- Provide strategic direction for data security, incident response, emerging cybersecurity technologies and industry best practices.
- Work with DevOps and our application developers to establish a secure on premise and cloud platforms through automated, repeatable processes.
- Work with the Application Development teams to ensure security vulnerabilities are properly understood, prioritized, remediation plans developed to address the risk, and remediated in a timely manner.
- Perform validation of security vulnerability remediation activities.
- Implement, configure, and troubleshoot security tools and devices.
- Provide configuration, maintenance, and monitoring oversight of existing network and security technologies.
- Assist in the development of security event monitoring and alerting content related to network security toolsets.
- Identify any gaps in security tool coverage of full environment (corporate and cloud).
- Identify and define system security requirements.
- Evaluate and partner with vendors to implement security solutions.
- Develops and publishes metrics and dashboards demonstrating security posture and event activity.
- Facilitate the design of configuration baselines and identify gaps and create detailed recommendations.
- Create and advocate security awareness education to facilitate the prevention of security issues and vulnerabilities and ensure secure coding practices are followed.
- Advise and contribute to the development of security policy and procedures.
- Maintain strong awareness of events in the external community to identify threats and opportunities for enhancement. Apply those learnings to design and implement solutions.
- Providing support to investigations & incident management team on matters of information security, intrusion mitigation/detection and computer forensics.
- Coordinate the delivery of executive management reports, briefings and other communication related to cyber intelligence and security.
- Create and maintain good technical documentation.
- Bachelor's degree in computer science or related field; or a minimum of 8 years of equivalent work experience and a high school diploma/GED.
- Cyber Security specific certifications preferred.
- 8+ years of information technology experience.
- 5+ years of experience in some combination of cloud security, infrastructure security, penetration testing, firewall management, network security, identity management, security tools, architecture review.
- 3+ years of experience working in a security engineering role.
- Solid grounding in information security principles. Deep understanding of security solutions.
- Demonstrated experience of a progressive track record of technical achievement in the Cyber Security field.
- Experience with continuous monitoring and vulnerability management tools.
- Knowledge of security frameworks, standards, and best practices, such as ISO, NIST, and COBIT.
- Experience developing and implementing security policies.
- Experience configuring proactive alert notifications and monitoring techniques.
- Demonstrated experience working with development / engineering teams to identify and remediate vulnerabilities.
- Proficiency in common vulnerability scanning tools (Nessus, Qualys, etc).
- Experience working in Cloud environments (AWS, Azure, etc).
- Experience in implementing and configuring security tools.
- An organized and attention-to-detail approach (strong tactical execution), effective problem-solving skills, and the ability to make sound decisions in a self-directed and fast-paced environment.
- Project management experience.
- Excellent communication skills (written, verbal, presentation, and interpersonal).
- Experience leading, executing and operating enterprise scoped security projects in the following domains: platform security, end point security, network security, infrastructure, cloud security, data security and threat prevention.
- Ability to interact and negotiate across departments.
- Experience with security incidents and forensic investigations.
- Knowledge of and experience with risk management and mitigation.
-
Information Security Systems Engineer
1 week ago
Leidos Lewistown, United StatesDescription · Program Summary · As an ISSE you will join a small team of senior professionals providing Information Assurance (IA) Architecture Analysis and Security Engineering Support for the implementation and fielding of the National Leadership Command Capability in support ...
-
Information Systems Security Engineer
1 week ago
Leidos Lewistown, United StatesDescription · Information Systems Security Engineer (ISSE) Skill Level 3 · The Information Systems Security Engineer (ISSE) shall perform, or review, technical security assessments of computing environments to identify points of vulnerability, non-compliance with established Inf ...
-
Information Security Systems Engineer
1 week ago
Leidos Undisclosed, United StatesDescription · Program Summary · As an ISSE you will join a small team of senior professionals providing Information Assurance (IA) Architecture Analysis and Security Engineering Support for the implementation and fielding of the National Leadership Command Capability in support ...
-
Security Engineer
3 weeks ago
NovaWorks Solutions Germantown, United StatesWe want to make a difference - are you with us? We ensure that over 80 million people in Germany can benefit from digital healthcare. Join us in shaping the healthcare system of tomorrow. · Your work area · DEMIS is the digital platform for Germany and the healthcare sector, prov ...
-
Senior Security Engineer
3 weeks ago
Legal & General America Frederick, United StatesSenior Security Engineer Job LocationsUS-MD-Frederick ID # of Openings Remaining 1 Category IT Overview The Senior Security Engineer serves as a subject matter expert, applying cyber security best practices and helping to develop cyber security standards for the organization. By ...
-
Application Security Engineer
1 week ago
Edgewater Federal Solutions Frederick, United StatesOverview · Edgewater is currently seeking an · Application Security Engineer · who will be a hands-on subject matter expert in Microsoft Azure cloud technologies, application security, security architectures, security tools, and methodologies. The Application Security Engineer ...
-
BlueHalo Frederick, United StatesOverview · Ipsolon Research, Inc. (now a BlueHalo company) in Frederick MD is an engineering company and manufacturer of advanced high-performance Software Defined Radio systems for ultrawideband and phased array radio and sensor solutions. · We have an opening for Senior (or Pr ...
-
Director of Product Security Engineering
2 weeks ago
AstraZeneca Gaithersburg, United StatesAre you ready to be part of the future of healthcare? Are you able to think big, be bold, and harness the power of digital and AI to tackle longstanding life sciences challenges? Then Evinova, a new health tech business part of the AstraZeneca Group might be for you · **Key Respo ...
-
Information Systems Security Engineer
2 days ago
Leidos Frederick, United StatesInformation Systems Security Engineer (ISSE) Skill Level 3 · The Information Systems Security Engineer (ISSE) shall perform, or review, technical security assessments of computing environments to identify points of vulnerability, non–compliance with established Information Assura ...
-
OT Cyber Security Engineer
1 week ago
Nebula Ventures McKee, United StatesHello, · For my client in the energy industry, I am looking for an OT Cyber Security Engineer (m/f/d) to join their team. · RESPONSIBILITIES · Designing, planning, and implementing OT/IT security concepts and solutions for our offshore wind farm projects. · Creating and aligning ...
-
Security Engineer
2 days ago
Experis Rockville, United StatesExperis IT is partnered with a provider of 'ensuring the integrity of America's financial system' in their search for a · Security Engineer/Lead of AWS Web Application Firewalls (WAF) . · The main function of a · Security Engineer/Lead · is to plan, coordinate, and implement secu ...
-
Security Engineer
2 weeks ago
Cyber Security Services Herndon, United StatesGuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. By taking a three-tiered, holistic approach for evaluating security posture and ecosystems, GuidePoint enables some of the nation' ...
-
Security Engineer Associate
4 days ago
JustinBradley Reston, United StatesJustinBradley's client, a leading source in mortgage financing, is looking for a Security Engineer Associate to join the Security Configuration Management Team. This is a remote position however the engineer must reside within a commutable distance from Reston, VA to attend occas ...
-
Cyber Security Engineer
4 days ago
GDIT Herndon, United States Full timeJob Description: · Own your career as a Cyber Security Engineer at GDIT. Here, you'll have the opportunity to build strong lines of cyber defense using cutting-edge technologies. Your work in cyber security at GDIT will have an impact on securing our clients' missions and ensurin ...
-
Security Engineer III
1 week ago
RCG Moody International Limited c/- Intertek Rockville, United StatesTITLE: Security Engineer III · Duties: Assist in the development of all test reports and required certification documentation. Review of all test reports and required certification documentation. Review/comment submission-related output from other Engineers. Lead CAVP algorithm ...
-
Network Security Engineer
19 hours ago
00100 LEIDOS, INC. Bluemont, United States Full timeLeidos is seeking a talented Network Security Engineer to join our team to support a federal customer within the Federal Emergency Management Agency (FEMA), Network Operations Security Center (NOSC). The Network Security Engineer role provides support across the cyber security te ...
-
Cyber Security Engineer
3 weeks ago
QinetiQ Reston, United StatesCompany Overview · We are a world-class team of professionals who deliver next generation technology and products in robotic and autonomous platforms, ground, soldier, and maritime systems in 50+ locations world-wide. Much of our work contributes to innovative research in the fie ...
-
Website Protection Architect
3 weeks ago
Thermo Fisher Scientific Frederick, United StatesWhen you join us at Thermo Fisher Scientific, you'll be part of an inquisitive team that shares your passion for exploration and discovery. With revenues of more than $40 billion and the largest investment in R&D in the industry, we give our people the resources and chances to cr ...
-
Assembler I
3 weeks ago
Spectrum Control Frederick, United StatesAt Spectrum Control, most departments operate on a 4-day, 10-hour work schedule in exchange for a 3-day weekend. We offer competitive wages and PTO, plus our benefits begin on day 1 of employment. Come join a workforce where we put you first · An Assembler 1 has the ability to in ...
-
Sharepoint Farm Administrator
3 weeks ago
LinTech Global, Inc. Frederick, United StatesLinTech Global is looking for a **SharePoint Farm Administrator** to support a USAMRIID in **Fort Detrick, Maryland.** · **Onsite 3 Days Required and 2 Days Remote** · **Position Overview**: · The SharePoint Farm Administrator will be responsible for providing support for all USA ...
Senior Security Engineer - Frederick, United States - Legal & General America
Description
OverviewAt Legal & General America, we aim to make a positive difference in the lives of our customers, partners, colleagues, and the communities in which they live. As a recognized market leader of term life insurance, we're working to transform our business through innovation and technology to provide products and solutions that help American families secure their financial futures.
We are a future-focused company, passionate about what we do and how we do it. This means working with pace and energy to reach our goals, and challenging ourselves to achieve more. We strive to create a unique environment where balance between work and life is possible. Our employees' passion, dedication and hard work, as well as our career development opportunities, benefits, and employee activities contribute to our positive workplace culture.
The Senior Security Engineer serves as a subject matter expert, applying cyber security best practices and helping to develop cyber security standards for the organization. By developing partnerships with the Infrastructure and Application Development teams, the Senior Security Engineer expands the influence of the Cyber Security team, as well as provides assurance that cyber policies are being followed through frequent reviews and assessment.
The Senior Security Engineer guides, designs, coordinates, and implements cyber requirements as part of infrastructure, and application development projects. This role also identifies, recommends, and implements tools and techniques needed by the Cyber Security organization. As part of this process, it is expected that the Senior Security Engineer will be able to thoroughly document proposals, rollout plans, audit findings, and review these with senior leadership.
The Senior Security Engineer analyzes security systems and seeks improvements on a continuous basis. Adjusting the tools to continuously meet the business needs and the evolving threat landscape, performs security audits of the environment, develop remediation plans, threat mitigation plans, and propose cost effective solutions to cyber security challenges.
Responsibilities
Education
The expected hiring compensation range for this position is $121,000 - $166,450 annually.
This position will work in a hybrid environment with up to 3 days in office per week.
The total compensation package for this position may include other elements, such as a sign-on bonus, long term incentives, and annual bonuses. This role is eligible to participate in the Legal & General America Annual Incentive Plan. The current target payment for the position is 20% of base salary, modified for corporate and individual performance. Bonuses are pro-rated based on start date. This role has 20 vacation days and 10 sick days that are accrued on a bi-weekly basis. Employees also have 9 paid holidays throughout the calendar year.
We have a competitive compensation and benefits package focused on your overall wellbeing. Employee benefits include health, life, and dental insurance; 401K with company match up to 6% as well as a pension package; generous time off; and wellbeing initiatives throughout the year (we like doing fun stuff). We're big on professional development and we'll support and mentor you in your career progression and expect you to help us pay it forward by helping us develop tomorrow's leaders and growth-focused professionals. We value our teams and our communities and believe in giving back. Enjoy time off to volunteer for those causes that matter most to you
If hired, employee will be in an "at-will position" and the Company reserves the right to modify base salary (as well as any other discretionary payment or compensation program) at any time, including for reasons related to individual performance, Company or individual department/team performance, and market factors. The Company reserves the right to change benefits plans at any time.
We are an equal opportunity employer and value diversity at our company. We do not discriminate based on race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, perform essential job functions, and receive other benefits and privileges of employment. Please contact us to request accommodation.