Great-West Financial Empower Retirement

  • Sr Security Engineer

    Location US-CO-Denver (DTC)
    Posted Date 2 months ago(11/1/2018 8:20 PM)
    Job ID
    # Positions
  • Position Highlights

    Be Bold Be Brilliant


    Would you like to be a part of one of America's leading financial services firms? Great-West Financial is the nation’s second largest insurer in sales of individual life insurance through banks. We also offer annuity and executive benefits products. Under Empower Retirement, we provide employer sponsored retirement plans as the nation’s second largest retirement plan provider.


    Our over 5,000 associates across 40 locations across the country provide world class service to:


    30,000+ employer sponsored retirement plans

    8 million+ employees participating in their employer-sponsored retirement plan

    467,700+ individual life insurance and annuity accounts

    $460 billion+ total assets under administration


    The Information Security Engineer is responsible for contributing to, and strengthening, the corporate Information Security program. This is a technical position that requires knowledge of security industry standards, the ability to establish and audit security operational functions, and the ability to provide technical security recommendations and/or solutions.  This position develops, updates, documents, and maintains security standards and policies for the organization. This position assists in ensuring that secure computing practices are established and communicated throughout the organization, and that the business is conducted in accordance with established guidelines and regulatory requirements. This position also contributes to security due diligence assessments on current and prospective vendors and products.

    Primary Responsibilities

    • Assist with the development, implementation, and administration of information security policies, standards, and procedures, adhering to industry best practices.
    • Assist in defining the security strategy and integrating regulatory compliance requirements (e.g., PCI, GLBA) into the organizational security roadmap.
    • Assist in ensuring that the corporate IT environment is secure and complies with all internal and external audit requirements.
    • Oversee security hardening standards for IT Infrastructure.
    • Coordinate with systems and network engineers to ensure servers and network devices conform to security standards, and that security devices and controls are working as designed.
    • Evaluate, design, and implement security related solutions, adhering to established change control processes.
    • Implement and maintain cryptographic controls (e.g. data at rest, data in transit) in line with security requirements.
    • Identify potential security risks, and define and document remediation options or mitigating controls.
    • Define and assist in the management of an Incident Response Team that addresses potential or in-progress security events, establishing and adhering to escalation procedures and response times.
    • Review and approve submitted application and systems change requests for security compliance.
    • Assist in maintenance and testing of physical security devices, alarms, and cameras in alignment with established policies and controls.
    • Provide subject matter expertise, counsel, and input for enterprise-wide information security initiatives, strategies, projects, and policies.
    • Maintain certifications and keep up-to-date with current information technology.
    • Perform related duties as requested.


    • Bachelor's Degree in Information Technology, Computer Science, or related field
    • 3+ years' experience with managing security controls, to include defining policies and administering devices such as firewalls, IDS/IPS platforms, DLP devices, e-mail/web filtering solutions
    • Experience as a security specialist in a regulated IT environment including some combination of SOX, HIPAA, GLBA, PCI and responsible for compliance and performing/coordinating audits (1+ year)
    • 2+ years' experience performing network and application security administration, penetration testing and/or threat assessments.
    • 6 years' experience in information technology or related field within the last 10 years OR 8 years' experience in information technology or related field within the last 10 years.
    • CISSP, GIAC certification(s)
    • 3+ years' experience with commercial and open source security applications and technologies (e.g. malware prevention, DLP, IDS/IDP, cryptography, vulnerability scanning and penetration testing), as well as related protocols and tools (e.g. SSH, SSL/TLS, snort, port scanners, root kit detectors, etc.)
    • 2+ years programming/scripting experience one or more of: C, C++, Java, Perl, PHP, Python, and shell

    Physical Requirements/Working Conditions: Normal Office Working Conditions


    This job description is not intended to be an exhaustive list of all duties, responsibilities and qualifications of the job.  The employer has the right to revise this job description at any time.   You will be evaluated in part based on your performance of the responsibilities and/or tasks listed in this job description.   You may be required perform other duties that are not included on this job description.  The job description is not a contract for employment, and either you or the employer may terminate employment at any time, for any reason.

    About Great-West Financial

    At Great-West Financial® and Empower Retirement, our more than 5,700 global associates are dedicated to helping customers secure their financial futures. We offer a range of retirement savings products, life insurance, annuities and investment services from offices across the country. If you’re interested in joining a company that enjoys a record of strong performance and is rich in history yet innovative, bold and transformative, then our organization is an outstanding place for you to grow and succeed. We’re an equal opportunity employer dedicated to workforce diversity. We’re also committed to providing a drug-free workplace.


    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed

    Need help finding the right job?

    We can recommend jobs specifically for you! Click here to get started.