Job Listing
|
|
| Job ID: 13947824 |
|
| |
| Job Location: |
|
| |
|
Public Transportation is Available.
|
| |
| How to Apply: | To see employer contact information, log in or register. |
| |
| Job Title: | CyberArk Information Security Engineer (R23_0000001947) |
| Work Type: | Work Days: Weekdays, Work Vary: No , Shift: First (Day), Hours Per Week: 40, Work Type: Regular |
| |
| Salary Offered: | Minimum $15.00 Hourly |
| Benefits: | Unspecified. |
| |
| Physical Required: | Unspecified |
| Drug Testing Required: | Unspecified |
| Education Required: | Associate's Degree |
| |
| Experience Required: | 24 Months |
| |
| Required Skills: | We have an exciting opportunity as an Info Security Engineer at Ameriprise! Responsible for effectively planning, crafting, implementing and monitoring security technologies and projects that support the firms' underlying security policies and procedures. Design, document and implement appropriate policies and standards that protect the firms' information assets. Use highly technical and physical forensics to ensure that security policies, standards and best practices are followed throughout the technology organization-including where vendors are utilized to provide services. Come apply today!
Key Responsibilities
Provide timely and effective operational support for the firm's information security tools, processes and practices with regards to Privilege Access Management solution (CyberArk). Partner with other support teams and vendors to resolve problems or implement new products or services. Use standard technology monitoring tools to monitor assigned environments and/or technical assets and identify/detect behavior outside of established standards. Escalate key security issues to the appropriate team to be addressed. Assist with security assurance testing activities.
Design, coordinate and/or perform comprehensive risk/vulnerability systems assessments to identify vulnerabilities, including providing reporting on assessment results as well as risk mitigation and remediation recommendations and plans. Keep current with emerging security trends, issues and alerts. Communicate known security risks and solutions to mitigate risks to business and technology partners as needed. Manage audits of vendor security processes, procedures and compliance controls.
Serve as a security expert on application development, database design, network and/or platform (operating system) projects, helping project teams align with enterprise and Technology security policies, industry regulations and best practices. Through a deep understanding of the business requirements, identify the appropriate security requirements for each project. Design, develop and lead the testing approach and execution plan to ensure that new and existing solutions meet security requirements.
Analyze application security needs based on the sensitivity or proprietary nature of the data and work with the appropriate teams to develop and implement new or existing security technologies or processes to support the business strategy. Participate in network architecture reviews and develop detailed security engineering design and deployment plans. Design, test, implement, maintain and support current and future information security technologies, processes and procedures.
Responsible for the configuration of security controls to ensure the safety of information systems assets and to protect from unauthorized access or intentional destruction. Develop, implement, maintain and coordinate the enforcement of all technology information security policies, procedures and associated plans based on industry standards, best practices and legal compliance requirements. Implement changes to existing security policies and control standards to know the latest with the threat landscape.
Assist and/or lead projects related to information security regulatory compliance and the implementation and maintenance of all information security programs, processes and technologies. Assess and document the need for all security configurations or re-configurations and work with appropriate teams to complete them as required. Research, design and advocate new security technologies, architectures and security products that will support the security requirements of the firm.
Assume the subject matter expert (SME) role in the management, investigation and response to suspected and actual information security breaches or system failures. Using data collected from a variety of tools, provide forensic analysis of security events. Analyze security incidents to determine root cause and identify p |
| Preferred Skills: |
|
| |
| |
| |
|
| Job Description: |
Preferred Qualifications
Advanced knowledge and experience designing, implementing, and supporting CyberArk Privilege Access Management (PAM) solution.Be able to answer questions about onboarding, decommissioning and managing secrets vaulted in a PAM solution. Experience working with partner teams supporting their credential retrieval and technical set up.
Experience with CyberArk modules Password Vault Web Access (PVWA), Application Identity Manager (AIM), Conjur, Privilege Session Manager (PSM), APIs and CPM Plugins
Experience scripting automation of tasks in PowerShell, Python or other similar languages. Knowledge of code development life cycle and quality assurance. Strong/diverse technical background in enterprise networking, firewall, storage options, server infrastructure, operating systems, database technologies, and desktop operating systems and security.
Advanced knowledge and experience solving application connectivity and performance issues.
Demonstrated experience contributing and collaborating effectively as an informal leader in a high-functioning team.
Effective organizational, analytical and independent problem-solving skills. Successful experience coordinating and completing multiple tasks within established and changing deadlines.
Strong presentation skills with experience addressing and working with executives and technical staff.
Experience working in the financial services industry or other highly regulated/compliance-oriented environments. Experience with regulatory compliance issues such as: FFIEC, OFCC, SEC and Federal Reserve plus: SOX, GLBA and PCI.
Certifications: CISSP, CISA, CISM, CRISC, or equivalent security certification.
About Our Company
We're a diversified financial services leader with more than $1 trillion in assets under management and administration. Our team of 20,000 people in more than 20 countries advise, manage and protect the assets and income of more than 2 million individual, small business and institutional clients. We are a long-standing leader in financial planning and advice, a global asset manager and an insurer. Our unwavering focus on our clients and strong financial foundation connects each of our unique businesses - Ameriprise Financial Services, Columbia Threadneedle Investments and RiverSource Insurance and Annuities. Here, we foster meaningful careers, invest in the future, and make a difference for clients, institutions and communities around the world.
Ameriprise Financial is an equal opportunity employer. We consider all qualified applicants without regard to race, color, religion, sex, national origin, genetic information, age, sexual orientation, citizenship, gender identity, disability, veteran status, marital status, family status or any other basis prohibited by law.
Full-Time/Part-Time
Full time
Exempt/Non-Exempt
Exempt
Job Family Group
Technology
Line of Business
TECH Technology
Refer to ID when applying |
|