Lead Information Security Engineer

• Lead computer security incident response activities for highly complex events
• Conduct technical investigation of security related incidents and post incident digital forensics to identify causes and recommend future mitigation strategies
• Provide security consulting on large projects for internal clients to ensure conformity with corporate information, security policy, and standards
• Design, document, test, maintain, and provide issue resolution recommendations for highly complex security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security
• Review and correlate security logs
• Utilize subject matter knowledge in industry leading security solutions and best practices to implement one or more components of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity
• Identify security vulnerabilities and issues, perform risk assessments, and evaluate remediation alternatives
• Collaborate and influence all levels of professionals including managers
• Lead a team to achieve objectives
• Work with cross functional teams to define, design new features and implement solutions
• Configure, Maintain, and Upgrade Broadcom (Symantec) ProxySG and Cloud SWG platforms for enterprise users
• Monitor, troubleshoot, and resolve proxy issues and perform detailed Root cause analysis
• Design and implement application / user based proxy polices
• Strong knowledge and experience in Proxy Auto-Configuration (PAC) file build and deployment. Knowledge of Active Directory (machine/user objects, Organizational Units, group policy processing, etc.)
• Strong knowledge of the TCP, HTTP, SSL protocol and headers, as well as packet-level protocol analysis capabilities
• Strong knowledge and experience in the areas of IP routing, switching, load-balancing, and advanced network automation techniques and solutions
• Strong knowledge in the development of secure Network architectures and standards
• Strong experience with the application of advanced network-based technical security controls in large enterprise network environments
• Experience in related information security technology areas, including vulnerability assessment, ethical hacking, and application security
• Knowledge of DNS, DHCP, proxy technology, and Unix-based network appliances
• Experience with large-scale enterprise security solutions spanning multiple business functions and geographic locations
• Ability to work periodic after-hours work including participation in an on-call rotation
• Demonstrated enterprise experience in change management process
• Strong working knowledge of providing/understanding network security documentation
• Provide enterprise risk and threat communication efforts to key groups and the enterprise regarding potential threats and remediation efforts - including the ability to develop blog posts with effective analysis and actionable intelligence based on relevant security events
• Maintain an awareness of bank security policies and government regulations pertaining to information security
• Create and deliver information security presentations and reports to internal support teams, LOB s and leadership
• Develop and maintain operational documentation and procedures
• Participates in the research, analysis, design, testing and implementation of complex computer network security/protection technologies for company information and network systems/applications
• Periodic assignment to the team on-call rotation and work with vendor to resolve the incidents
• Document project progress and milestones, monthly initiative updates to keep management abreast of progress

• 5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• Minimum 5+ years of experience working in the Proxy Engineering
• Experience in implementing and supporting Broadcom (Symantec) ProxySG and Cloud SWG platforms
• Working experience in managing Proxy Auto-Configuration (PAC) files
• 5+ years of Intermediate to Advanced level experience with scripting/automation using tools such as: Bash, Ansible Playbook/Role Development, PowerShell, Python, etc
• 5+ years advanced understanding of Network concepts like DNS, Firewall and Load Balancing
• Proven experience with change and incident management practices in medium to large enterprise environments
• Basic understanding of TLS, Certificates, and MTLS
• Intimate knowledge of the inner workings of the Internet
• Experience with Agile Scrum or Kanban methodologies
• Excellent verbal, written, and interpersonal communication skills
• Advanced Information Security technical skills and solid knowledge and understanding of information security practices and policies
• Experience in ServiceNow, Jira and Confluence. Technical documentation
• Strategic planning experience in translating leadership vision into executable strategies and initiatives
• Technology experience in the Financial Services sector
• Ability to coordinate completion of multiple tasks and meet aggressive time frames
• Advanced critical thinking, problem solving and technical troubleshooting abilities
• Strong analytical skills with high attention to detail and accuracy
• Experience with and the ability to thrive in a complex and fast-paced technology and/or information security organization, within a large enterprise environment
• Experience with Information Security Frameworks and standards (FFIEC, NIST, ISO)
• Ability to work off hours and occasional weekends to support change activities

Managed service delivery certifications like ITIL, Six Sigma will be beneficial