Lincoln Financial is looking for a team-oriented security engineering professional. This position is primarily responsible for implementing, maintaining, and administering a portfolio of security tools used within Lincoln for detecting, preventing and responding to security events and overall security risk reduction.
Responsibilities:
- Responsible for technical aspects of vulnerability management processes, including network and host scanning, vulnerability escalation and reporting. Technical lead for prioritizing, communicating, and partnering with other teams to manage risk
- Manage Lincoln application security testing infrastructure health and availability. Collaborate with other Lincoln security teams as needed for configuration best-practice, platform integration and upgrades
- Identifies systems misconfigurations and serves as a resource to others to correct the configurations
- Maintains availability of security technologies, including but not limited to vulnerability scanners, application security testing platform, especially system health, upgrades, logs, and policies
- Partners with project teams ensuring control techniques are incorporated into the overall security model regarding operating systems, applications, database management and network management
- Provide clear and concise documentation of technical solutions and communicate plans to management and customers
- Assess and assists in the development of security requirements and evaluate security services and technologies
- Create scripts and/or other techniques to automate and speed up tasks
- Researches, evaluates, and recommends new or improved information security software and tools
Requirements:
- 3+ years of Information Security / Infrastructure Protection experience that directly aligns to the specific responsibilities of this position
- Four-Year undergraduate degree in a technical field or equivalent experience
- Agile Mindset; awareness/understanding of Agile methodologies and familiarity with static & dynamic application security testing concepts and tools
- Background and understanding of vulnerability management processes
- Experience with vulnerability management platforms (e.g. Qualys, Rapid7, etc.)
- Knowledge of and experience with diverse IT technologies, enterprise IT data centers, and cloud computing environments
- Experience with application programing interfaces, automation, and scripting (e.g. Python, Powershell, etc.)
- Experience with at least one major Cloud Service Provider (e.g. - AWS, Azure, GCP, etc.)