Apply on Employer Site

Unum · 17 hours ago

Senior Security Engineer

Dunwoody, GA

Full-time

Onsite

Mid, Senior Level

$98K/yr - $202K/yr

6+ years exp

Unum is a Fortune 500 company leading a digital transformation in the employee benefits sector. They are seeking a Senior Security Engineer to shape enterprise-wide security strategies, architect security frameworks, and collaborate with IT and business leaders to ensure compliance and protect critical assets.

FinanceFinancial ServicesInsurance

H1B Sponsor Likely

Responsibilities

Influence corporate-level security decisions

Architect and operate a depth-in-defense security framework

Drive Identity & Access Management and privileged access solutions

Collaborate with IT and business leaders to integrate secure technologies

Partner with internal and external audit teams to ensure compliance

You’ll be solving complex security challenges, building scalable solutions, and helping shape the future of cybersecurity at Unum

Monitors for external threats and indicators of compromise

Responds to and leads incident response for threat alerts

Monitors for inappropriate utilization of computer resources

Assesses reported security threats and weaknesses

Provides level II support for Operations

Participates in 24/7 on-call rotation

Participates in ethical hacking red team/blue team exercises

Performs day-to-day operations and technical support, including system upgrades, on the Unum security technology portfolio

Consults on the security framework to IT/Business project teams, and in day-to-day business operations

Consults with development and business partners on integration and security configuration for new or existing software or solutions

Participates in the evaluation of vendor's product strategies, technology roadmaps and software enhancements, and consults on the inclusion and rollout these recommendations in the corporate security roadmap

Develops and consults on sound security policies and procedures

Assists with application and network security assessments, as assigned

Maintains expertise to function as subject matter expert in one or more security disciplines

Develops strong partnerships with business clients, application developers, software vendors and other technical resources

Performs other duties as assigned

Qualification

Security ArchitectureIdentity & Access ManagementCyber Security ComplianceIncident Response ManagementUNIX Operating SystemWindows Operating SystemNetwork SecurityApplication SecurityFirewallsAnalytical SkillsProblem-Solving SkillsCommunication SkillsMentoringCollaboration

Required

6+ years of related work experience in information technology engineering, support or consulting experience

Working effectively in an ambiguous environment, functioning independently, and effectively working across geographical locations

Detecting and analyzing hostile and other improper actions in such an environment

Investigating and responding to security alerts, or new security threats with a sense of urgency

Strong oral and written communications skills

Strong analytical and problem-solving skills and proactive thinking skills

Strong Knowledge of (at least one) UNIX, Windows, Mainframe, and/or Apple Operating System vulnerabilities and secure configuration settings

Strong Knowledge of threats and vulnerabilities associated with application and network security

Strong Knowledge of the principles of implementation and operation and experience with security technology such as firewalls, multi-level security implementation, security assessment, monitoring and profiles tools (e.g. IDS/IPS, SEIM, AV, Qualys, etc.), and password crackers

Mentor and support junior level security staff

Develops strong partnerships with client management, business clients, application developers, software vendors and other technical resources which includes, but not limited to, legal, compliance, and privacy

Maintain close relationships with the business to understand strategy, processes, plans and needs to help influence planning by advising on best practices, innovation/technology enablement opportunities

Communicates effectively with business partners, customers, brokers, third party suppliers/partners, and systems resources at all levels

Delivers effective, high-quality solutions in a timely manner while balancing shifting priorities and, at times, accelerated timelines

Facilitate matching business needs and services options by leveraging knowledge of business strategy, processes, and market offerings to assist in evaluating the most appropriate products and services to meet its requirements

Provide an overall perspective or point of clarification to partner on operational aspects of a service. Has a good overall understanding of infrastructure and application portfolios to provide guidance to service partner provider

Experience in implementing and supporting global Identity and Access Management solutions (Identity Management, Access Management, Virtual Directory, SSO)

Knowledge and experience on Oracle OAM, ForgeRock OpenAM and/or other Web Access Management systems (like CA SiteMinder), and API integration

Experience on ForgeRock OpenIDM, Oracle OIM and/or other Identity management systems

Experience on SSO (Single-Sign-On) technologies including Cloud, SAML and federation of identities (IdP initiated and SP initiated), multi-factor authentication

Experience on CyberArk, Enterprise Certificate Management and Enterprise Token Services technologies

Experience with LDAP/Directory Services including Active Directory and Radiant Logic

Experience with RACF, DB2, SQL

Experience with Azure, O365 and AWS

Familiar with Regulations, including, GLPA, HIPAA, GDPR, CCPA, and other Cyber Security Regulatory compliance requirements and related programs

ISO 27001/27002 the NIST Cyber Security Framework

Excellent working knowledge of one or more of the following security areas desired: Operating System Security (Windows, Apple, AIX, Linux, zOS), Internet Technologies (NNTP, Proxy, HTTP, HTTPS, HTLM, SSL, X.509), TCP/IP and networking (LAN/WAN/Wireless), Intrusion Detection and Prevention products, Incident Response Management, Public Key Infrastructure technologies including encryption, Kerberos, certification authorities, Application and Network Security Assessments methodologies and tools, General Access Control Security (Active Directory, Linux, and Mainframe security), IPSEC and remote access technologies, End Point Security products (i.e. Anti-virus, Malware, Hard Drive encryption), Ethical Hacking, Incident Response and case management

Forensic tools such as Oxygen, encase, Atola Forensic equipment

Experience in implementing and operating security technology such as firewalls, multi-level security implementation, security assessment scanners, and security monitoring tools (e.g. IDS/IPS, SEIM, AV, Qualys, etc.)

Experience in application and network security assessment methodologies, tools, and techniques

Experience in implementing and operating global end-point security products (anti-virus, anti-malware, hard drive encryption, DLP, etc.)

Security Coding Standards (e.g. OWASP) and Secure Software Development Lifecycles

SOX and HIPAA compliance requirements and related programs