Sr. Network Security Engineer

At Early Warning, we've powered and protected the U.S. financial system for over thirty years with cutting-edge solutions like Zelle, Pazeâ„ , and so much more. As a trusted name in payments, we partner with thousands of institutions to increase access to financial services and protect transactions for hundreds of millions of consumers and small businesses. Positions located in Scottsdale, San Francisco, Chicago, or New York follow a hybrid work model to allow for a more collaborative working environment. Candidates responding to this posting must independently possess the eligibility to work in the United States, for any employer, at the date of hire. This position is ineligible for employment Visa sponsorship. Overall Purpose: The Sr. Network Security Engineer designs, deploys, and manages network security infrastructure, with an emphasis on proxy, data loss prevention (DLP) solutions, Intrusion Prevention and Detection System (IDS/IPS). This role's focus is on collaborating with audit and compliance teams and performing control testing to ensure regulatory compliance. Essential Functions: Influences the design, implementation, and management of enterprise proxy and DLP solutions. Consults with governance, audit, and compliance teams to ensure security solutions meet regulatory and policy requirements. Develops or responds to requirements for tools to meet needs that are not currently being met with the current toolsets. Develops, implements, and executes control tests to validate the effectiveness of security measures. Monitors and maintains the performance, availability, and reliability of network security tools, resolving issues as they arise. Ensures that tools assigned are running secure and stable code. Maintains detailed technical documentation, including configurations, control test results, and operational guides. Contributes to the development of Early Warning's security policy and procedures. Acts as primary and secondary on-call in rotation with other Network Security Engineers to cover 24x7 response. Mentors Network Security Engineering staff on proficiencies of Early Warning's business practices and technology owned by team. Minimum Qualifications: Experience and/or Education typically obtained through completion of a bachelor's degree or 2-year degree in Computer Science, Engineering, Math or Physical Science. Minimum 7 years of general IT experience. Minimum 5 years of IT security experience with demonstrated competency with vendor tools such as Netskope, Palo Alto, Proofpoint, and Microsoft. Expert ability to read, write, manipulate computer scripting (bat, bash, python, PowerShell). Expertise understanding of networking concepts including broadcast domains, routing, layer 2 and layer 3, .1q trunks, NIDS, NAT, PAT, and firewall administration. Demonstrated experience with encryption technologies, encryption at rest and in motion, effective hashing algorithms. Demonstrated expertise with operating system, application, network, and database security architectures. Demonstrated expertise of proxies, multi factor authentication, log management solutions, and vulnerability management. Experience in financial institutions, understanding regulatory and compliance requirements such as PCI DSS, NYDFS, or SOX. Ability to work independently and within a team environment. Effective interpersonal skills, able to comfortably present to peers, coworkers, and customers. Expertise in analyzing technical issues and making recommendations for corrective action. Familiarity with Zero Trust architectures and SASE frameworks. Background and drug test. Preferred Qualifications: Demonstrated level 3 proficiency in bash/PowerShell scripting. Certifications such as Certified Information Systems Security (CISSP), Palo Alto PCNSE, Microsoft SC-200, or Netskope Certified Cloud Security Administrator (NCCSA). 6-9 years Unix/Windows administration background. Knowledge of compliance standards such as PCI DSS, NIST, ISO 27001, and NYDFS. Physical Requirements: Working conditions consist of a normal office environment. Work is primarily sedentary and requires extensive use of a computer and involves sitting for periods of approximately four hours. Work may require occasional standing, walking, kneeling and reaching. Must be able to lift 10 pounds occasionally and/or negligible amount of force frequently. Requires visual acuity and dexterity to view, prepare, and manipulate documents and office equipment including personal computers. Requires the ability to communicate with internal and/or external customers. Employee must be able to perform essential functions and #J-18808-Ljbffr

Created: 2025-02-01