This position is responsible for participating in strategic security planning to achieve business goals by prioritizing defense initiatives and coordinating the evaluation, deployment, and management of current and future security technologies. The Senior Information Security Engineer is expected to be fully aware of the enterprise’s security goals as established by its stated policies, procedures and guidelines and to actively work towards upholding those goals.
DUTIES & RESPONSIBILITIES:
Participate in the planning and design of enterprise security architecture, under the direction of the Information Security Officer.
Provide analytical and technical security recommendations to other team members, other technology teams, security management, and business stakeholders. Identify requirements, based upon need or as the result of a security issue that puts organizations systems at risk.
Act as liaison to other technology teams to effectively communicate, architect, and deliver security solutions.
Participate in the creation of enterprise security documents (policies, standards, baselines, guidelines and procedures) under the direction of the Information Security Officer, where appropriate.
Lead (in partnership with other Technology teams as required and appropriate) the evaluation, deployment, integration and initial configuration of new security solutions and of any enhancements to existing security solutions in accordance with standard best operating procedures generically and the enterprise’s security documents specifically.
Develop technical solutions, enhancements to existing systems, and new security tools to help mitigate security vulnerabilities and automate repeatable tasks.
Maintain up-to-date detailed knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectors.
Recommend additional security solutions or enhancements to existing security solutions to improve overall enterprise security.
Define, maintain and audit up-to-date baselines for the secure configuration and operations of all in-place devices, whether they be under direct control (i.e., security tools) or not (i.e., workstations, servers, network devices, etc.).
Define and maintain operational configurations of all in-place security solutions as per the established baselines, for those security systems solutions that are partially or wholly operated by the InfoSec team.
Participate in the monitoring all in-place security solutions for efficient and appropriate operations.
Aid in the review of logs and reports of all in-place devices, whether they be under direct control (i.e., security tools) or not (i.e., workstations, servers, network devices, etc.). Interpret the implications of that activity and devise plans for appropriate resolution.
Participate in investigations into problematic activity, as required and appropriate.
Aid in the design and execution of vulnerability assessments, penetration tests and security audits.
Provide on-call support for end users for all in-place security solutions that are partially or wholly operated by the InfoSec team.
Participate in the identification of security breaches detected by security systems; and in the tracking, investigation, and resolution of these incidents.
Bachelor’s Degree in Computer Science preferred.
Certifications in security-related practices or technology a plus.
Minimum 4 years of information technology experience required; 3 years experience in the InfoSec space strongly preferred.
Working technical knowledge of several of the infrastructure technologies preferred.
In-depth technical knowledge of and experience with one or more common security products and toolset (firewalls; intrusion prevention systems; web-security content management; authentication services; SEIM; etc. required).
Working technical knowledge of wider a cross-section of the common security products and toolsets.
Familiarity with software development process and practice a plus.
Familiarity with electronic banking technologies and applications a plus.
Experience with security program assessment, development and management practices; including working with industry standards and frameworks (particularly the NIST Cybersecurity Framework).
Proven analytical and problem-solving abilities with ability to effectively prioritize and execute tasks in a high-pressure environment.
Good written, verbal, and interpersonal communication skills with the ability to present ideas in business-friendly and user-friendly language
Ability to conduct research into IT security issues and products as required.
Highly self-motivated and directed with keen attention to detail
Team-oriented and skilled in working within a collaborative environment.
In-depth experience with administration and architecture for one or more infrastructure technologies (networking, Windows OS, Linux OS, Active Directory, PKI, etc.) required.
Experience with programming languages; or scripting languages such as Perl, Python, or Powershell strongly preferred.
Occasional travel to various First American Bank locations.
Typical hours are Monday through Friday 8 a.m. to 5 p.m. Occasional weekends and after-hours as workload dictates.
First American Bank is an Equal Opportunity Employer (Minorities/Females/Disabled/Veterans).
First American Bank will not sponsor applicants for work visas.
Employer does not assist with relocation costs.
Internal Number: 18-1520-IS-EGV1650
About First American Bank
First American Bank is a family owned, full-service bank with 53 locations in Illinois, Florida, and Wisconsin, and $4 billion in assets. Our mission is simple: to offer competitive banking products with the personal attention and service customers deserve. First American Bank can offer employees a level of visibility and stability that is difficult to find in many larger corporations. We are looking for people who want a career - not just a job!