Windows Server Security Engineer

JPMorgan Chase   •  

Newark, DE

Industry: Financial Services

  •  

8 - 10 years

Posted 354 days ago

Our Global Technology Infrastructure Group is filled with innovators who love technology as much as you do. Together, you’ll use a disciplined, innovative and cost-effective approach to deliver a wide variety of high-quality products and services. You’ll work in a stable, resilient and secure operating environment where you—and the products you deliver—will thrive.

  The objective of GTI is to balance both business alignment and the centralized delivery of core products and services. GTI is designed to address the unique infrastructure needs of specific lines of business and the demand to leverage economies of scale across the firm.   Core Foundation Services (CFS) delivers measurable business value by providing core technology solutions that meet secure business demand while realizing cost efficiencies. CFS team’s works with Line of Business partners to develop standardized, resilient operating environments and implements through global technology strategies for the Firm's infrastructure. As a Windows Security Engineer within the CFS space, responsibilities will include architecture, design, engineering, and implementation of systems and associated infrastructure that align and contribute to security of the Windows ecosystem. The incumbent will have in-depth knowledge of Windows Server architecture with extensive knowledge and experience on Windows Security including configurations required to design, implement and support the core infrastructure systems, applications.  The candidate will possess advanced analytical, troubleshooting and design skills. He/she will be a resident Subject Matter Expert (SME) on the Windows Server platform including security (PKI, Kerberos) on the Windows Server Operating System, Windows Build Automation through System Center Configuration Manager (SCCM), Active Directory & Group Policies, Windows Workflow, System Center 2012/2016 products, and others. The role will require automation design, development and implementation as well as hands on and training for operations related to server systems security, performance tuning and monitoring, enterprise platform integration, virtualization and backups. The Engineer will proactively lead and participate in supporting IT projects including new infrastructure build-outs, upgrades to existing infrastructure, routine maintenance and administration in support of the security posture and Cyber Security mandates encompassing all Windows servers globally. This role must interface closely with GTI Plan/Build/Operate Team Leads, Application Development/Security/Storage/Networking Leads and Windows technologists within and outside of CFS.   General Responsibilities:

  • 8 + years in security engineering for Windows Server operating systems in a large Microsoft Windows enterprise environment
  • Deep technical knowledge, both architecturally and operationally, of the Windows Server operating system, its security subsystems and application segmentation to enhance security
  • Familiarity with common Windows attack vectors and demonstrated experience with OS and Platform security hardening
  • Extensive knowledge of configuration management and server deployment and automation tools with a strong preference towards system center Technologies (SCCM, SCSM, Orchestrator) and Evolven.  
  • Experience with  host and session virtualization for Windows Server and Desktop including system recoverability planning and execution
  • Ability to research new technologies and implement quick proof of concepts to determine the benefit
  • Familiarity with Windows Remote Management security and controls
  • Excellent communications and mentoring skills, both within the immediate team and to external teams
  • Strong organizational skills to keep track of operational functions and ensure their timely execution towards resolution
  • Computer related BS/MS or equivalent work experience with experience in object-oriented languages as well as data structures and algorithms
  • Strong knowledge of storage and networking technologies and how they interface with physical and virtual environments
  • Hardware, OS and Active Directory monitoring experience with System Center Operations Manager (SCOM)
  • Experienced in other Microsoft management technologies, including Microsoft Active Directory
  • Working knowledge of Web server administration & operation using IIS
  • The candidate should be able to troubleshoot all aspects of the Windows server stack effectively and understand the product flow of patch management, software distribution and logging in detail
  • Proficiency in scripting for Windows management with PowerShell and VBScript
  • Working knowledge in .NET & C# programming languages
  • Working knowledge of MS SQL Server database administration, SQL Query language and reporting
  • Some technical experience with virtualization and cloud deployments using vRealize, Azure and AWS
  • Knowledge of the Window Server product lifecycle
  • Knowledge of common IT processes, including ITIL and SDLC.

Qualifications:

  • 8 + years in security engineering for Windows Server operating systems in a large Microsoft Windows enterprise environment
  • Deep technical knowledge, both architecturally and operationally, of the Windows Server operating system, its security subsystems and application segmentation to enhance security
  • Understanding of desktop VDI hosting
  • Familiarity with common Windows attack vectors and demonstrated experience with OS and Platform security hardening
  • Extensive knowledge of configuration management and server deployment and automation tools with a strong preference towards system center Technologies (SCCM, SCSM, Orchestrator) and Evolven.
  • Experience with  host and session virtualization for Windows Server and Desktop including system recoverability planning and execution
  • Ability to research new technologies and implement quick proof of concepts to determine the benefit
  • Familiarity with Windows Remote Management security and controls
  • Excellent communications and mentoring skills, both within the immediate team and to external teams
  • Strong organizational skills to keep track of operational functions and ensure their timely execution towards resolution
  • Computer related BS/MS or equivalent work experience with experience in object-oriented languages as well as data structures and algorithms
  • Strong knowledge of storage and networking technologies and how they interface with physical and virtual environments
  • Hardware, OS and Active Directory monitoring experience with System Center Operations Manager (SCOM)
  • Experienced in other Microsoft management technologies, including Microsoft Active Directory
  • Working knowledge of Web server administration & operation using IIS
  • The candidate should be able to troubleshoot all aspects of the Windows server stack effectively and understand the product flow of patch management, software distribution and logging in detail
  • Proficiency in scripting for Windows management with PowerShell and VBScript
  • Working knowledge in .NET & C# programming languages
  • Working knowledge of MS SQL Server database administration, SQL Query language and reporting
  • Some technical experience with virtualization and cloud deployments using vRealize, Azure and AWS
  • Knowledge of the Window Server product lifecycle
  • Knowledge of common IT processes, including ITIL and SDLC.

Req #: 170100127_4