Role DescriptionSMBC is seeking a Security Systems Engineer who has a strong passion for Security Systems and is interested in building a career at a fast growing and reputable Bank. The Network Security Engineer will be responsible for configuring firewall rules, analyzing security events, and implementing robust security controls across systems and networks. This role involves close collaboration with cross-functional IT teams to ensure effective protection strategies are seamlessly integrated into infrastructure operations.
The ideal candidate will also have opportunities to serve as a subject matter expert, leveraging their technical expertise to resolve complex challenges while navigating established policies, standards, and governance frameworks.
This role will report to the Security Systems Engineer Team Lead.
Role Objectives: Expertise- Works with internal IT Application, Infrastructure, Network and Support teams to ensure that security controls are implemented at all significant and relevant phases of IT processes.
- Configures firewall rulebase and objects.
- Configures system and network related parameters.
- Performs IDS/IPS configuration, updates and tuning.
- Participates in incident response and investigations; tracks and documents the remediation process.
- Coordinates and performs security audits and vulnerability assessments to determine internal security procedures and compliance requirements.
- Reviews security event log data and investigates anomalies
- Implements and supports information security solutions including security architectures, change and configuration management and security product integration.
- Performs testing to evaluate new products for network and system controls.
- Provides training to Help Desk staff on access request procedures
- Adheres to project management methodology/SDLC/PLC processes as it relates to projects and their implementation.
Qualifications and Skills• 2 years experience supporting IT Security tools and applications.
• Bachelor's Degree in Computer Science or related field.
• Process documentation, flow charting and re-engineering experience.
• Some Project Management Experience a plus .
• Encryption technologies and PKI infrastructure
• Knowledge of Information Security regulatory requirements, codes and industry guidance such as such as NIST 800-53, ISO27001, CIS and Cobit.
• Ability to utilize resources to contribute valuable input to Information Security projects and Risk Assessments, e.g. ISACA, CIS, FS-ISAC.
• Networking technologies (TCP/IP/etc...) and protocols (SSL, SSH, LDAP, SMTP, DNS, etc.).
• Microsoft Active Directory.
• Familiarity with security monitoring concepts.
• Administration of more than Palo Alto Firewall, Checkpoint Firewall, Imperva Waf, Tufin.
• Have strong verbal and written communication skills.
• Ability to demonstrate a self-motivated and disciplined approach to learning and working.
• Ability to work in a team environment and demonstrate leadership skills when needed.
• Possess a highly developed sense of personal accountability and follow-through with an ability to effectively prioritize multiple personal tasks, projects, and goals.
Additional RequirementsSMBC's employees participate in a Hybrid workforce model that provides employees with an opportunity to work from home, as well as, from an SMBC office. SMBC requires that employees live within a reasonable commuting distance of their office location. Prospective candidates will learn more about their specific hybrid work schedule during their interview process. Hybrid work may not be permitted for certain roles, including, for example, certain FINRA-registered roles for which in-office attendance for the entire workweek is required.
