Information Security Engineer (INFOR012994) - #257291
Centennial Bank
Date: 2 days ago
City: Conway, AR
Contract type: Full time
This job was posted by https://www.arjoblink.arkansas.gov : For more
information, please see: https://www.arjoblink.arkansas.gov/jobs/4459217
**GENERAL DESCRIPTION OF POSITION**
The Information Security Engineer is responsible for supporting
applications used by Information Security including automation, security
Architecture, And Other Critical Functions.
**ESSENTIAL DUTIES AND RESPONSIBILITIES**
1\. Manage the applications & infrastructure specific to the Information
Security teams, and ensure functionality & uptime meets operational
needs.
2\. Assist in designing and implementing an automation strategy for
Information Security, including the selection and maintenance of
automation platforms.
3\. Execute the vulnerability management program, determining
criticality of patches & working with Information Security Governance
team to monitor compliance.
4\. Manage Discovery and Data Loss Prevention security analytics
platform and partner with stakeholders to develop the strategy for this
environment to support future needs.
5\. Ensure security tools are updated to reflect a complete, accurate
and valid inventory of all systems, infrastructure and applications.
6\. Conducts vulnerability assessments and other security reviews of
systems to ensure remediation based on the risk profile of the asset.
7\. Reviews and recommends improvements to company security posture
leveraging concepts such as network segmentation, resilient
authentication, least privileged access, privacy by design, etc.
8\. Develop and maintain security architecture artifacts (models,
templates, standards and procedures) that can be used to leverage
security capabilities in projects and operations.
9\. Participate in application and infrastructure projects to provide
security planning advice.
10\. Determine baseline security configuration standards for operating
systems (e.g., operating system hardening), network segmentation, and
other technologies.
11\. Develop standards and practices for data protection within the
company, including technologies such as encryption and tokenization.
12\. Track developments and changes in the technology and threat
environments to ensure that these are adequately addressed in security
strategy plans and architecture artifacts.
13\. Advocate security best practices & share insights with stakeholders
in a variety of areas (secure coding, architecture, system/app
administration, system hardening, etc.) and recommend changes to enhance
security & reduce risk..
14\. Participate in the Vendor Due Diligence process as needed to
conduct security assessments of existing and prospective vendors.
15\. Assists in e-discovery procedures when necessary.
16\. Provide support and guidance for legal and regulatory compliance
efforts, including audit support.
17\. Assist in defining metrics and reporting that effectively
communicate performance & maturity of the security program.
18\. Assist Information Security leadership in developing strategy and
roadmaps for Security team.
19\. Complete required BSA/AML training and other compliance training as
assigned.
20\. The ability to work in a constant state of alertness and in a safe
manner.
21\. Perform any other related duties as required or assigned.
**EDUCATION AND EXPERIENCE**
Technical degree required in such disciplines as Computer Engineering,
CPA, etc., plus 6 years related experience and/or training, and 2 years
related management experience, or equivalent combination of education
and experience.
**PREFERRED CERTIFICATES, LICENSES, REGISTRATIONS**
Microsoft Information Protection Administrator SC-400
Administering Information Security in Microsoft 365 SC-401
Information Systems Security Architecture Professional (ISSAP) ISC2
Certified Cloud Security Professional (CCSP) ISC2
**ADDITIONAL INFORMATION**
Required
Computer Science, OR equivalent work experience
etc
vulnerability management tools
information, please see: https://www.arjoblink.arkansas.gov/jobs/4459217
**GENERAL DESCRIPTION OF POSITION**
The Information Security Engineer is responsible for supporting
applications used by Information Security including automation, security
Architecture, And Other Critical Functions.
**ESSENTIAL DUTIES AND RESPONSIBILITIES**
1\. Manage the applications & infrastructure specific to the Information
Security teams, and ensure functionality & uptime meets operational
needs.
2\. Assist in designing and implementing an automation strategy for
Information Security, including the selection and maintenance of
automation platforms.
3\. Execute the vulnerability management program, determining
criticality of patches & working with Information Security Governance
team to monitor compliance.
4\. Manage Discovery and Data Loss Prevention security analytics
platform and partner with stakeholders to develop the strategy for this
environment to support future needs.
5\. Ensure security tools are updated to reflect a complete, accurate
and valid inventory of all systems, infrastructure and applications.
6\. Conducts vulnerability assessments and other security reviews of
systems to ensure remediation based on the risk profile of the asset.
7\. Reviews and recommends improvements to company security posture
leveraging concepts such as network segmentation, resilient
authentication, least privileged access, privacy by design, etc.
8\. Develop and maintain security architecture artifacts (models,
templates, standards and procedures) that can be used to leverage
security capabilities in projects and operations.
9\. Participate in application and infrastructure projects to provide
security planning advice.
10\. Determine baseline security configuration standards for operating
systems (e.g., operating system hardening), network segmentation, and
other technologies.
11\. Develop standards and practices for data protection within the
company, including technologies such as encryption and tokenization.
12\. Track developments and changes in the technology and threat
environments to ensure that these are adequately addressed in security
strategy plans and architecture artifacts.
13\. Advocate security best practices & share insights with stakeholders
in a variety of areas (secure coding, architecture, system/app
administration, system hardening, etc.) and recommend changes to enhance
security & reduce risk..
14\. Participate in the Vendor Due Diligence process as needed to
conduct security assessments of existing and prospective vendors.
15\. Assists in e-discovery procedures when necessary.
16\. Provide support and guidance for legal and regulatory compliance
efforts, including audit support.
17\. Assist in defining metrics and reporting that effectively
communicate performance & maturity of the security program.
18\. Assist Information Security leadership in developing strategy and
roadmaps for Security team.
19\. Complete required BSA/AML training and other compliance training as
assigned.
20\. The ability to work in a constant state of alertness and in a safe
manner.
21\. Perform any other related duties as required or assigned.
**EDUCATION AND EXPERIENCE**
Technical degree required in such disciplines as Computer Engineering,
CPA, etc., plus 6 years related experience and/or training, and 2 years
related management experience, or equivalent combination of education
and experience.
**PREFERRED CERTIFICATES, LICENSES, REGISTRATIONS**
Microsoft Information Protection Administrator SC-400
Administering Information Security in Microsoft 365 SC-401
Information Systems Security Architecture Professional (ISSAP) ISC2
Certified Cloud Security Professional (CCSP) ISC2
**ADDITIONAL INFORMATION**
Required
- A four-year college degree in one of the follo ing disciplines:
Computer Science, OR equivalent work experience
- Five (5) years of experience, in a dedicated technical role such as
etc
- Direct, hands-on experience managing security infrastructure such as
vulnerability management tools
- Knowledge of applications, databases, operating systems, hypervisors,
- Strong decision-making capabilities, with a proven ability to w
How to apply
To apply for this job you need to authorize on our website. If you don't have an account yet, please register.
Post a resumeSimilar jobs
Special Asset Loan Officer I (SPECI012874)
Centennial Bank,
Conway, AR
4 days ago
This job was posted by https://www.arjoblink.arkansas.gov : For more information, please see: https://www.arjoblink.arkansas.gov/jobs/4459042 The Special Asset Loan Officer I manages delinquent loans, collections, and problem/nonperforming loans. This position manages and maintains OREO, OREO sales and rental income, repossessions, and bankruptcies. **ESSENTIAL DUTIES AND RESPONSIBILITIES** 1\. Completes required BSA/AML training and other compliance training as assigned. This duty is performed annually.\...
Host
Purple Cow Restaurants,
Conway, AR
2 weeks ago
Title of Position: Host Department: Front of the House Reports to: Manager on Duty Overall Responsibility: Purple Cow host team members are responsible for cooperatively working with all team members to consistently provide guests with “Outrageous” service. Host staff are responsible for seating guests, managing wait lists, informing guests of Purple Cow offerings, presenting guests with menus and other sales...
Customer Service Rep - Physician Enterprise
Conway Regional Health System,
Conway, AR
3 weeks ago
Overview Directly responsible for scheduling PCN clinic patients for treatment, processing patients' demographic, insurance, and financial information, and coordinating with nursing staff and physicians to provide efficient services to PCN clinic patients. Qualifications High School Graduate, Customer Oriented, Excellent verbal and written communication skills, Basic computer skills, Ability to multitask, Ability to handle a busy and stressful environment.
