Wells Fargo is seeking a Senior Information Security Engineer
In this role, you will:
- Lead or participate in computer security incident response activities for moderately complex events
- Conduct technical investigation of security related incidents and post incidents digital forensics to identify causes and recommend future mitigation strategies
- Provide security consulting on medium projects for internal clients to ensure conformity with corporate information, security policy, and standards
- Design, document, test, maintain, and provide issue resolution recommendations for moderately complex security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security
- Review and correlate security logs
- Utilize subject matter knowledge in industry leading security solutions and best practices to implement one or more components of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity
- Identify security vulnerabilities and issues, perform risk assessments, and evaluate remediation alternatives
- Collaborate and consult with peers, colleagues and managers to resolve issues and achieve goals
Required Qualifications:
- 4+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
Desired Qualifications:
- 4+ years implementation and administration experience in working on large, complex CyberArk environments.
- Bachelors or masters degree in technology /Engineering.
- Strong knowledge of PAM CyberArk tool / CyberArk PAS Vault, DR, CPM, PVWA, AAM, PTA and Alero.
- 4+ years of credential management expertise and advanced management of credential management systems.
- 3+ years Credential/secrets management experience in a cloud or DevOps environment
- Advanced Information Security technical skills and understanding of information security practices and policies.
- 3+ years of Windows and Linux based OS administration experience
- 2+ years of experience with automating workflows (Java, PowerShell, VBScript, Shell, etc.)
- Ability to manage complex issues and develop solutions.
- Excellent Written and oral communication
- Experience with databases (Oracle, Sybase, MSSQL, MySQL etc.,)
- Experience with Directories (LDAP, AD)
- Experience with Jira and Confluence
- Documentations of technical configuration
- Experience with Security Event and Incident Management (SEIM) Tools like Splunk
- Experience with load balancers, high availability solutions and firewalls
- Experience with certificate management tools like Venafi
- CyberArk certification will be an added advantage.
Job Expectations:
- Lead or participate in computer security incident response activities for moderately complex events
- Conduct technical investigation of security related incidents and post incidents digital forensics to identify causes and recommend future mitigation strategies
- Provide security consulting on medium projects for internal clients to ensure conformity with corporate information, security policy, and standards
- Design, document, test, maintain, and provide issue resolution recommendations for moderately complex security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security
- Review and correlate security logs
- Utilize subject matter knowledge in industry leading security solutions and best practices to implement one or more components of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity
- Identify security vulnerabilities and issues, perform risk assessments, and evaluate remediation alternatives
- Collaborate and consult with peers, colleagues and managers to resolve issues and achieve goals
