Cyber Security Engineer in Charlotte, North Carolina
THE TEAM YOU WILL BE JOINING:
Top 25 U.S. digital financial services company committed to developing award-winning technology and services.
Named one of the top three fastest-growing banking brands in the U.S. in 2020.
Offers a full suite of products including mortgage lending, personal lending, and a variety of deposit and other banking products (savings, money-market, and checking accounts, certificates of deposit (CDs), and individual retirement accounts (IRAs)), self-directed and investment-advisory services, and capital for equity sponsors and middle-market companies.
Where permitted by applicable law, must have received or be willing to receive the COVID-19 vaccine by date of hire to be considered.
WHAT THEY OFFER YOU:
Fast paced, highly collaborative, teamwork-oriented environment
Make an immediate impact in this high visibility role
Ability to drive change within the organization with a focus on advancement in technology and programs
Top-notch leadership committed to developing people
THE BACKGROUND THAT FITS
Responsible for the configuration compliance baseline program which scans for deviations from prescribed settings in key technologies such as operating systems, middleware components, databases, and network appliances.
Updates existing baseline documents annually or new baseline documents as required by working with technology subject matter experts and by using CIS benchmarks as starting points
Obtains approvals from technology risk management personnel
Configures the scans within the scanning tool to match the approved baseline document. Ensures these scans run every week and distributes the results to the technology personnel who will resolve deviations. Works with technology support partners and the scanning vendor to resolve any problems with the scanning tool.
Reports on compliance adherence and spearheads governance efforts to ensure the technology personnel resolve the deviations on time, showing follow-up and escalation.
Working knowledge of security best practices Strong verbal and written communications skills
Knowledge of vulnerability and/or configuration compliance scanners Conceptual familiarity with common operating systems, middleware applications, databases, and networking appliances
Intermediate competency with spreadsheets Intermediate competency writing scripts using python
Able to write documentation Ability to identify and solve problems
Able to organize meetings, and translate discussed decisions into actions Self-directing with sense of ownership