Columbia Financial, Inc.

Security Engineer I

Columbia Financial, Inc.$70K — $95K *
Information Technology
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • Bachelor's degree in an IT related discipline required
  • 5+ years in information technology or information security
  • 3+ years of experience specifically in an information security role
  • 1+ years of engineering experience
  • Relevant certifications or advanced degrees may substitute for experience
  • Knowledge of security practice areas such as identity and access management and cloud security

Responsibilities

  • Execute and enhance security operations documentation
  • Support assessments of security processes for improvements
  • Assist incident response by investigating security events and resolutions
  • Collaborate with technology and business teams as needed
  • Maintain security platforms through health monitoring and upgrades
  • Develop analytical security reports and metrics to drive action
  • Assist in managing small to medium-sized security projects

Benefits

  • Medical, Dental, Vision and Rx plans
  • Bonus programs
  • Employee Stock Option Program (ESOP)
  • Life, Long Term Disability, and Accidental Death & Dismemberment insurance
  • Paid Time Off (PTO) including personal and vacation time
  • Paid Sick Time
  • Bank Holidays
  • 401k program participation
Full Job Description
Summary: Responsible for the day-to-day security operations at Columbia Bank. The individual will serve as a technical operations subject matter expert and will be responsible for the proper maintenance of security controls, detection of and response to potential threats, and remediation and escalation of incidents. Supports the cyber incident response team, provides guidance to technology operators, and ensures execution of processes. The Security Engineer's core responsibilities include threat and vulnerability management; identifying security risks, assessing exposures, and implementing measures to protect organizational systems and data.

Job Responsibilities:

Security Operations

  • Executes, enhances, and creates/maintains documentation for security operations processes.
  • Supports one or more security practice area and aids in the assessment of security processes, platforms, and practices to identify areas for improvement.


Incident Response Support

  • Supports incident response efforts by reviewing security events and escalations, performing investigations, and seeing matters through to resolution.
  • Collaborates with technology and business organizations as appropriate.


Security Platform Management

  • Performs ongoing security platform maintenance including health monitoring, troubleshooting, tuning, and upgrades.
  • Assists in implementing and operationalizing new security solutions. Coordinates with internal and external resources as required.

Analytical Responsibility

  • Develops and analyzes security related content - reports, alerts, dashboards, and metrics - to gain insights from the Bank's systems, platforms, and data.
  • Utilizes content outputs to drive subsequent action plan through to completion.


Project Management

  • Assists in the management of small to medium sized projects according to project management schedules.


Professional Development

  • Stays abreast of relevant industry related developments, trends, and threats.
  • Commits to ongoing professional education and development in the Information / Cyber Security field.
  • Performs other job-related duties as assigned.


Other Responsibilities

  • Performs other job-related duties as assigned.

Requirements:

  • Bachelor's degree in an IT related discipline required.
  • At least 5 years of experience in information technology, information security, risk, or similar field.
  • 3+ years of experience in an information security role.
  • 1+ years of engineering experience.
  • Relevant industry certifications and/or advanced degrees may be considered in lieu of experience.
  • Knowledge of one or more security practice areas including security architecture, identity and access management, asset management, vulnerability management, threat detection and response, endpoint security, network security, cloud security, web security, email security, data security, application security, threat intelligence, configuration management.
  • Performs ongoing analysis of various security events, incident alerts, event notifications, health status from security tools, and additional detection and response activities.
  • Investigates security incidents and collaborates with the CISO and business organizations in response to detected threats.
  • Coordinates with internal and external resources for risk mitigation and service outage resolution.
  • Develops standard operating procedures for deployed security solutions, interfacing with managed security service providers, incident responses, review and escalation processes.
  • Communicates security warnings, ongoing awareness, and general best practices to end-users.
  • Develops performance metrics, trend statistical data, and customizes management reports for Risk, IT and Information Security.
  • Knowledge of securing network/infrastructure design and deployment.
  • Experience in conducting a daily assessment of vulnerabilities identified by infrastructure scans.
  • Evaluate, rate, and perform risk assessments on assets.
  • Prioritizing vulnerabilities discovered along with remediation timeline(s).
  • Knowledge of scripting languages and automation methodologies.
  • Knowledge of intrusion detection methodologies and techniques for detecting host and network-based intrusions.
  • Experience with log analysis, packet flow, TCP/UDP traffic, firewall technologies, IDS technologies (e.g., Snort rules), proxy technologies, and antivirus, spam and spyware solutions.
  • Deep knowledge of computer networking concepts and protocols, and network security methodologies.
  • Knowledge of cybersecurity management frameworks, regulatory requirements and industry leading practices.
  • Experience in conducting technical risk assessments.
  • Commits to ongoing professional education / training / certification in the Information / Cyber Security field.


Columbia Bank offers the following benefits:
  • Medical, Dental, Vision and Rx which are contributory.
  • Bonus programs.
  • Employee Stock Option Program (ESOP).
  • Life Insurance, Long Term Disability and Accidental Death and Dismemberment (LTD&AD&D).
  • Paid Time Off (PTO) which includes Personal and Vacation Time.
  • Paid Sick Time.
  • Bank Holidays.
  • Employees may participate in the 401k program.

Schedule:
  • This role is eligible for a hybrid schedule: 3 days in the office and 2 days work from home, based on business needs. This arrangement may change without notice.


About Columbia Financial, Inc.

Columbia Financial, Inc. is a bank holding company headquartered in Fair Lawn, New Jersey. The company operates as a community bank providing a broad range of banking services to businesses and individuals in its markets. Columbia Financial operates through its wholly-owned subsidiary, Columbia Bank, which has over 60 branches in New Jersey. The bank offers a range of deposit products, including checking accounts, savings accounts, and certificates of deposit, as well as loan products, such as commercial and consumer loans, real estate loans, and agricultural loans. Columbia Financial was founded in 1927 and went public in 2019.
Learn more about Columbia Financial, Inc.
Size
645 employees
Market Cap
$2.3 billion
Industry
Net Income
$57.6 million
5 Year Trend
+9.8%
NASDAQ

Similar Jobs

More Jobs at Columbia Financial, Inc.

More Information Technology Jobs

Find similar Security Engineer I jobs: