IT Security Engineer
IT Security Engineer City Chantilly State/Territory Virginia ZIP/Postal code 22151 Apply Now IT Security Engineer Summary PenFed is hiring an IT Security Engineer in Chantilly, VA . The primary purpose of this job is to be responsible for the engineering, design, implementation, maintenance, analysis, and administration of PenFed's security tools. The IT Security Engineer will also establish procedures and wherever possible, automate routine day-to-day tasks to reduce operational overhead. The Engineer will act as a project lead and as a well-rounded subject matter expert in the IT Security domain. Essential Functions Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. This is not intended to be an all-inclusive list of job duties and the position will perform other duties as assigned . Work with project and development teams of new business solution to define information security requirements that are in line with the enterprise information security architecture. Interface with other IT Security teams including, but not limited to Certification and Accreditation, Security Engineering, Incident Response, and Event Management, to gather identified information security risks; develop risk profiles for enterprise-wide business applications and identify areas where existing security architecture requires change or development. Evaluate emerging security technologies. Test and integrate new security solutions. Perform intermediate to advanced level end-to-end penetration testing. Perform risk based security assessment. Perform application security code analysis and testing (DAST). Document security architecture design review results and follow-up on the implementation of recommended controls. Administer network and computing devices/systems that enforce security policies and audit controls in Windows, Mac and UNIX based environment. Automate routine day-to-day tasks to reduce operational overhead. Perform network traffic inspections, network traffic monitoring, and log analysis. Recommend the application of fixes, patches, and recovery procedures in the event of a security incident. Perform hands-on support for a wide range of security technologies including, but not limited to NGFW, SIEM, IDS/IPS, HIDS, malware analysis and protection, content filtering, logical access control, identity and access management, and data loss prevention, content filtering technologies, application firewalls, vulnerability scanners, LDAP, forensics, software, security incident response. Create reports from various IT Security systems for the purpose of monitoring critical activities and providing security metrics to IT Security management. Participate in security analysis and review as part of the Life Cycle management of IT projects, and in particular, security risk analysis. Participate in assessment of compliance with security regulations such as PCI, GLBA, and FFIEC. Coordinate external assessment teams to complete audit and security assessments. Respond to requests for information in support of internal and external audits and examinations. Evaluate industry best practices relative to PenFed security requirements. Recommend software tools and/or other solutions for technical challenges involving IT Security processes. Posess and maintain up-to-date understanding of emerging trends in IT Security. Peer-review security architecture design artifacts produced by colleagues and provide feedback. Education and Experience Equivalent combination of education and experience is considered. Bachelor's Degree in Information Technology or related field is required. Minimum of ten (10) years' of experience in Information Technology. Minimum of five (5) years' of experience in IT Security is required. Preferably experienced as an Information Security Professional designing secure solutions in an environment comprising of financial and trading systems, and systems handling strictly confidential, personnel and proprietary information. Working knowledge of secure architecture design and engineering practices. Working knowledge of application security code analysis and testing. Intimate knowledge and working experience on Risk Based Security Assessment practices. Intermediate to expert level working experience/knowledge of end-to-end penetration testing. Working experience with packet capture on firewalls and servers is preferred. Working experience with security analytics tools (eg SIEM, Splunk) is preferred. Experience working with endpoint security and DLP solutions is preferred. Experience and understanding of secure code development application security assessment tools is preferred. Experience with SQL security practices, knowledge of zSecure applications, SharePoint security administration and understanding of TCP/IP and LAN network topography. Requires ability to work "off hours" to implement solutions in order to limit impact/exposure to customers. Supervisory Responsibility This position will mentor employees. Licenses and Certifications At least two (2) professional certifications are required [Security +, CISSP, CISM, GIAC, CISA, CCNP]. Work Environment While performing the duties of this job, the employee is regularly exposed to an indoor office setting with moderate noise. Physical Demands The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. While performing the duties of this job, the employee is required to meet the following physical demands: Physical Demand None Seldom Occasionally Frequently Reading X Writing X Sitting X Standing X Walking X Bending, Stretching or Reaching X Driving X Talking on the phone, person-to-person & in group X Hearing on the phone, person-to-person & in group X Vision for near, mid-range, far, peripheral, depth and color X Use of computer X Use of telephone X Use of office equipment X Pushing/pulling/lifting/ carrying from 5 to 50 lbs. X Travel Limited travel to various work sites is required. About Us Founded in 1935, and still growing, we began as the War Department Federal Credit Union. Today, PenFed is one of the country's strongest and most stable financial institutions with over 1.5 million members and over $21 billion in assets. We serve members in all 50 states and the District of Columbia, as well as on military bases in Guam, Puerto Rico and Okinawa. Our mission isn't simply to help our members get by. We exist to help them realize every ounce of their potential. We exist to educate, and to encourage. We exist to usher their dreams into the land of reality. We provide our employees with a lucrative benefits package including robust medical, dental and vision plan options, plenty of paid time off, 401k with employer match, on-site fitness facilities at our larger locations, and more. Equal Employment Opportunity PenFed management will maintain and observe personnel policies which will not discriminate or permit harassment or retaliation against a person because of race, color, creed, age, sex, gender, gender identity, gender expression, religion, national origin, ancestry, marital status, military or veteran status or obligation, the presence of a physical and/or mental disability or medical condition, genetic information, sexual orientation, and all statuses protected by applicable state or local law in all recruiting, hiring, training, compensation, overtime, position classifications, work assignments, facilities, promotions, transfers, employee treatment, and in all other terms and conditions of employment. PenFed will reasonably accommodate qualified individuals with a disability so that they can apply for a job or perform the essential functions of a job unless doing so causes a direct threat to these individuals or others in the workplace and the threat cannot be eliminated by reasonable accommodation or if the accommodation creates an undue hardship to PenFed. Contact human resources (HR) with any questions or requests for accommodation at 703-838-1568.