There are important qualities you look for in an employer – meaningful work, community engagement, competitive benefits, commitment to employee development, and so many more. At Bankers Trust, our team members experience an inclusive and community-focused culture and we’re proud of the premier workplace we’ve created. We regularly receive best in class results through our biennial employee engagement survey. We’re also proud to receive recognition from others, including our designation as a “Best Place for Working Parents®,” being a four-time recipient of the Greater Des Moines Partnership’s Inclusion Award, and being named one of the “Best Businesses Supporting Local Charity” by readers of the Business Record.
This position will be hired as either a Systems Security Engineer (SSE) II or III depending on experience.
Systems Security Engineer II (2)
Job Summary:
The Systems Security Engineer II is responsible for working with cross-functional teams to ensure that controls are properly designed, implemented, configured, and performing as expected in support of the company’s security program and policies. This position is responsible for the design, implementation, configuration of Security tools and controls that enable the organization to detect and prevent computer and infrastructure security and cyber threats. The Systems Security Engineer II will act as a subject matter expert (SME) on multiple security solutions, and will provide guidance to security team members, as well as other IT teams, on the proper adoption and support of Security tools and controls. This individual will identify, assess, prioritize, and remediate processes for cyber security risks and vulnerabilities. This individual is responsible to train peers and other team members on the newly deployed products and solutions, preparing SOP (Standard Operating Procedure) documents, troubleshooting documents as part of projects.
Primary Functions and/or Responsibilities:
Applies knowledge of controls, threats, vulnerabilities, risk, and technical systems to assist with future-state security planning and roadmaps to harden systems and close vulnerabilities. Researches and analyzes searches and analyze business trends and behavioral data to identify opportunities for improvements and new initiatives.Develops a deep understanding of the network and security infrastructure, systems, and tools to improve security strategies relative to the vision of the business while meeting compliance obligations by evaluating cyber security threats, risk, vulnerabilities, and processes to determine relative risk to the product, system, and organization.Implements security systems by specifying intrusion detection methodologies and equipment; directing equipment and software installation and calibration; preparing preventive and reactive measures; creating, transmitting, and maintaining keys; providing technical support; completing documentationInvestigates intrusion detections, malware, file propagation and any other form of malicious activity on the networkRolls out, maintains and improves strict security policies to reflect industry best practices and banking sector's compliance obligationsDevelops and maintains documentation critical to operating and executing the security program using tools such as Microsoft Visio and officeAnalyzes security incidents using research and forensic techniquesAdministers and monitors network security equipment and systems including but not limited to Data Loss Prevention (DLP), Security Incident and Event Monitoring (SIEM), anti-virus/anti-malware, application whitelisting, web and email security, Identity Access Management (IAM), Mobile Access Management, firewall, Intrusion Prevention Systems (IPS), Encryption, Virtual Private Networks (VPN), and other systems critical to the security of the corporate networkContinually develops security skills and competencies. Helps transform control culture from current detective controls to preventative controlsPrepares implementation, rollout and rollback plan for security tool introduction to the organizationAdheres to existing disciplines in place for software/application change control processes in order to meet both regulatory and business requirementsProvides superior customer service to all employees at multiple locationsMeets with auditors and compliance officers as needed to represent securityCollaborates with internal IT teams to coordinate projects and critical troubleshootingWorks on multiple projects simultaneously and controls project deliverables and expectations. Troubleshoots documents preparation and train other team members as necessaryPerforms other duties as assigned
Education and/or Experience:
Four-year degree in Computer Science or equivalent required, or a combination of education and experienceAt least six years of experience in network security and/or systems management with a focus on information security requiredCertification in the Technology Industry related to Cybersecurity, such as, but not limited to, Security+, CEH, GSEC, OSCP and CISSP, preferred
Specific Skills, Knowledge & Abilities:
Computer, peripherals, software, hardware including Windows, Linux/UnixSIEM, SCCM, DLP, AV/AS, IPS/IDS, Firewall, Application Whitelisting, Basic Penetration Testing, Web and Email Filter, Encryption, Password Management, Identity Access Management, Mobile Access Management
Systems Security Engineer III (3)
Job Summary:
The Systems Security Engineer III is responsible for establishing an enterprise security stance through policy, architecture, and training processes. This includes the evaluation and recommendation of appropriate security solutions and oversight of any vulnerability audits and assessments. This position develops and recommends IT security policies and interface Technology Manager of Infrastructure and peers to ensure proper implementation of appropriate policies. The position also researches network security events and implements changes to improve security and will also respond to regulators' and auditors’ requests. The Systems Security Engineer III works to assess network risk and cyber security vulnerability and recommends appropriate actions to protect the environment from risk.
Primary Functions and/or Responsibilities:
Mentors and develops security engineers responsible for delivering and supporting the technology infrastructure, toolsets/solutions, and critical systems. Provides technical expertise and provides training to other Technology department personnel on existing threats and vulnerabilitiesPossesses a thorough understanding of all aspects of computer, network, and physical security with the ability to architect, design, implement, support, and evaluate network + cyber security tools and servicesAdministers and monitors network security equipment and systems including Data Loss Prevention (DLP), collaborate with SEIM/SOC provider, Endpoint Detection and Response (antivirus/anti-malware), application whitelisting, web and email security), Mobile Access Management, firewall, Intrusion Protection Systems (IPS), Encryption, Virtual Private Networks (VPN), Multi-Factor Authentication (MFA), and other systems critical to the security of the corporate networkAssesses network risk and cyber security vulnerabilities using penetration testing tools for information gathering (vulnerability scanners, NMAP), analyzing and exploitationEnsures the confidentiality, integrity and availability of the data residing on or transmitted to/from/through enterprise workstations, servers, and other systems and in databasesMonitors industry trends, analysis, threat reports, and vulnerabilities, and ensures mitigation of known and anticipated threats. Analyzes security incidents using research and forensic techniquesPartners with IT Compliance Administrator to respond to auditing body information requests, communicate IT security policies and procedures, and implement approved recommended changesMaintains up-to-date knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectors.Reviews and maintains the enterprise’s security documents (policies, standards, baselines, guidelines, and procedures) and the security awareness training programPeriodically tests and updates systems to ensure they are operating effectivelyAdheres to existing disciplines in place for software/application change control processes to meet both regulatory and business requirementsWorks on multiple projects simultaneously and control project deliverables and expectationsPerforms other duties as assigned
Education and/or Experience
Four-year degree in Computer Science or equivalent required, or a combination of education and experienceAt least 8 years of experience in network security and/or systems management with a focus on information security requiredCertification in the Technology Industry related to Cybersecurity, such as, but not limited to, Security+, CEH, GSEC, OSCP and CISSP, preferred
Specific Skills, Knowledge & Abilities:
Results oriented, high energy, and self-motivatedPrior/Current experience with Banking or Financial Institutions helpfulKnowledge of Banking/Financial Institution regulatory requirements helpfulExperience with the following toolsets preferred: Carbon Black, Cylance +Optics, Cisco ISE and Umbrella, Meraki, Palo Alto Panorama and firewall o/s, Proofpoint email security and ObservIT, Digital Persona HID multi-factor authentication, F5, Varonis
Hiring Salary Range
The hiring range below reflects targeted base salary. Actual compensation will be determined based on the candidate’s prior related experience & education and will be finalized at the time of offer. In addition to base salary, most positions are also eligible to participate in our annual bonus program. Select positions may also be eligible to earn incentives and/or commissions. SSE III Hiring Base Salary Range: $102,500 - $121,500 plus annual bonus, SSE II Hiring Base Salary Range: $88,000 - $104,500 plus annual bonus.
Benefits
Group Health, Dental, and Vision InsuranceGenerous Paid Time Off (PTO)Volunteer Time Off (VTO)401(k) plan with lucrative company matchTuition assistanceCompany Paid Life InsurancePaid Parental LeaveLifestyle Accounts that provide employees with reimbursement for the things that are most important to them such as childcare, student loan payments, gym memberships, pet insurance and much more.Team Member Banking - a suite of products and services with special benefits for employees
Hybrid Eligibility: Position may be eligible for a hybrid work schedule (requiring some days in the office each week).
EQUAL OPPORTUNITY EMPLOYER
“PROTECTED VETERANS” AND “INDIVIDUAL WITH DISABILITY”
Equal employment opportunity, including veterans and individuals with disabilities.
PI285293491