Systems Security Engineer III at Bankers Trust Company – Des Moines, Iowa
Explore Related Opportunities
About This Position
There are important qualities you look for in an employer – meaningful work, community engagement, competitive benefits, commitment to employee development, and so many more. At Bankers Trust, our team members experience an inclusive and community-focused culture and we’re proud of the premier workplace we’ve created. We regularly receive best in class results through our biennial employee engagement survey. We’re also proud to receive recognition from others, including our designation as a “Best Place for Working Parents®,” being a four-time recipient of the Greater Des Moines Partnership’s Inclusion Award, and being named one of the “Best Businesses Supporting Local Charity” by readers of the Business Record.
Job Summary:
The Systems Security Engineer is responsible for establishing an enterprise security stance through policy, architecture, and training processes. This includes the evaluation and recommendation of appropriate security solutions and oversight of any vulnerability audits and assessments. This position develops and recommends IT security policies and interfaces with the IT Security Manager and other Technology leaders and peers to ensure proper implementation of appropriate policies. The position also researches network security events and implements changes to improve security and will also respond to regulators' and auditors’ requests. The Systems Security Team Lead works to assess network risk and cyber security vulnerability and recommends appropriate actions to protect the environment from risk.
Primary Functions and/or Responsibilities:
- Mentors and develops security analysts and engineers responsible for delivering and supporting the technology infrastructure, toolsets/solutions, and critical systems. Provides technical expertise and provides training to other Technology department personnel and business stakeholders on existing threats and vulnerabilities.
- Possesses a thorough understanding of all aspects of computer, network, and physical security with the ability to architect, design, implement, support, and evaluate network + cyber security tools and services.
- Administers and monitors network security equipment and systems including Data Loss Prevention (DLP), collaborates with SEIM/SOC provider, Endpoint Detection and Response (antivirus/anti-malware), application whitelisting, web and email security), Mobile Access Management, firewall, Intrusion Protection Systems (IPS), Encryption, Virtual Private Networks (VPN), Multi-Factor Authentication (MFA), and other systems critical to the security of the corporate network.
- Assesses network risk and cyber security vulnerabilities using penetration testing tools for information gathering (vulnerability scanners, NMAP), analyzing and exploitation.
- Ensures the confidentiality, integrity and availability of the data residing on or transmitted to/from/through enterprise workstations, servers, and other systems and in databases.
- Monitors industry trends, analysis, threat reports, and vulnerabilities, and ensures mitigation of known and anticipated threats. Analyzes security incidents using research and forensic techniques.
- Partners with IT Compliance Administrator to respond to auditing body information requests, communicates IT security policies and procedures, and implements approved recommended changes.
- Maintains up-to-date knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectors.
- Reviews and maintains the enterprise’s security documents (policies, standards, baselines, guidelines, and procedures) and the security awareness training program.
- Periodically tests and updates systems to ensure they are operating effectively. Establishes regular reports/metrics to show overall security program effectiveness.
- Adheres to existing disciplines in place for software/application change control processes to meet both regulatory and business requirements.
- Works on multiple projects simultaneously and controls project deliverables and expectations.
- Performs other duties as assigned
Education and/or Experience:
- Four-year degree in Computer Science or equivalent required or a combination of education and experience
- At least eight years of experience in network security and/or systems management with a focus on information security required
- Four-year college degree in a related field preferred OR an equivalent combination of education and experience
- Experience with the following toolsets preferred: App Control, Endpoint Security/EDR/XDR, Firewalls, Email Security (SEG/ESA), ITM, DLP, NAC or similar
- Certification in a Technology Industry certification related to Cybersecurity, such as, but not limited to, Security+, CEH, GSEC, OSCP and CISSP preferred
Specific Skills, Knowledge & Abilities:
- Project leadership and teamwork skills
- Results oriented, high energy, and self-motivated
- Prior/Current experience with Banking or Financial Institutions helpful
- Knowledge of Banking/Financial Institution regulatory requirements helpful
- General understanding of MITRE Adversary Tactics, Techniques and Common Knowledge (ATT&CK)
- Understanding of cloud security principles and familiarity with cloud platforms (AWS, Azure, Google Cloud)
Hiring Salary Range
The hiring range below reflects targeted base salary. Actual compensation will be determined based on the candidate’s prior related experience & education and will be finalized at the time of offer. In addition to base salary, most positions are also eligible to participate in our annual bonus program. Select positions may also be eligible to earn incentives and/or commissions. Hiring Salary Range: $102,500 - $121,500
Benefits
- Group Health, Dental, and Vision Insurance
- Generous Paid Time Off (PTO)
- Volunteer Time Off (VTO)
- 401(k) plan with lucrative company match
- Tuition assistance
- Company Paid Life Insurance
- Paid Parental Leave
- Lifestyle Accounts that provide employees with reimbursement for the things that are most important to them such as childcare, student loan payments, gym memberships, pet insurance and much more.
- Team Member Banking - a suite of products and services with special benefits for employees
Hybrid Eligibility: Position may be eligible for a hybrid work schedule (requiring some days in the office each week).
EQUAL OPPORTUNITY EMPLOYER
“PROTECTED VETERANS” AND “INDIVIDUAL WITH DISABILITY”