Security Engineer

Position Summary: The Security Engineer is responsible for protecting Union Bank & Trust’s digital assets by ensuring the confidentiality, integrity, and availability of its network infrastructure. This role involves designing, implementing, and maintaining security measures to defend against cyber threats and unauthorized access.

This role is eligible for hybrid work from home opportunity under the work from home guidelines two days in the office three days WFH per week upon completion of onboarding.

Essential Functions:

• Manage and secure core on-premises and cloud infrastructure components of network security including but not limited to firewalls, IDS/IPS, vulnerability scanning, SIEM, secure file transfers, NAC systems, micro-segmentation, certificate management, DNS, Linux, Windows, and application infrastructure.
• Demonstrate strong technical aptitude in IT security, VPNs, antivirus/EDR, web and email gateways, APT detection, router/switch configuration, SNMP, network monitoring tools, SFTP, and web services.
• Collaborate effectively in a team environment, manage projects, and produce detailed technical documentation.
• Provide escalated technical support during and outside business hours.
• Ensure compliance with all applicable laws, regulations (e.g., GLBA, SOX, FFIEC), and internal bank policies by delivering efficient service, supporting audits, and promptly reporting any compliance issues or violations
• Make informed policy and operational decisions within authority limits.
• Develop and maintain security policies, procedures, training materials, and documentation.
• Manage vendor relationships to ensure service levels and contract compliance.
• Monitor UBT’s network for suspicious activity and anomalies.
• Participate in incident response, forensic investigations, and root cause analysis.
• Conduct and remediate regular vulnerability assessments.
• Stay current on emerging threats and security best practices.
• Understand and adhere to all bank policies, laws and regulations applicable to their role. Complete compliance training; follow internal processes and controls as required.
• Report all compliance issues, violations of law or regulations in accordance with the steps defined in bank policies.
• Regular and reliable attendance is an essential function of this position.
• Perform other job-related duties or special projects as assigned.

Qualifications:

• 2+ years of relevant industry experience preferred.
• Hands-on experience with at least five of the following: IDS/IPS, vulnerability scanning, firewalls, web/email gateways, SIEM, antivirus/EDR, VPN/encryption, APT detection, NAC, Microsoft Cloud Security, system hardening, Active Directory, and GPO.
• Understanding of TCP/IP, subnetting, routing, and the OSI model.
• CompTIA Security+ certification or equivalent preferred.
• Familiarity with security frameworks such as NIST, CIS Controls, or MITRE ATT&CK.

Preferred Talents:

• Analytical and detail oriented
• Effective communicator with the ability to explain security risks to technical and non-technical stakeholders
• Organized and capable of multitasking and prioritizing projects
• Independent with sound judgment
• Collaborative team player
• Skilled in using deductive reasoning and critical thinking to identify and solve problems

Working Environment:

• Mostly indoor work with occasional exposure to outdoor elements
• Medium workload-lifting/carrying up to 20 pounds frequently and up to 75 pounds occasionally.
• Some travel is required.
• This role is eligible for hybrid work from home opportunity under the work from home guidelines upon completion of onboarding.

PLEASE VIEW THE APPLICANT TERMS & CONDITIONS BEFORE PROCEEDING WITH YOUR APPLICATION.

Originally posted on Himalayas