Information Security Engineer

Outstanding long-term contract opportunity! A well-known Financial Services Company is looking for a Information Security Engineer in Columbus, OH (Hybrid).

Work with the brightest minds at one of the largest financial institutions in the world. This is a long-term contract opportunity that includes a competitive benefit package! Our client has been around for over 150 years and is continuously innovating in today's digital age. If you want to work for a company that is not only a household name, but also truly cares about satisfying customers' financial needs and helping people succeed financially, apply today.

Contract Duration: 24 Months

Required Skills & Experience

• 4+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work or consulting experience, training, military experience, education.
• 2+ years of Risk Management or Financial Services Industry experience, or equivalent experience demonstrated through one or a combination of the following: work experience, training, military experience, education.
• 2+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education.
• 2+ years of intermediate to advanced level experience with scripting/automation using tools such as: Bash, PowerShell, Python, Ansible, VBScript, or JavaScript, UI path, etc.
• 2+ years of Linux and Windows server experience
• Knowledge of Cryptographic protocols & algorithms.
• Knowledge and understanding of implementing infrastructure upgrades, security patches, version upgrades for systems, appliances and HSM’s.
• Experience with Agile Scrum or Kanban methodologies.
• Proven experience with change and incident management practices in medium to large enterprise environments.

Desired Skills & Experience

• Technical understanding of specific business operations, processes, products, and customer interactions where they manifest risk.
• Demonstrated capacity to pro-actively and independently analyze and solve problems and address risks with the business unit’s risk appetite and all risk and compliance program requirements.
• Support the execution and maintenance of RCSA program which includes:
• Identify risks applicable for the RAU.
• Ensure data is up to date.
• Identify items that are applicable to the RAU in the data provided.
• Identify risk drivers.
• Ensure process inventory is updated in the RCSA RAU
• Assesses, documents, and communicates emerging risks, themes and identified control deficiencies to management and risk partners in a timely manner.
• Foster strong relationships with team and collaborate effectively. Ensures coordination with team, line of business, other business units, Audit, and regulators on risk related topics.
• Ensures internal collaboration with the team, line of business/ partners.
• Interfaces internally with the team, line of business, and risk partners.
• Timely update, reporting and escalation of issues.
• Experience with DevOps and CI/CD automated build and deployment processes.
• Experience with application support in Linux and Windows server environments.
• Experience mentoring/guiding less experienced staff.
• Strong analytical skills with high attention to detail and accuracy.
• Advanced critical thinking, problem solving and technical troubleshooting abilities.
• Security certifications such as CISSP, GIAC or equivalent.
• Knowledge and understanding of implementing infrastructure upgrades, security patches, or version upgrades.
• Experience with and the ability to thrive in a complex and fast-paced technology and/or information security organization, within a large enterprise environment.
• Strong verbal, written, and interpersonal communication skills.

What You Will Be Doing

• Consult on or participate in moderately complex initiatives and deliverables within Information Security Engineering and contribute to large-scale planning related to Information Security Engineering deliverables.
• Review and analyze moderately complex Information Security Engineering challenges that require an in-depth evaluation of variable factors.
• Contribute to the resolution of moderately complex issues and consult with others to meet Information Security Engineering deliverables while leveraging solid understanding of the function, policies, procedures, and compliance requirements.
• Collaborate with client personnel in Information Security Engineering.
• Collaborate with, guide and counsel Critical Infrastructure process and control owners for Control Assurance requirements, including identifying where controls reside, oversight of control documentation changes, evaluating effectiveness and functioning as liaison to control assurance teams in 1st and 2nd Lines responsible for Testing.
• Ensure a proper Critical Infrastructure profile of applicable regulations and associated controls as well as residual risks and compensating controls are maintained and continuously updated in appropriate systems of record on an ongoing basis.
• Establish the inventory of all relevant business processes, governance channels, internal testing, audit, regulatory engagements and prioritize internal preparation, review routines and the integration with RCSA as applicable.
• Establish regular routines with corporate risk, testing & validation and audit partners to provide transparency into business risk profile and trend.
• Conduct risk assessments to evaluate the adequacy and effectiveness of policies, procedures, processes, systems, technology, and internal controls.
• Provide reporting, written and verbal updates to Secure Network Services Leadership and Enterprise risk committees as issues/incidents arise that require escalation.
• Deploy automation strategies for encryption, tokenization and key management products and services including Hardware Security Modules, security appliances and security applications deploying in physical, virtual and containerized environments.
• Provide technical guidance and oversight to teams and team members responsible for product delivery and operational maintenance.
• Support company driven audits, gather evidence of compliance to company policies, and drive product enhancements, when needed, to remediate findings.
• Conduct technical investigation of incidents to identify causes and recommend future mitigation strategies.
• Support incident response, root cause analysis and corrective action activities.

You will receive the following benefits:

• Medical Insurance - Four medical plans to choose from for you and your family
• Dental & Orthodontia Benefits
• Vision Benefits
• Health Savings Account (HSA)
• Health and Dependent Care Flexible Spending Accounts
• Voluntary Life Insurance, Long-Term & Short-Term Disability Insurance
• Hospital Indemnity Insurance
• 401(k) including match with pre and post-tax options
• Paid Sick Time Leave
• Legal and Identity Protection Plans
• Pre-tax Commuter Benefit
• 529 College Saver Plan

Motion Recruitment Partners (MRP) is an Equal Opportunity Employer, including Veterans/Disability/Women. All applicants must be currently authorized to work on a full-time basis in the country for which they are applying, and no sponsorship is currently available. Employment is subject to the successful completion of a pre-employment screening. Accommodation will be provided in all parts of the hiring process as required under MRP’s Employment Accommodation policy. Applicants need to make their needs known in advance.