Great-West Financial Empower Retirement

Principal Security Engineer

US-CO-Denver (DTC)
1 month ago
Job ID
14566
# Positions
1
Category
Technology

Position Highlights

Be Bold Be Brilliant

 

Would you like to be a part of one of America's leading financial services firms? Great-West Financial is the nation’s second largest insurer in sales of individual life insurance through banks. We also offer annuity and executive benefits products. Under Empower Retirement, we provide employer sponsored retirement plans as the nation’s second largest retirement plan provider.

 

Our over 5,000 associates across 40 locations across the country provide world class service to:

 

30,000+ employer sponsored retirement plans

8 million+ employees participating in their employer-sponsored retirement plan

467,700+ individual life insurance and annuity accounts

$460 billion+ total assets under administration

 

The Information Principal Security Engineer is responsible for contributing to, and strengthening, the corporate Information Security program. This is a technical position that requires knowledge of security industry standards, the ability to establish and audit security operational functions, and the ability to provide technical security recommendations and/or solutions.  This position develops, updates, documents, and maintains security standards and policies for the organization. This position assists in ensuring that secure computing practices are established and communicated throughout the organization, and that the business is conducted in accordance with established guidelines and regulatory requirements. This position also contributes to security due diligence assessments on current and prospective vendors and products.

 

Primary Responsibilities

  • Conduct security operations necessary to maintain the confidentiality, availability, and integrity of enterprise data and information systems.
  • Provide excellent customer service for internal and external customers in support of security initiatives, incident response, and support.
  • Maintenance of security tools and technologies throughout the enterprise environment.
  • Evaluate, design, and implement security related solutions, adhering to established change control processes.
  • Provide technical security planning, implementation, configuration, support and troubleshooting services on all security technologies.
  • Provide accurate, clear, and concise documentation of system requirements, specifications, and final builds.
  • Perform all necessary functions associated with the implementation and integration of security tools and platforms into the enterprise environment.
  • Coordinate with systems and network engineers to ensure servers and network devices conform to security standards, and that security devices and controls are working as designed.
  • Assist with the development, implementation, and administration of information security policies, standards, and procedures, adhering to industry best practices.
  • Assist in defining the security strategy and integrating regulatory compliance requirements (e.g., PCI, GLBA) into the organizational security roadmap.
  • Assist in ensuring that the corporate IT environment is secure and complies with all internal and external audit requirements.
  • Implement and maintain cryptographic controls (e.g. data at rest, data in transit) in line with security requirements.
  • Identify potential security risks, and define and document remediation options or mitigating controls.
  • Define and assist in the management of an Incident Response Team that addresses potential or in-progress security events, establishing and adhering to escalation procedures and response times.
  • Review and approve submitted application and systems change requests for security compliance.
  • Provide subject matter expertise, counsel, and input for enterprise-wide information security initiatives, strategies, projects, and policies.
  • Maintain certifications and keep up-to-date with current information technology.
  • Participate in 24x7 on-call rotation.
  • Perform related duties as requested.
  • Lead multiple large-scale security projects.  These projects will be developed concurrently and possess numerous interdependencies.  Act as the security representative on cross-team mission critical IT projects.
  • Guides junior and senior engineers as they work with various teams on projects and support staff in the development of functional and technical specifications and requirements; reviews completed specifications and recommends actions.
  • Must have strong organizational skills and attention to detail, and possess exceptional ability to communicate effectively with peers, supervisors, managers, and customers within a team-oriented, collaborative environment.
  • Must to identify cyber security threats and perform analysis based on threat vectors and identified vulnerabilities and build solutions to reduce the risk level.
  • Must possess the skills to perform research independently, identify pertinent information for evaluation, and develop potential solutions and alternate courses of action.
  • Familiar with automated vulnerability scanning assessment tools and their operation to produce security artifacts.
  • Must possess the skills to automate solutions using various scripting tools.
  • Analyze system security architectures and make recommendations for security design and requirements.
  • Must be able to multi-task, work independently and as part of a team, share workloads, and deal with sudden shifts in project priorities.
  • Monitors information systems for security incidents and vulnerabilities; develops monitoring and visibility capabilities; reports on incidents, vulnerabilities, and trends.

Qualifications

  • Bachelor s degree in Information Technology, Computer Science, or related field and 6 years experience in information technology or related field within the last 10 years OR 8 years experience in information technology or related field within the last 10 years.
  • CISSP, GIAC certification(s)
  • 5+ years of experience with managing security controls, to include defining policies and administering devices such as Cisco and Paloaltonetworks firewalls, IDS/IPS platforms, DLP devices, e-mail/web filtering solutions.
  • 6 + years of technical experience working with security solutions and conducting security operations.
  • 6+  years of network security experience and reviewing security tools and solutions and making recommendations on utilization and strategy.
  • 6 + years of experience with network protocols, data flows and attacks within an IP environment.
  • 5+ years of experience in building configurations for security devices and building an automated process to support large-scale deployment.
  • Extensive knowledge and experience with security software, firewalls, intrusion detection systems and other security systems and network monitoring.
  • Extensive hands-on technical knowledge of network systems, protocols, and standards such as Ethernet, LAN, WAN and TCP/IP.
  • Experience as a security specialist in a regulated IT environment including some combination of SOX, HIPAA, GLBA, PCI and responsible for compliance and performing/coordinating audits (1+ years).
  • 3+ years of experience with commercial and open source security applications and technologies (e.g. malware prevention, DLP, IDS/IDP, cryptography, vulnerability scanning and penetration testing), as well as related protocols and tools (e.g. SSH, SSL/TLS, snort, port scanners, rootkit detectors, etc.).
  • 2+ years of experience performing network and application security administration,  penetration testing and/or threat assessments.
  • 2+ years programming/scripting experience – one or more of: C,C++, Java, Perl, PHP, Python, shell.
  • 10+ years Cisco – firewall, switching, and routing.
  • 3+ years Palo Alto Networks firewalls.
  • 3+ Bluecoat Proxy (or similar.).
  • 5+ years SIEM.

Plus:

  • Cloud (AWS, Azure, Google).
  • Cyber Forensics.
  • HSM.
  • SDN (ACI, Open flow).
  • Linux/Unix.
  • Scripting (Bash, Perl, Python).

#DI

About Great-West Financial

At Great-West Financial® and Empower Retirement, our more than 5,700 global associates are dedicated to helping customers secure their financial futures. We offer a range of retirement savings products, life insurance, annuities and investment services from offices across the country. If you’re interested in joining a company that enjoys a record of strong performance and is rich in history yet innovative, bold and transformative, then our organization is an outstanding place for you to grow and succeed. We’re an equal opportunity employer dedicated to workforce diversity. We’re also committed to providing a drug-free workplace.

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed

Need help finding the right job?

We can recommend jobs specifically for you! Click here to get started.