Overview
Remote
Depends on Experience
Full Time
Skills
Accountability
Amazon Web Services
Audit Management
Business Process
CISA
CISM
CISSP
Computer Networking
Configuration Management
Data Security
EMC RSA Archer
IT Security
Incident Management
Information Security
Network
Management
Python
Qualys
Regulatory Compliance
Reporting
Risk Assessment
Security Analysis
ServiceNow
Software Security
Technical Support
Threat Analysis
Vulnerability Management
Job Details
- Job Title: Information Security Engineer - Vulnerability Management
- Number of Openings: 1
- Start Date: 6/9/2025
- Duration: Through 12/31/2025
Work Location : Remote - EST
Job Description
Responsible for performing all functions required to support day-to-day data security operations and accountable for security and networking infrastructure component availability and integrity, monitoring compliance with IT security policy, and coordinating investigation and reporting of security incidents.
Primary Responsibilities:
- Define, deliver, and support enterprise security tools and architecture in collaboration with other teams.
- Enhance the Bank's network vulnerability management program for in-scope subsidiaries and affiliates.
- Define security environments and lead the implementation and onboarding of new applications, programs, processes, projects, and initiatives into the Enterprise Vulnerability Management Program.
- Communicate, escalate, support, and guide the resolution of open vulnerabilities, including infrastructure, application security, and configuration management vulnerabilities.
- Conduct security research on threats and remediation techniques/technology, make recommendations to IS/IT teams, and oversee their implementation.
- Proactively monitor and investigate security alerts from managed security service providers and in-house security tools.
- Conduct risk assessments to evaluate the effectiveness of existing controls and determine the impact of proposed changes to business processes, applications, and systems.
- Support ad hoc requests for reporting and control evidence, as needed.
- Perform threat analysis and incident response by interpreting events.
- Support the Bank's operational information security responsibilities, including developing and maintaining standards, procedures, and guidelines for the Enterprise Vulnerability Management Program.
- Share knowledge and industry best practices with team members.
- Serve as a security engineer/consultant on projects.
Nice to Have:
- CISSP, CISA, CISM, AWS Solutions Architect certifications
- GRC/audit management experience
- Scripting/automation experience python preferred
Solid proven experience with tooling such as Qualys, Brinqa, Archer, ServiceNOW, Checkmarx, Prisma (and any AWS experience is great as well)
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.