Apply on Employer Site

Prosperity Bank · 1 month ago

Senior Security Engineer (Full Time) - Sugar Land

SUGAR LAND-EAST LAWN, Sugar Land, TX, US

Full-time

Onsite

Mid, Senior Level

4+ years exp

Prosperity Bank is seeking a Senior Security Engineer to develop and maintain a comprehensive security program. The role involves working with IT management and various technology teams to implement security measures, monitor compliance, and reduce risk levels.

BankingFinancial Services

Responsibilities

Develop Defense-in-Depth strategy

Responsible to implement, support Security systems such as Webfiters, Rapid7, Spam Filters, Anti-Virus, MDM, DLP, SIEMS etc…

Design, develop, and implement Disaster Recovery and Business Continuity process, procedures, and infrastructure as it relates to the Information Security Program, well as actively participate in Disaster Recovery exercises

Work closely and support the Senior Network Analyst and the Application’s team to provide deep security layers around server hardware, software and applications

Identify and plan preventive maintenance, software/hardware upgrades, patch management, and firmware upgrades

Working with both end users and all members of the IT staff

Benchmarks company security practices and recommends best practices to adopt

Conducts firewall and IPS policy reviews

Develops, monitors, and reports on information security performance metrics (such as threat level, vulnerability level, problem resolution time, etc.)

Identifies areas of non-compliance and makes recommendations for achieving compliance

Monitors traffic and access logs in order to verify compliance

Coordinates data destruction and secure disposal of hardware

Actively works to reduce risk levels for the organization

Keeps updated on IT security regulation changes and new developments in the IT security environment

Occasional travel may be required

Ensures there are no repeat IS security related findings from regulatory and 3rd party exams

Other duties as assigned

Qualification

CISSPCISMCISAInformation SecurityNetwork MonitoringSecurity SystemsVirtualizationPenetration TestingActive DirectoryMicrosoft SQLChange ControlCustomer Service

Required

Bachelor's degree in Computer Science, Information Technology, Engineering or a related technical field; or Associate's degree in Computer Science or related field plus 2 years relevant work experience

3+ years of experience directly related to information security

CISSP, CISM, or CISA certification

Experience utilizing common framework standards including FIEC, NIST, ISO, HIPPA

Strong experience supporting and implementing servers and systems including but not limited to Active Directory, Citrix, Microsoft SQL, file servers, Exchange, AIX and other applications as needed

4+ years Enterprise network monitoring

4+ years managing, implementing, and supporting Security systems such as Web filters, Rapid7, Spam filters, Anti-Virus, MDM, DLP, SIEMS, etc

4+ years Virtualization environments including VMware, vSphere, ESX/ESXi, Enterprise 4.0/5.0/5.5 (HA, DRS, vMotion, SRM), Microsoft Hyper-V, and Citrix XenServer

Full understanding of how Windows environments operate to ensure they are configured to current defined standards

Experience in change control methodology with an ability to provide clear technical documentation supporting change