Information Security Engineer Leader

Posted 11 days 10 hours ago by Onemain Financial

Permanent
Not Specified
I.T. & Communications
Maryland, Linthicum Heights, United States, 21090
Job Description

We are looking for an Information Security Engineer Leader to join our Information Security team in our Baltimore, MD, office. As a member of the Info Sec team, you'll help maintain the security posture of OneMain applications, services, and infrastructure in order to protect against security threats including intrusions, malware, system-level breaches, unauthorized access, insider attacks, and loss of proprietary information. The Security Engineering Manager reports to the Head of Security Architecture, Engineering and Operations with a dotted relationship to the CISO . You drive the on-going development, execution and operations of OneMain' s security engineering practices across all pillars, application, infrastructure (including Cloud), database, cryptography, network and endpoint, implementing best-practices, and integration tooling across the enterprise.

What we will want you to do:

  • Ability to integrate information security requirements into the acquisition process; using applicable baseline security controls as one of the sources for security requirements; ensuring a robust software quality control process; and establishing multiple sources (e.g., delivery routes, for critical system elements).
  • Manage Security Engineering work with project teams to ensure the technical quality of security-focused deliverables and adherence to security standards, governance and controls practices.
  • Manage the research, evaluation, design, testing, recommendation, planning or implementation of new or updated application security technologies, coding practices, tools and services. Analyze their impact on the existing, and if applicable, target environments.
  • Manage Security Engineering resources, overseeing deliverables and reviewing quality of work from App-Dev, Infrastructure, and Network teams when meeting security requirements and best practices.
  • Research, design and implement measures to automate security or security reporting tasks where feasible.
  • Mature secure coding best practices to enable the development and implementation of security objectives that are clearly aligned with business, technology and threat drivers.
  • Collaborate with IT and business groups in developing and implementing solutions which meet information security standards
  • Assess existing architectures and systems for opportunities to improve overall security
  • Implement and manage security appliances and tools including network firewalls, WAF, vulnerability scanners, SIEM, IDS, IPS, etc
  • Write code to automate security functions wherever possible, including contributing to internally developed and/or open source security tools
  • Work with IT / Software Engineering teams to remediate vulnerabilities
  • Automate security scanning as part of application development's continuous integration pipeline
  • Assess risk of changes for the impact to our security
  • Improved Cyber Analytics capabilities for new and emerging threats across our infrastructure
  • Proactive research to identify and understand new threats, vulnerabilities, and exploits
  • Perform security scans of the network devices and systems

Skills or Experience we want you to have:

  • BS/MS in Computer Science, Mathematics, or related field
  • Certifications addressing security and risk management, asset security, security engineering, communications and network security, identity and access management, security assessment and testing, security operations, software development security, information security governance, information risk management, information, security program development and management, information security incident management, such as CISSP, CRISC, GPEN, GCPM, GWAPT, OSPA, OSPT, OSCP, GSLC, or relevant
  • Great ability to communicate with developers and technologists
  • Interest in both breaking and building capabilities and silos
  • Ability to listen for nuances and dig into details in order to understand systems

Note: Employment-based non-immigrant visa sponsorship and/or assistance is not offered for this specific job opportunity.

Benefits:

At OneMain, we understand that for our team members to be their best, they need the right opportunities and benefits. Our comprehensive benefits package for full-time and some part-time employees includes health and well-being options for team members and dependents, up to 4% matching 401(k), tuition reimbursement, continuing education, incentive pay, paid time off, paid volunteer time and more.

Our Company:

OneMain Financial is the country's largest lending-exclusive financial company. With nearly 1,600 branches across 44 states, we proudly offer safe, affordable and transparent installment loans to millions of hard-working people. Our customers turn to us to meet important financial needs, including debt consolidation, medical expenses, household bills, home improvements and auto purchases. OneMain is constantly innovating to serve customers when, where and how they want by investing in our technical digital capabilities. Our steadfast commitment to doing the right thing extends to our customers, our employees and the communities where we live and work - a mission that hasn't changed for more than 100 years.

#LI-DB1

Email this Job