AVP Cybersecurity Engineer

Lead the program responsible for driving security architecture goals, harmonizing infrastructure security controls, and implementing cutting-edge security solutions. Conduct research on new and evolving threats and vulnerabilities using multiple sources and data feeds. Identify suspicious/malicious activities or codes. Monitoring and analysis of security events to determine intrusion and malicious events. Search firewall, email, web or DNS logs to identify and mitigate intrusion attempts. Provide reporting of security related metrics, trends and events. Participate in incident response and forensic investigations as needed. Present security awareness content to corporate staff as assigned. Experience in AppSec, threat modeling, and secure architecture, and the ability to lead transformational security projects to strengthen corporate security practices.

Essential Functions   

1. Responds to system and/or network security breaches.
2. Evaluates products and technologies for improving the banks security posture.
3. Maintains close working relationships with internal departments and external vendors and partners to communicate technical issues and vulnerability findings.
4. Drive the harmonization of infrastructure security controls across a multi-cloud environment with a variety of operating models.
5. Reviews the latest alerts to determine relevancy and urgency, creates new trouble tickets for alerts that signal further action
6. Configures and operates security monitoring tools
7. Leverages emerging threat intelligence (IOCs, updated rules, etc.) to determine relevancy and urgency
8. Reviews and collects asset data (configs, running processes, etc.) to conduct investigations
9. Make recommendations to optimize security monitoring tools based on threat hunting discoveries
10. Perform daily triage, classification and prioritization of threat intelligence feeds
11. Participate in crafting and deploying mitigation and eradication strategies
12. Lead organizational efforts to secure and align with best security practices for the corporate environment and applications.
13. Identify current gaps and enhancements in the corporate infrastructure and implement solutions and controls using the latest technologies and architecture.
14. Actively participate in security team meetings that facilitate secure design.
15. Assist with the implementation of new security controls, including the setup of POCs and evaluations of various vendor solutions.
16. Remain current with new security threats and assess systems to ensure they can defend the business.
17. Implement and improve security assurance, resiliency, vuln management processes for the Cybersecurity team.
18. Regularly monitor the security community for public-facing security issues as well as to learn new tactics for securing data transmissions and reducing attack exposure.
19. Performs other duties as assigned

#ZR

Education/Experience Requirements

• Undergraduate degree in information systems, related field, or commensurate experience
• Direct experience working with components of the Microsoft Cybersecurity Reference Architectures (MCRA)
• Five years security systems experience including:
  • Sysadmin skills (Linux/Mac/Windows)
  • Programming skills (Python, Ruby, PHP, C, C#, Java, Perl, and more)
  • Security certifications (CISSP, GCIA GCIH, GCFA, GCFE, etc.)
  • Familiarity with data visualization tools and penetration testing tools

Preferred Requirements

• Strong working knowledge of the MCRA including but not limited to Windows Defender, Purview and Azure Management
• Excellent verbal, written, and interpersonal communication skills.
• A team player able to work effectively in a team fostered, multi-tasking environment.
• Working knowledge of Security Information and Event Management (SIEM)
• Proficient in one of the standard scripting languages such as PERL, Python, PowerShell, etc.
• Strong working knowledge of VPNs, Data Loss Prevention (DLP), IDS/IPS, and cloud services.
• Strong working knowledge in the security aspects of multiple platforms, operating systems, software, communications, and network protocols.
• Working knowledge of TCP/IP, computer networking, routing, and switching, IDS/IPS, penetration and vulnerability testing, Firewall and intrusion detection/prevention protocols, Network protocols and packet analysis tools, Anti-virus and anti-malware
• Experienced with current network technologies and Cloud providers.
• Ability to prioritize and organize work.

Working at The Bancorp Bank, N.A. and Benefits Information: click here

Diversity & Inclusion at The Bancorp Bank: click here

The Bancorp Bank, N.A. is an EQUAL OPPORTUNITY EMPLOYER and will not discriminate on the basis of race, color, religion, gender, gender identity, sexual orientation, pregnancy, citizenship, national origin, age, disability, genetic information, veteran status or other protected category with respect to recruitment, hiring, training, promotion, and other terms and conditions of employment.

Employment with The Bancorp Bank, N.A. includes successfully passing a background check including credit, criminal, education, employment, OFAC, and social media background history.