IT Security Engineer
PenFed is hiring an IT Application Security Engineer in Chantilly, VA . The primary purpose of this job is to be responsible for the engineering, design, implementation, maintenance, analysis, and administration of PenFed’s security tools. The IT Security Engineer will also establish procedures and wherever possible, automate routine day-to-day tasks to reduce operational overhead. The Engineer will act as a project lead and as a well-rounded subject matter expert in the IT Security domain.Essential Functions Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. This is not intended to be an all-inclusive list of job duties and the position will perform other duties as assigned.
Work with project and development teams of new business solution to define information security requirements that are in line with the enterprise information security architecture.
Interface with other IT Security teams including, but not limited to Certification and Accreditation, Security Engineering, Incident Response, and Event Management, to gather identified information security risks; develop risk profiles for enterprise-wide business applications and identify areas where existing security architecture requires change or development.
Evaluate emerging security technologies. Test and integrate new security solutions.
Perform intermediate to advanced level end-to-end penetration testing.
Perform risk based security assessment.
Perform application security code analysis and testing (DAST).
Document security architecture design review results and follow-up on the implementation of recommended controls.
Administer network and computing devices/systems that enforce security policies and audit controls in Windows, Mac and UNIX based environment.
Automate routine day-to-day tasks to reduce operational overhead.
Perform network traffic inspections, network traffic monitoring, and log analysis.
Recommend the application of fixes, patches, and recovery procedures in the event of a security incident.
Perform hands-on support for a wide range of security technologies including, but not limited to NGFW, SIEM, IDS/IPS, HIDS, malware analysis and protection, content filtering, logical access control, identity and access management, and data loss prevention, content filtering technologies, application firewalls, vulnerability scanners, LDAP, forensics, software, security incident response.
Create reports from various IT Security systems for the purpose of monitoring critical activities and providing security metrics to IT Security management.
Participate in security analysis and review as part of the Life Cycle management of IT projects, and in particular, security risk analysis.
Participate in assessment of compliance with security regulations such as PCI, GLBA, and FFIEC. Coordinate external assessment teams to complete audit and security assessments. Respond to requests for information in support of internal and external audits and examinations.
Evaluate industry best practices relative to PenFed security requirements.
Recommend software tools and/or other solutions for technical challenges involving IT Security processes.
Posess and maintain up-to-date understanding of emerging trends in IT Security.
Peer-review security architecture design artifacts produced by colleagues and provide feedback.
Bachelor’s Degree in Information Technology or related field is required.
Minimum of ten (10) years’ of experience in Information Technology.
Minimum of five (5) years’ of experience in IT Security is required. Preferably experienced as an Information Security Professional designing secure solutions in an environment comprising of financial and trading systems, and systems handling strictly confidential, personnel and proprietary information.
Working knowledge of secure architecture design and engineering practices.
Working knowledge of application security code analysis and testing.
Intimate knowledge and working experience on Risk Based Security Assessment practices.
Intermediate to expert level working experience/knowledge of end-to-end penetration testing.
Working experience with packet capture on firewalls and servers is preferred.
Working experience with security analytics tools (e.g. SIEM, Splunk) is preferred.
Experience working with endpoint security and DLP solutions is preferred.
Experience and understanding of secure code development application security assessment tools is preferred.
Experience with SQL security practices, knowledge of zSecure applications, SharePoint security administration and understanding of TCP/IP and LAN network topography.
Requires ability to work “off hours” to implement solutions in order to limit impact/exposure to customers.
This position will mentor employees.
At least two (2) professional certifications are required [Security +, CISSP, CISM, GIAC, CISA, CCNP].
Travel Limited travel to various work sites is required.
Founded in 1935, and still growing, we began as the War Department Federal Credit Union. Today, PenFed is one of the country’s strongest and most stable financial institutions with over 1.5 million members and over $21 billion in assets. We serve members in all 50 states and the District of Columbia, as well as on military bases in Guam, Puerto Rico and Okinawa.
Our mission isn’t simply to help our members get by. We exist to help them realize every ounce of their potential. We exist to educate, and to encourage. We exist to usher their dreams into the land of reality.
We provide our employees with a lucrative benefits package including robust medical, dental and vision plan options, plenty of paid time off, 401k with employer match, on-site fitness facilities at our larger locations, and more.
Equal Employment Opportunity
PenFed will maintain and observe personnel policies which will prohibit discrimination or harassment against a person because of race, color, creed, age, sex, gender, religion, national origin, ancestry, genetic information, military or veteran status or obligation, the presence of a physical and/or mental disability and all other statuses protected by applicable state or local law in all recruiting, hiring, training, compensation, overtime, position classifications, work assignments, facilities, promotions, transfers, employee treatment, and in all other terms and conditions of employment. PenFed will also prohibit retaliation against individuals for raising a complaint of discrimination or harassment or participating in an investigation of same.
PenFed will also reasonably accommodate qualified individuals with a disability so that they can apply for a job or perform the essential functions of a job unless doing so causes a direct threat to these individuals or others in the workplace and the threat cannot be eliminated by reasonable accommodation or if the accommodation creates an undue hardship to PenFed. Contact human resources (HR) with any questions or requests for accommodation at 703-838-1568.