Sun Life

Senior Information Systems Security Engineer

Sun Life

full-time

Posted on:

Location: California, Colorado • 🇺🇸 United States

Visit company website
AI Apply
Apply

Job Level

Senior

Tech Stack

CloudFirewallsPythonSQL

About the role

  • Lead configuration and implementation of all information security systems
  • Manage all information security systems and ensure proactive patching levels
  • Act as backup or lead Scrum Master for Security Engineering team as assigned by Security team leadership, creating user stories assigned to engineering and operations team members
  • Configure and engineer all Endpoint Security controls
  • Configure and engineer all Network Security controls
  • Configure and engineer all Server Security controls
  • Configure and engineer all Database Security controls
  • Configure and engineer all identities and permissions and single sign-on for contractors and employees
  • Develops peers and staff by providing direction, support, and mentoring in areas of expertise
  • Other duties as needed or required.

Requirements

  • BS and the equivalent of 7 years working in Information Security or equivalent 10 years of work experience, in a highly regulated environment, preferably in Healthcare or Fintech, in which there are demonstrated progressive levels of responsibility, experience, and leadership and hands-on experience with the implementation and configuration of security controls in on-prem and cloud-based environments
  • Experience working on an Agile team and familiarity with the Agile Scrum methodology and creation of user stories in Agile discipline
  • Extensive experience with Identity and Access Management, Vulnerability Management, Database Security, Network Security, Active Directory, Patch Management, Web Application Firewalls, and Advanced Malware solutions
  • Extensive working knowledge of configuring and managing Identity and Access Platforms, Firewalls, Switches, Routers, Network Sensors, Endpoint Controls, Server Controls, and Data Loss Prevention is required
  • Security certifications preferred (CISSP, OSCP, CISM, GIAC) or with a requirement of obtaining within 12 months upon hire
  • Knowledge of Python, Regex, PowerShell, SQL, JSON, and XML and at least some experience in an object-oriented programming language is desirable but not required
  • Excellent verbal and written communication skills
  • Effective organization, prioritization, negotiation and influencing skills