JOB SUMMARY

Reporting directly to the Director of Information Security, National MI’s Information Security Engineers will be responsible designing, implementing and ensuring control effectiveness of system security, information security controls, and processes to protect National MI. Ideal candidates should have extensive experience with incident investigations, solution integration with multiple tools.  Should have experience creating and maintaining highly secure Linux and Windows-based development/production environments. This is a high impact role, and one can expect frequent interaction with researchers, vendors, software engineers, operations and managers.

ESSENTIAL Job Duties & Responsibilities

• Identify information protection needs for the enterprise environment
• Design, implement and configure security control architectures and processes for use within the enterprise environment and cloud services
• Develop and implement security designs for new or existing enterprise system(s) and ensure the design of hardware, operating systems and software applications adequately address security controls for the enterprise
• Ensure that applications and infrastructure meets information security controls requirements
• Ensure that acquired or developed systems employ information systems security engineering consistent with adopted configuration benchmarks throughout system and software lifecycle
• Ensure implementation of system and software designs properly mitigate identified and potential threats
• Evaluate potential business solutions against security framework
• Work with IS Vendor Management team to evaluate and ensure remediation of identified risks
• Document information security design and architecture
• Provide input to IS and IT Operations for implementation plans and standard operating procedures
• Mentor and train staff members in the areas of subject matter expertise
• Provide engineering support to Operations implementing industry standard benchmarks and evaluation activities
• Perform ad hoc responsibilities, as needed

ESSENTIAL COMPETENCIES

• At least two years experience incorporating security into projects, applications, business processes, and all information systems
• Deep understanding of IP networking and routing protocols
• Professional experience with network and system hardening
• Well versed on IT vulnerabilities and vulnerability databases, such as US-CERT
• 7+ years IT Infrastructure security
• Practical experience in encryption technologies, including ssh, IPsec, VPN, PKI, S/MIME, file system encryption, PAM
• Practical knowledge of the deployment and maintenance of security systems, including IDS/IPS, Firewall, A/V, LDAP/AD and Group Policy processes and systems
• Professional experience with file integrity monitoring and data loss prevention technologies
• Experience with evaluating and forward-planning for IT processes, including mapping against security frameworks, such as ITIL, SANS, CIS
• Experience managing security controls of large-scale data processing operations, including database, network filesystems (NFS/CIFS), WAN considerations, etc.
• 5 years of software development experience
• Bachelor’s Degree in Computer Science, or Equivalent Experience required