Sr. Information Security Engineer

Sr Information Security EngineerThe Senior Information Security Engineer conducts network and software vulnerability assessments and testing by utilizing reverse engineering techniques. This job tests the current state of the information security architecture and provides improvement recommendations by gathering key insights found from testing and analyzing the current systems and networks. This job also evaluates system security configurations and performs root cause analysis to determine how to provide optimal IT security for the organization.Key Responsibilities and Duties

Executes vulnerability analysis and exploitation of applications, operating systems and networks.

Identifies intrusion or incident path or method through testing and evaluation procedures.

Contributes to the design, development and implementation of countermeasures, systems integration and tools specific to cyber and information operations.

Resolves complex malware and intrusion issues within the system as they occur.

Monitors industry security updates, technologies and practices on a continual basis to improve overall security management.

Serves as an internal information security consultant on the standards, complex issues and best practices for the organization.

Performs testing and analysis of complex software systems to determine both the functionality and intent of the systems.

Builds and maintains operational and configuration documentation and creates and maintains diagrams.

Works with Cybersecurity Risk and Security Operation teams to enhance the overall security posture of the enterprise.

Educational Requirements

University (Degree) Preferred

Work Experience

3+ Years Required; 5+ Years Preferred

Physical Requirements

Physical Requirements: Sedentary Work

Career Level7ICPreferred Experience:

3 to 5+ years of experience in Information Security with a focus on penetration testing and vulnerability management.

Experience in the financial industry is preferred.

Experience with Application Security is preferred.

Certifications

Relevant certifications such as GIAC Penetration Tester (GPEN), Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), or Certified Information Systems Security Professional (CISSP).

Desired SkillsProject Management and Coordination

Experience in managing a penetration testing program, including scheduling, scoping, execution, and reporting.

Ability to develop and maintain penetration testing policies, procedures, and documentation.

Skilled in coordinating multiple penetration testing projects simultaneously.

Ability to manage project timelines, resources, and deliverables effectively.

Risk Management

Capability to assess and prioritize risks based on findings from penetration tests.

Experience in developing and implementing risk mitigation strategies.

Vendor and Partner Management

Ability to ensure vendor adherence to agreed-upon scope, timelines, and quality standards.

Vulnerability Assessment

Expertise in identifying, analyzing, and prioritizing vulnerabilities.

Experience with vulnerability scanning tools and techniques.

Cross-Functional Collaboration

Strong communication skills to interact effectively with IT, legal, compliance, and other business units.

Ability to convey technical findings and recommendations to non-technical stakeholders.

Experience working in cross-functional teams and leading security initiatives involving multiple departments.

Soft SkillsAnalytical Thinking

Strong problem-solving and analytical skills to assess complex security issues and develop effective solutions.

Attention to Detail

High level of attention to detail to ensure thorough testing and accurate reporting.

Leadership

Leadership skills to mentor other team members and guide the overall penetration testing strategy.

Adaptability

Ability to adapt to changing security landscapes and evolving threats.

Posting end date: 7/29/24#LI-Hybrid #LI-CM1Company SummaryEverBank provides nationwide banking services to consumer and commercial clients through a variety of channels, including online and mobile applications, as well as its Florida-based financial centers.VEVRAA Federal ContractorBenefits SummaryEverBank is committed to the well-being of its associates. That's why we offer a comprehensive Total Rewards package commensurate with the position and job-related qualifications, skills and knowledge. EverBank strives to pay wages competitive with those prevailing in our geographic areas and industry.EverBank's Total Rewards package includes superior benefits such as, health, wellness and work life offerings that can help you achieve and maintain your best possible physical, emotional and financial well-being.EverBank prohibits pay discrimination on the basis of any protected characteristic.EverBank may require a background check as a condition of employment. Qualified applicants with arrest and/or conviction records will be considered in accordance with applicable federal, state, and local laws and regulations, including, but not limited to, any laws and regulations specifically pertaining to banks and federal contractors.EverBank seeks priority referrals of protected veterans for jobs at all locations within the state.Pay Range $98,700 to $133,600EEO StatementEverBank, N.A. is an equal opportunity (EEO) employer, dedicated to maintaining a work environment free of bias, harassment, discrimination and retaliation. As an EEO employer, EverBank expressly prohibits discrimination, harassment and retaliation based on protected characteristics such as race, creed, ethnicity, color, age, religion, sex, sex stereotype, pregnancy, sexual orientation, gender, gender identity, gender expression, transgender status, marital status, national origin, ancestry, physical or mental disability, genetic history and information, or military or veteran status. Providing a safe, inclusive environment is a priority at EverBank and, consistent with that mission, EverBank considers all qualified applicants for employment regardless of protected status.Pay Transparency Non-Discrimination ProvisionWe will not discharge or in any other manner discriminate against associates or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another associate or applicant. However, associates who have access to the compensation information of other associates or applicants as a part of their essential job functions cannot disclose the pay of other associates or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by us, or (c) consistent with our legal duty to furnish information. If you believe that you have experienced discrimination, contact OFCCP at 1.800.397.6251. TTY 1.877.889.5627. www.dol.gov/ofccp (https://urldefense.com/v3/http:/www.dol.gov/ofccp;L8-7AA!WETVLfn333rqXNYi0-qITSUktDEWiFnQqvstF1J-gO8B03ANdCf4ucPkrvzeJpXk8bwyTvLqjEa8-JEpoxwcjXaB$) .Machine Readable FilesThe Transparency in Coverage Final Rules require certain group health plans to disclose on a public website information regarding in-network provider rates and historical out-of-network allowed amounts and billed charges for covered items and services in two separate machine-readable files (MRFs). The MRFs for the benefit package options under are linked below:Machine Readable Files (MRFs) - Aetna