OVERVIEW

This position is for a Senior Information Security Engineer role within FTD, that will have the technical and analytical expertise focused on the design, implementation, and operation of security and risk management solutions throughout the enterprise. This role will collaborate with cross-functional teams to gather requirements and implement effective security controls globally.

KEY RESPONSIBILITIES

• Define and implement security controls and systems to effectively reduce risk throughout the organization
• Conduct security and risk management solutions throughout the system lifecycle including design, implementation, maintenance, and decommissioning
• Evaluate information security risks of new projects and provide guidance to minimize exposure
• Identify and provide advice to mitigate security risks within the CI/CD pipeline
• Maintain existing IT environments by applying security principles and understanding of advanced security protocols and standards
• Assist with enterprise-wide risk assessment processes
• Coordinate cross-functional team activities to mitigate identified security risks
• Coordinate and perform tasks to assess and demonstrate compliance with regulatory requirements (e.g. PCI; SOX; Cybersecurity)
• Monitor and audit internal and external policy and control compliance
• Champion Security awareness training program
• Embrace a culture of enablement, customer service, continuous improvement, transparency, and fiscal responsibility
• Provide best practices for securing Active Directory and Azure Active Directory
• Work with cross-functional teams on securing and monitoring Applications (third party or proprietary)
• Vulnerability patching and remediation
• Implement automation to reduce manual processes
• Perform other duties as assigned.

KNOWLEDGE, SKILLS AND ABILITIES

• Bachelor's degree or equivalent years of experience required
• 5-7 years of relevant experience in IT Security
• 3+ years of experience in administration of security tools
• Expertise in PCI and Security frameworks (including CIS; NIST; SOX) and experience performing audits
• Proven experience in managing security platforms, including but not limited to; Web Application Firewalls (WAF); SIEM; end-point management (EPP/EDR/XDR solutions); antivirus/spyware; Varonis; Identity Access Management (IAM)
• Experience in Cloud architecture and security; preferred Google Cloud Provider (GCP)
• Experience with common database technologies such as Microsoft SQL and Oracle
• Experience with common operating systems such as Windows and Unix
• Ability to maintain confidentiality of sensitive information
• Good written and verbal communications skills
• Strong troubleshooting skills
• Strong customer-service orientation

#LI-REMOTE