Information Security Engineer - Monitoring Tools

Job Description Responsibilities : - Adopting and promoting engineering excellence by identifying efficiencies and synergies through means of automation, collaboration, and orchestration - Collaborates with architecture to identify capability gaps, develop requirements, identify solutions to address, assist with proof of concepts and testing of solutions - Implementation and technical lead responsibilities that include ongoing engineering/DevSecOps support for a global cryptography program which leverages a portfolio of data protection capabilities - Managing technology from ground up and understanding gaps within the tech stack including overlap with other technology and/or coverage, capability gaps - Maintaining technology from a business as usual (BAU) aspect by ensuring the proper change management, incident management, disaster recover processes are occurring and current - Participate as one of several technical leads on team of information security engineers - Participate in authoring, editing, providing, or reviewing documentation (procedures, standards) to ensure a well-managed and mature security infrastructure - Partners with peers within the organization to effectively prioritize work by using agile processes and ensuring risks, impediments, and asks are brought to leadership in a timely fashion - Plays a hands-on role in the engineering and implementation of security measures that protect the computer systems, networks, and information - Plays a key role in designing and building solutions which safeguard the organizations platforms and systems - Proactively identifies problems and clearly articulates solutions and recommendations - Provide day-to-day administration and support for infrastructure related to API, application security, firewalls, encryption, intrusion detection systems, PKI, secrets management, vulnerability scanning, security monitoring tools, penetration testing, authentication, web filtering, identity management, or access control systems, and their associated logs and processes - Providing engineering/operations support for technology and processes, ensuring superior customer service is being met, and identifying process improvements - Serving as a mentor or a subject-matter expert (SME) to other InfoSec team members and/or stakeholders throughout the organization - Serving as a SAFe Product Owner for cryptographic technologies, accountable for defining/leading/maintaining the team backlog and product roadmap - Supporting a "you build it you own it" model - meaning the technology built by engineering is also supported from a wing-to-wing operations aspect - Works closely with Information Security program manager, scrum master, and architects to convey technical impacts to development/engineering timeline and risks - Work independently in identifying opportunities to improve engineering or other performance for Information Security/Technology & other functions across Synchrony - Work with Information Security/Technology engineers and API developers to drive program delivery - Perform other duties and/or special projects as Skills/Knowledge : - Bachelor's degree in Computer Science / other technical degree or Business Management and 4years of IT experience, or in lieu of degree 6 years of IT experience - Minimum of 4 years of experience in Information Security. - Certifications in audit, big data, cloud, cybersecurity, governance, information security, privacy, risk preferred; AWS, Cloudera, GCP, GIAC, ISC2, ISACA is preferred. - Proficient hands-on technical expertise with API, AWS, Cloudera, containers, encryption, Java, Linux, Perl, PKI, Python, secrets management, tokenization is strongly preferred - Excellent oral communication and writing skills. Adept and presenting complex topics, influencing and executing with timely / actionable follow-through. Desired Skills/Knowledge : - Ability to work under pressure and sustain productivity with multiple simultaneous projects across cross-functional engineering and operational information security teams - Creativity and individual thinking, the ability to work both independently & with teams - Cyber Security experience, especially around designing, building, managing solutions - DevOps and/or Engineering background - Engineering and/or architecture experience - Experience in modern coding languages such as Python - Experience with Agile, Scaled Agile (SAFe), Scrum - Good teamwork, oral and written communication - Good understanding of security landscape as a whole - Familiarity with problem and incident management, change management, notifications, and basic operational understanding of running and maintaining infrastructure - Strong and efficient problem-solving and analytical skills, willingness to learn - Understanding of information security practices and policies, including risks and threats - Understanding of various public cloud deployment/platform/service models from a development, infrastructure, and information security aspect - Working experience with API development, CI/CD pipelines, encryption methodologies, Jenkins, secrets management, tokenization (ref:hirist.tech)

Location: in, IN

Posted Date: 11/20/2024