Information Security Engineer (Endpoint)

Federal Reserve Bank of Chicago   •  

Chicago, IL

Industry: Financial Services


Less than 5 years

Posted 345 days ago


Job SummaryProvides general expertise on a broad range of Information Security disciplines; areas of concentration include account management, password auditing, network based and web application based vulnerability scanning, virus management, security configuration management, patch management and intrusion detection. Responsible for reviewing, monitoring and tracking security configurations, patch management, vulnerability assessments, and ensuring that processes meet industry standards and compliance requirements. The level of work is considered complex and staff must be able to work under minimal supervision.


Principal Duties and Responsibilities

  • Assists in the development and implementation of security policies and procedures
  • Involved in the evaluation of security products and/or processes to enhance productivity and effectiveness for various platform initiatives
  • Monitors and follows-up on information security policy compliance and adherence using various security tools
  • Performs incident response activities for security events, risk assessments, vulnerability management, and penetration testing
  • Reviews, researches, and implements remediation measures for identified vulnerabilities
  • Implements and maintains hardware and software tools used to support Information Security functions
  • Reviews security violation reports and investigates possible security exceptions
  • Creates and maintains procedure documents detailing security controls and associated processes
  • Acts as a technical or security advisor in risk management processes

Education and Experience

  • Bachelor's Degree in Computer Science, Information Systems, or other related field or equivalent work experience
  • 3 to 5 years of information security experience

Knowledge and Skills

  • Knowledge of UNIX, Windows OS family, TCP/IP and networking technologies required (Anti-Virus, Malware, Endpoint, CISSP a plus)
  • Technical expertise in systems administration and security tools and knowledge of security practices and procedures required
  • Demonstrated independent decision-making abilities and self-directed work habits
  • Strong project management and organizational skills
  • Strong relationship building skills