Loading

Banner Image

Senior Security Engineer

 

Responsibilities:

  • Working with Mainframe (zOS) or Midrange (OS/400 & AIX) platforms
  • Establish and deliver a scalable portfolio of technical solutions to deliver key security services (IAM, PAM, logging and monitoring, FIM, encryption, key management, and certificate management) to the mainframe and midrange platforms
  • Develop, deliver, and assess against hardening standards, building and delivering roadmaps to remediate identified gaps
  • Deliver a technical platform to support continuous controls monitoring of the mainframe and midrange platforms
  • Partner with enterprise SIEM teams to develop effective incident detection rules for proactive monitoring
  • Drive automation and efficiencies through integration with enterprise services (IAM, PKI, etc.)
  • Effectively engage and partner with key stakeholders and partners across IT and the business to prioritize and drive technical solutions
  • Transform current platform technology by introducing structure and best practices to drive results
  • Perform special projects as assigned
  • Requires self-starters who work well in a largely self-directed environment
  • Ensure that the Equifax enterprise network is secure
  • Collaborate on a security technology vision
  • Participate in defining security practices and operations for the enterprise
  • Participate in defining security practices and operations for the enterprise and using DevOps standard methodologies to ensure optimal operations and strong feedback mechanisms
  • Contribute operational requirements and optimizations into the architecture and design of security solutions
  • Responsible for automating software builds and release configurations against on premise and public cloud infrastructure
  • Implement standard methodologies for CI/CD across the organization and provide feedback into their development and improvement


Required Experience:

  • 3+ years Experience working with Mainframe (zOS) platforms under RACF and/or TopSecret
  • A history of driving transformational change & doing the impossible
  • 5+ years work experience in IT with at least 2+ years of security or security related experience

We'd love to see:

  • BS/MS in Cyber Security, Computer Science, Mathematics, -Engineering, Information Services, or equivalent
  • Excellent verbal and written communication skills
  • Proven track record to deal with complexity, conflicting priorities and delivering winning results in an agile, fast-paced environment
  • Experience with operations and deployments in highly -segmented networks
  • Experience with one or more of the following programming languages: Python, JCL, SAS, REXX
  • Key industry certifications such as CISM, CISSP, etc.
  • Experience across multiple security domains (IAM, -Governance, IR, etc.)
  • Experience across multiple IT domains (platform, network, application, etc.)
  • Experience with security design for multi-service enterprises
  • Experience with Agile software development methodologies
  • Well versed and knowledgeable in compliance and security standards and guidelines including: SOX, NIST, CIS, ISO 27001/2, PCI DSS.
  • Extensive knowledge of security controls and technologies including SIEM, DLP, WAF, IPS, and firewall
  • 5 years work experience delivering security-related solutions into a DevOps environment with a demonstrated bias to early action and cutting edge technology

#LI-GH1
ehire.com/jobs

A human approach to staffing.

Our Company is committed to the principles of equal employment. We are committed to complying with all federal, state, and local laws providing equal employment opportunities, and all other employment laws and regulations. It is our intent to maintain a work environment which is free of harassment, discrimination, or retaliation because of sex, gender, race, religion, color, national origin, physical or mental disability, genetic information, marital status, age, sexual orientation, gender identity, military service, veteran status, or any other status protected by federal, state, or local laws. The Company is dedicated to the fulfillment of this policy in regard to all aspects of employment, including but not limited to recruiting, hiring, placement, transfer, training, promotion, rates of pay, and other compensation, termination, and all other terms, conditions, and privileges of employment.