Information Security Operations Engineer II
Location: Spartanburg, SC, United States
Share:
Description
Summary/Objective
In this role, you will be ensuring that ACA's IT systems and underlying infrastructure are implemented to “security in depth” standards and best practices.
Essential Functions
- Develop, document and implement a layered security platform and associated processes enabling core cloud operational requirements for:
- Network and Host-based security
- Applications and data security
- Security monitoring & alerting
- Access management
- Partner with ACA Quality Systems & Infrastructure Management insuring proper quality management
- Partner with Development and Business Intelligence teams to insure layered security for new ACA products and services
- Insure ACA systems and process security profiles adhere to security and NIST best practices for network, host, applications and access security methodologies
- Lead, document and implement/instrument a cloud security profile, including:
- Service infrastructure and platform security planning requirements
- Security monitoring integration with ACA Infrastructure Support System
- Monitoring and advising and security patching requirements
- Overall ownership and sign-off on security profile readiness for all SaaS, Business Systems, Operational Support Systems and Client Services Systems.
· Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions
Other Duties and Responsibilities:
Effectively collaborate and communicate with Development, Infrastructure, DevOps and LoBs in cross-functional teams and relevant management to report out security operations status
Qualifications:
· Possess one or more advanced professional security certifications related to chosen discipline (CISSP, CCSP)
· Demonstrated understanding of Information Security best practices.
· At least 2+ years’ experience implementing layered security practices for network, host, applications, data and access to IaaS, PaaS and SaaS services in a hybrid deployment environment.
· Experience in developing and deploying security specific solutions including the automation of repeatable security tasks and controls
· Strong practical knowledge of web authentication / authorization standards
· Solid oral and written communication skills
· Solid collaboration skills.
· Experience implementing and operating security technologies and processes in a hybrid cloud environment, such as AWS or Azure, customer premise
· Have 1+ years of cloud-based security run-time management experience
· BS/BA degree in Computer Science, Information Systems or related field
· Experience with software-defined network, compute and storage platforms
· Strong networking fundamentals. You understand TCP/IP, VLAN’s, DNS, load balancing and software-defined layer 2/3 rule configurations.
· Experience with security vulnerability and penetration tools such as McAfee, Qualys, Proof Point
· Implementation and management experience with hardware and software firewalls, AV, IDS/IPS platforms.
Supervisory Responsibility
No Supervisory Experience Required.
No Supervisory Experience Required.
Work Environment and Physical Demands
This job operates in a professional office environment. This role routinely uses standard office equipment such as computers, phones, photocopiers, filing cabinets and fax machines.
Position Type/Expected Hours of Work
This is a full-time position with a work schedule of Monday-Friday with some schedule variations as needed.
Travel
This position will not require travel.
EEO Statement
ACA provides equal employment opportunities (EEO) to all applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state and local laws. ACA complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities.
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.
Share:
Interested in working for American Credit Acceptance?
Take the first step by joining our Talent Network today!
