Senior Security Engineer
Frisco, TX

Job Description

Job Summary

The Senior Security Engineer will support the Dir IT Security Engineering and Chief Information Security Officer (CISO) to provide the highest quality of information protection and assurance solutions to customers and business partners. The primary responsibility for this position is to participate in development efforts and ongoing support of the information security program, focused on cloud security. This includes leading in the planning, deployment, and support of a variety of security concepts and PCI/SOX compliance, managing outsourced "cloud" security functions and internet fraud prevention.

Primary Responsibilities

* Operates network and computing devices/systems that enforce security policies and audit controls.
* Provides engineering services, security consulting and leadership on select projects.
* Researches emerging technologies in support of ongoing security practice and enhancements.
* Provides engineering support for security operations team, service desk and escalation tiers.
* Assists in remediation and responses to audits, vulnerability assessments and penetration tests.
* Participates in security architecture and consulting with other IT teams.
* Assists in developing and analyzing security-related metrics.
* Assists in developing and updating processes and procedures with a focus on automation.
* Participates in problem analysis and incident response and participate in activities required by internal and external audit.
* Performs other duties as assigned.

Education

* Bachelors Degree in Computer Science or related field; or equivalent post high school education and/or work related experience.
* CEH, GIAC, CISSP, CISA, or CISM certifications preferred.

Experience

* 10 years' experience in system/network engineering
* 10 years' experience, preferred, in Information Security.

Essential Skills

* Experience as a team lead and mentoring junior level engineers.
* Experience in working with compliance and regulatory program requirements.
* Experience analyzing network, event and security logs.
* Proven project management and organizational skills, specifically managing multiple concurrent projects.
* Excellent analytical, problem solving and decision making skills, applied with a solution-focused attitude.
* Excellent written communication skills, demonstrating the ability to write with purpose, clarity, and accuracy.
* Experience with automation tools and solutions.
* Experience with data visualization and analytics.
* Experience mapping regulatory and compliance requirements to technical controls via Governance, Risk, and Compliance solutions with automated reporting.
* Experience deploying and/or supporting a SIEM solution.
* Ability to perform hands-on engineering support of wide range of security technologies.
* Ability to relate internal policies and regulatory requirements to business requirements.
* Ability to function as a consultant to other business units on security matters as a recognized subject matter expert.
* Knowledge of PCI/SOX, SSAE 16 and other relevant regulatory and compliance requirements.
* Proven experience managing numerous projects and activities simultaneously.
* Ability to drive quality into every product, project and service the company provides.
* Proven ability to make decisions based on the given data in a timely fashion.
* Handles difficult situations and act quickly to resolve them.
* Ability to influence those outside of the department to drive desired business results.
* Experience with cloud security monitoring tools such as RedLock or Dome9, preferred.