Be an early applicantLess than 25 applicants

Company

First American · 5 hours ago

Principal Security Engineer

USA, Nevada, Remote

Full-time

Remote

Senior Level

$167K/yr - $222K/yr

7+ years exp

Maximize your interview chances

Financial ServicesInsurance

Actively Hiring

Insider Connection @First American

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Leads technical direction in designing and implementing security solutions for corporate technical infrastructure and business applications.

Participates in all phases of project planning in security service support, including functional requirements, design specifications, testing and quality assurance, implementation and support.

Leads technical engineering services to support and update existing security systems and works to automate processes related to security implementations, monitoring, and enforcement.

Investigates, recommends, evaluates, deploys and integrates security tools and techniques to improve our ability to protect corporate assets and infrastructure.

Participates in technical risk assessments and security exposure analyses of systems, networks and business applications.

Evaluates and implements security devices such as firewalls, IDS, IPS, threat correlation tools, vulnerability management tools, encryption capabilities, etc.

Analyzes network elements and designs to ensure secure and optimal system and network performance and cost effectiveness.

Oversees the purchase, installation, and support of security devices.

Responsible for assessing and managing information security risks to pre-existing current systems.

Assists in the planning of large scale systems projects through vendor comparison and cost studies.

Monitors, reports and resolves all security related problems and discrepancies.

Participates as a member of the Information Security Incident Response Team.

Interacts with internal and external clients on security requirements, identifies security process and develops strategies/solutions to security issues while maintaining tight security discipline.

Develops test plan and implements rigorous testing prior to rollout of new systems into the production environment.

Leads Cyber Security incident investigations.

Required to perform duties outside of normal work hours based on business needs.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Information SecurityIntrusion DetectionVPNPKINext-Generation FirewallsNACIdentity ManagementEncryption TechnologiesUNIX/AIXMicrosoft NT/2000CISCOWANsLANsIntrusion Detection SystemsTwo Factor AuthenticationCISSPGIACCCNACCNP

Required

Generally requires a BS Degree in Computer Science, Information Technology, Telecommunications, or Electrical Engineering, or equivalent work experience.

Must have minimum 7 years information security experience.

Must have 5+ years hands on experience with networking, intrusion detection, VPN, PKI, Next-Generation firewalls, NAC; Identity management and encryption technologies.

Uses skills as a seasoned, experienced professional with a full understanding of industry practices and established policies and procedures.

Troubleshoots and guides others on a wide variety of complex problems and identifies solutions within broad application and functional expertise.

May set objectives for project goals and other team members and monitors progress to achieve goals.

Devises or modifies department processes and procedures.

Negotiates, persuades and gains consensus from cross functional team(s).

Errors may cause system/application outages that affect a large number of users or possibly multiple applications.

Experience in implementing Information Security technologies and/or processes required.

Experience in product evaluation and managing vendor relationships required.

Experience in defining Information Security strategy and integrating security technologies into corporate frameworks.

Must have hands on working knowledge of UNIX/AIX, Microsoft NT/2000, firewall multi-layer design and implementation, router access list/packet filtering (CISCO), WANs, LANs, the Internet, Intranets, network protocols and network services (i.e., telnet, ftp, etc.), Intrusion detection systems, Virtual Private Network (VPN), two factor authentication.