Cyber Security Infrastructure Engineer I/II/III

The responsibility of this position includes serving as a cybersecurity infrastructure engineer in the enterprise Cybersecurity Operations team.  This position serves as a systems engineer responsible for the implementation, maintenance, analysis and reporting of the enterprise cybersecurity related systems utilized by the IT department using a comprehensive security knowledge of Endpoint, Server, IOT, IT Security Management Platforms, LAN and WAN technologies.

Level II/III Additional Overview:

The responsibility of this this position includes serving as a senior level systems engineer that handles implementation, maintenance, analysis and reporting of the enterprise cybersecurity related systems utilized by the IT department using a comprehensive security knowledge of Endpoint, Server, IOT, LAN and WAN technologies.

This position may be filled as a Level I, II or III.  Additional responsibilities and qualifications apply.

• Responsible for the monitoring and support of all Intrusion Detection/Intrusion Prevention Systems within the organization and the development and ongoing support of proper reporting to meet regulatory and compliance requirements.
• Conduct the security monitoring and tuning recommendations for all Next Generation Firewall Systems, Routing and Switching infrastructure within the organization and the development and ongoing support of proper reporting to meet regulatory and compliance requirements.
• Monitor and manage enterprise logging and vulnerability management systems within the organization, coordination with the other IT teams for remediation, and development and ongoing support of proper reporting to meet regulatory and compliance requirements.
• Assist management in the planning and implementation of a defense in depth program to provide remediation in support of an effective security program.
• Serve as a liaison between the IT department and Information Security/Audit departments in the bank for reporting and response to audit or information security related matters concerning assigned cybersecurity security systems.
• Responsible for the monitoring and tuning recommendations for the enterprise endpoint detection response and network detection response systems within the organization and development and ongoing support of proper reporting to meet regulatory and compliance requirements
• Provides 24x7x365 support operations for all security monitoring infrastructure to include tuning recommendations of IDS/IPS systems, patch management systems, firewalls, web security gateways, email security gateways, data loss prevention systems, cloud application security systems and any other IT infrastructure equipment related to IT infrastructure security.
• Serve as a member of the Security Operations Center and provide daily support of the Security Operation Center to include daily incident, change and release management in the enterprise SIEM and ITSM Systems.
• Perform additional duties as assigned.

Level III Additional Responsibilities:

• Ability to serve as a technical leader and subject matter expert, working closely with level and II engineers, guiding in best practices.
  

• At least 1-4 years of experience in network infrastructure and security.
• Demonstrated experience in the daily implementation, support and auditing of networks, operating systems, and applications
• Solid understanding of how to implement vulnerability remediation technologies for networks, operating systems, and applications
• Proven experience in:
• Security incident response
  • Intrusion Detection and Prevention. Next Generation Firewall
  • Penetration testing techniques and tools
  • Using project management methodologies
  • Firewalls, proxies, virus protection and remediation
  • Experience in routing and switching environments and routing protocols to include EIGRP, OSFP, and BGP. Routing ACLs and Vlan methodology
• Working knowledge of network infrastructure components to include routers, switches, load balancers, network detection and response systems.
• Knowledge of operating systems to include Windows, UNIX, and Linux.
• Understanding of Patch Management processes and procedures
• Administrative and security expertise in the implementation and support of network infrastructure and in various Windows OS for both workstation and server platforms,
• CCNP, CCIE, GIAC, CISSP or other network and security certifications preferred
• Network Infrastructure and Security Experience in the Financial Industry preferred
• Experience with SIEM technology –Splunk preferred
• Experience with NGFW and NGFW Management Platforms – Fortinet FortiManager, Fortinet FortiAnalyzer preferred
• Experience with Vulnerability Management Platforms – Rapid7 preferred

Level II Additional Qualifications:

• At least 5-7 years of experience in network infrastructure and security.
  
• System administration experience in a large production environment (500+ Servers, 200+ routers, 5000 devices) and the proper security practices related to securing the infrastructure components.
  
• Experience in the daily implementation, support and auditing of networks, operating systems, and applications based on best practices and remediation techniques to address the identified issues
  
• Experience with implementing vulnerability remediation technologies for networks, operating systems, and applications
• Bachelor of Science degree preferred

Level III Additional Qualifications:

• At least 8-10 years of experience in network infrastructure and security.
  
• Ability to work in a heterogeneous computing environment including UNIX/Linux/Windows/ and various network vendors to include Cisco, Sourcefire, Fortinet, Forcepoint, F5, Splunk, etc.
• Bachelor of Science degree preferred

Physical Requirements/Working Conditions:  Must be able to sit for long periods of time and use computer keyboard and/or mouse, while viewing computer screens.

Note: This is a brief description of this position and is not limited to those described herein. Management retains the right to add, delete or modify any of these responsibilities at any time during employment.