Our vision for the future is based on the idea that transforming financial lives starts by giving our people the freedom to transform their own. We have a flexible work environment, and fluid career paths. We not only encourage but celebrate internal mobility. We also recognize the importance of purpose, well-being, and work-life balance. Within Empower and our communities, we work hard to create a welcoming and inclusive environment, and our associates dedicate thousands of hours to volunteering for causes that matter most to them.

Chart your own path and grow your career while helping more customers achieve financial freedom. Empower Yourself.

Sr. Security Engineer JD:

What you will do

• Conduct security operations necessary to maintain the confidentiality, availability, and integrity of enterprise data and information systems.
• Provide excellent customer service for internal and external customers in support of security initiatives, incident response, and support
• Maintenance of security tools and technologies throughout the enterprise environment such as Palo Alto Firewall features (e.g., App-ID, User-ID, threat prevention, and content filtering).
• Manage and troubleshoot Prisma Access for secure remote connectivity.
• Supporting and Troubleshooting network security in AWS and Azure environments.
• Evaluate, design, and implement security related solutions, adhering to established change control processes
• Provide technical security planning, implementation, configuration, support and troubleshooting services on all security technologies.
• Provide accurate, clear, and concise documentation of system requirements, specifications, and final builds.
• Perform all necessary functions associated with the implementation and integration of security tools and platforms into the enterprise environment.
• Coordinate with systems and network engineers to ensure servers and network devices conform to security standards, and that security devices and controls are working as designed Assist with the development, implementation, and administration of information security policies, standards, and procedures, adhering to industry best practices
• Assist in ensuring that the corporate IT environment is secure and complies with all internal and external audit requirements
• Identify potential security risks, and define and document remediation options or mitigating controls
• Validate security control coverage against identified IOCs based on emerging cyber threat intelligence
• Collaborate with the Offensive Security team to analyze and evaluate the effectiveness of existing security controls against identified TTPs
• Assist in the management of an Incident Response Team that addresses potential or in-progress security events, establishing and adhering to escalation procedures and response times
• Maintain certifications and keep up-to-date with current information technology
• Participate in 24x7 on-call rotation
• Perform related duties as requested

Job Qualifications (Must meet at least three of the below requirements)

• 5+ years of experience with managing security controls, to include defining policies and administering devices such as  Paloaltonetworks firewalls, Paloaltonetworks Prisma, IDS/IPS platforms, and e-mail/web filtering solutions
• 2+ years experience in AWS and Azure cloud operations
• 5 + years of technical experience working with security solutions and conducting security operations
• 3+ years of network security experience and reviewing security tools and solutions and making recommendations on utilization and strategy
• 1+ years web application firewalls
• 5 + years of experience with network protocols, data flows and attacks within an IP environment
• 3+ years of experience in building configurations for security devices and building an automated process to support large-scale deployment
• Good knowledge and experience with security software, firewalls, intrusion detection systems and other security systems and network monitoring.
• 3+ years hands-on technical knowledge of network systems, protocols, and standards such as Ethernet, LAN, WAN and TCP/IP.
• 3+ years of experience with commercial and open-source security applications and technologies (e.g. malware prevention, DLP, IDS/IDP, and cryptography), as well as related protocols and tools (e.g. SSH, SSL/TLS, snort, port scanners, rootkit detectors, etc.)
• 3+ Implement security measures for Kubernetes clusters and containerized applications.
• 3+ years of experience performing network and application security administration
• 2+ years programming/scripting experience –Python, shell

What you will bring

• Bachelor s degree in Information Technology, Computer Science, or related field and 5 years experience in information technology or related field within the last 10 years 
• Preference will be given to those with degrees in Computer Science, Information Technology, Mathematics, Engineering (various disciplines), and other technology-focused areas.
• Must have Palo certification and AWS Solutions Arch 

This job description is not intended to be an exhaustive list of all duties, responsibilities and qualifications of the job.  The employer has the right to revise this job description at any time.   You will be evaluated in part based on your performance of the responsibilities and/or tasks listed in this job description.   You may be required perform other duties that are not included on this job description. The job description is not a contract for employment, and either you or the employer may terminate employment at any time, for any reason, as per terms and conditions of your employment contract.

We are an equal opportunity employer with a commitment to diversity.  All individuals, regardless of personal characteristics, are encouraged to apply.  All qualified applicants will receive consideration for employment without regard to age, race, color, national origin, ancestry, sex, sexual orientation, gender, gender identity, gender expression, marital status, pregnancy, religion, physical or mental disability, military or veteran status, genetic information, or any other status protected by applicable state or local law.