Senior Cybersecurity Engineer – Governance, Risk & Compliance
General Motors
Cyber SecurityServiceNow
Senior Information Security Engineer
Wells Fargo
full-time
Posted on:
Location Type: Hybrid
Location: Charlotte • Arizona, North Carolina, Texas • 🇺🇸 United States
Visit company websiteJob Level
Senior
Tech Stack
AnsibleCloudDNSFirewallsPython
About the role
- Lead or participate in computer security incident response activities for moderately complex events
- Conduct technical investigation of security related incidents and post incident digital forensics to identify causes and recommend future mitigation strategies
- Provide security consulting on medium projects for internal clients to ensure conformity with corporate information, security policy, and standards
- Design, document, test, maintain, and provide issue resolution recommendations for moderately complex security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security
- Review and correlate security logs
- Utilize subject matter knowledge in industry leading security solutions and best practices to implement one or more components of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity
- Identify security vulnerabilities and issues, perform risk assessments, and evaluate remediation alternatives
- Collaborate and consult with peers, colleagues and managers to resolve issues and achieve goals
Requirements
- 4+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
- 2+ years of in-depth knowledge and troubleshooting of HTTP based Web Applications
- 2+ years knowledge and understanding of implementing WAF signatures or virtual patches
- 2+ years of hands-on experience with Web Application Firewall technologies (Akamai cloud based WAF, Imperva on prem WAF, F5 on prem WAF)
- 2+ years of intermediate to advanced level experience with scripting/automation using tools such as: Bash, Ansible, Playbook/Role Development, PowerShell, Python
- 2+ years advanced understanding of Network concepts like DNS, Firewall and Load Balancing
- 1+ years of proven experience with change and incident management practices in medium to large enterprise environments
- 1+ years of Agile Scrum or Kanban methodologies
- 1+ years of basic understanding of TLS, Certificates, and MTLS
- Strong verbal, written, and interpersonal communication skills (Desired)
- Knowledge and understanding of application firewalls (Desired)
- Knowledge and understanding of data security: firewalls and perimeter security (Desired)
- Knowledge and understanding of network or network security and network protocols (Desired)
- Knowledge and understanding of network security architectures and standards development (Desired)
- Knowledge and understanding of network security firewall hardware, software, and configurations (Desired)
- Knowledge and understanding of network security including firewalls and IDS (Desired)
- Knowledge and understanding of web application: firewall concepts or security certifications (Desired)
- Information Security Frameworks and standards (FFIEC, NIST, ISO) experience (Desired)
- Willingness to work on-site at stated location on the job opening
- This role is not eligible for visa sponsorship
Benefits
- This position offers a hybrid work schedule
- Accommodation for applicants with disabilities is available upon request in connection with the recruitment process
- Drug-free workplace (Drug and Alcohol Policy)
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
Information Security EngineeringHTTP based Web ApplicationsWAF signaturesWeb Application Firewall technologiesscriptingautomationNetwork conceptsTLSCertificatesMTLS
Soft skills
verbal communicationwritten communicationinterpersonal communication
