, ensuring our custom software is secure and providing complete and accurate documentation to maintain industry standard on all we provide. As a senior team member, your skills and experience will be used to evaluate new and existing security tools to drive continuous improvement. You will be relied upon to operate independently to ensure projects are complete and on time, and with the team to ensure all team members have the information and support they need. You will assist in removing roadblocks and verify that company policies are followed by all involved at all times.
Essential Functions
Day to day functions include upgrading and patching application software and operating systems, tracking and replacing certificates and remediating vulnerabilities found on our equipment.
Works with the operations staff to ensure the security tools are integrated into other corporate infrastructure.
Works with auditors to ensure the security tools are supporting all compliance efforts.
Defines gaps that are not being met by our current toolset and research solutions to meet them.
Proactively monitors the health of all tools owned by the team; initiates any needed maintenance or remediation required, following established processes.
Ensures that tools are running vendor supported versions, including operating system, and supporting applications.
Tracks and complete all compliance related documentation on time. Address any gaps following establishes processes.
Identifies opportunities to automate repeatable processes and drive the project to implementation.
Assists other security teams in security incident resolution and risk assessments.
Maximizes value of tools already purchased.
Contributes to the development of Early Warning security policy and procedures.
Complies with all company and department policies and procedures to ensure the highest level of data confidentiality, integrity and availability is maintained.
On-call rotation with other security engineers to cover 24x7 response.
Works with other security engineering staff and ensure cross training to raise the skill level of the team overall.
Mentors junior security engineering staff and manage security interns.
Support the company's commitment to protect the integrity and confidentiality of systems and data.
The above job description is not intended to be an all-inclusive list of duties and standards of the position. Incumbents will follow instructions and perform other related duties as assigned by their supervisor.
Minimum Qualifications
Education or experience typically obtained through completion of a Bachelor's degree or 2 year degree in Computer Science or Engineering.
Minimum 4 years of general IT experience.
Minimum 3 years of IT Security experience.
Experience or certifications for enterprise vulnerability scanning platforms and vulnerability management frameworks.
Experience or certifications for enterprise endpoint security tools, anti-virus or DLP.
Expert understanding of Linux and Windows administration.
Proficiency in Python scripting language to support automation and operational efficiency.
Expert understanding of networking concepts including routing, layer 2 and layer 3, and NAT.
Expert understanding of firewall ruleset design in an enterprise setting along with packet capture interpretation.
Proficiency in SSL/TLS certificate management, certificate chains and request/issue/renew procedures.
Preferred Qualifications
Experience with audit procedures and producing audit artifact documents.
Additional scripting proficiency in JavaScript, Linux shell and/or Powershell.
Certifications: one of CISSP, CCNA, or CISA desirable.
Additional related education and/or experience preferred
Physical Requirements
Working conditions consist of... For full info follow application link.
Early Warning is an equal opportunity employer that takes affirmative action to employ, and advance in employment, qualified minorities, women, individuals with disabilities and covered veterans.
