Senior Systems Security Engineer

Insight Global is currently looking for a Senior Systems Security Engineer for a top banking company in the Des Moines area. The Systems Security Engineer is responsible for establishing an enterprise security stance through policy, architecture, and training processes. This includes the evaluation and recommendation of appropriate security solutions and oversight of any vulnerability audits and assessments. This position develops and recommends IT security policies and interfaces with the IT Security Manager and other Technology leaders and peers to ensure proper implementation of appropriate policies. The position also researches network security events and implements changes to improve security and will also respond to regulators' and auditors’ requests. The Systems Security Team Lead works to assess network risk and cyber security vulnerability and recommends appropriate actions to protect the environment from risk.

Primary Functions and/or Responsibilities:
Mentors and develops security analysts and engineers responsible for delivering and supporting the technology infrastructure, toolsets/solutions, and critical systems. Provides technical expertise and provides training to other Technology department personnel and business stakeholders on existing threats and vulnerabilities.
Possesses a thorough understanding of all aspects of computer, network, and physical security with the ability to architect, design, implement, support, and evaluate network + cyber security tools and services.
Administers and monitors network security equipment and systems including Data Loss Prevention (DLP), collaborates with SEIM/SOC provider, Endpoint Detection and Response (antivirus/anti-malware), application whitelisting, web and email security), Mobile Access Management, firewall, Intrusion Protection Systems (IPS), Encryption, Virtual Private Networks (VPN), Multi-Factor Authentication (MFA), and other systems critical to the security of the corporate network.
Assesses network risk and cyber security vulnerabilities using penetration testing tools for information gathering (vulnerability scanners, NMAP), analyzing and exploitation.
Ensures the confidentiality, integrity and availability of the data residing on or transmitted to/from/through enterprise workstations, servers, and other systems and in databases.
Monitors industry trends, analysis, threat reports, and vulnerabilities, and ensures mitigation of known and anticipated threats. Analyzes security incidents using research and forensic techniques.
Partners with IT Compliance Administrator to respond to auditing body information requests, communicates IT security policies and procedures, and implements approved recommended changes.
Maintains up-to-date knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectors.
Reviews and maintains the enterprise’s security documents (policies, standards, baselines, guidelines, and procedures) and the security awareness training program.
Periodically tests and updates systems to ensure they are operating effectively. Establishes regular reports/metrics to show overall security program effectiveness.
Adheres to existing disciplines in place for software/application change control processes to meet both regulatory and business requirements.
Works on multiple projects simultaneously and controls project deliverables and expectations.

The annual salary for this role is between $110,000-120,000/yr.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.

4-5 yrs of Firewall management experience (Palo Alto preferred)
Vulnerability management experience
Experience handling SOC escalations
Email Security tools
EDR tool experience (lots of different ones: Crowdstrike, Cortex, Microsoft EDR)
Experience working with a project management team

Carbon Black app control, a lot of environments don't use it
Strong experience using SIMS (Rapid Seven)
Experience in a highly regulated industry (banking/financial/insurance, HIPPA, government)
Cisco ICE or another Network access tool

Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.