Cybersecurity Cloud Engineer

FHLB Dallas actively pursues dedicated and hardworking individuals to be a part of our professional team. Positions are offered on an as-needed basis for all departments. View our current opportunities by clicking the View Open Positions tab above.

The Cybersecurity Engineer defines and maintains information security processes, controls, technologies, and policies. Collaborates with IT teams, Senior Level IT Management, and other Executives to drive security policy balancing enterprise data protection and productivity. This requires in-depth knowledge of technical standards, regulations, and best practices. Additionally, it demands persistent learning of new technologies, industry trends, and technical vulnerability and threats, including social engineering threat vectors all culminating in certification(s) relevant to the security role. The Cybersecurity Engineer will monitor systems activities and fine tunes system and cloud parameters and configuration to optimize performance and ensure security of environment.

The Cybersecurity Engineer is responsible for assisting in the monitoring and executing a large portion of the Bank's Information Security Program. Completes tasks designed to ensure security of the organization's systems and information assets. Develops automations that support the streamlining of cybersecurity operations on premise and in the cloud. Researches and analyzes operational risk issues; performs data analysis / mining to support risk monitoring; proactivity identify operational and security issues; performs vulnerability management, scanning, and reporting, lead investigations of possible security incidents, manages events, incidents, malware, and patching, and operates as a lead on assigned system implementation projects.

The Cybersecurity Engineer provides cyber security expertise in the analysis, assessment, development, and evaluation of security solutions and architectures to secure applications, operating systems, databases, and networks; Build reusable, testable, scalable, and efficient security automations that improve daily operations of Cloud and on-premises infrastructure/security solutions. Provide information security guidance & support to application engineering & infrastructure teams. Proactively maintains the security infrastructure of the Bank through execution of mid-level to senior administration activities, log analysis, and automation. This position supports the critical infrastructure providing services to our customer and will work with groups within the Bank to ensure the Information Security Program is operating effectively.

PRIMARY RESPONSIBILITIES:

• Responsible for automating manual processes within the security space.
• Responsible for utilization of cloud security tools to reduce vulnerabilities and risk.
• Configure VMs cloud storage and web applications, replication, disaster recovery and backups.
• Implement, manage, and maintain key security systems within the enterprise.
• Perform detailed risk assessments and audits of enterprise systems, and established IT practice to ensure ongoing risk mitigation and compliance.
• Implement and operate specific compliance tool sets designed to demonstrate continuous compliance of the enterprise security and IT environment.
• Provide troubleshooting support for server and application problems.
• Coordinate with vendors and escalate issues as needed.
• Document problems in FHLB's and associated vendor trouble ticket system.
• Draft and review procedures and desk reference guides.
• Responsible to execute on specific projects and/or security tasks assigned from various projects
• Supports the Banks business continuity efforts. Documents, reviews, updates procedures related to application access controls or IT Security infrastructure that are executed in a disaster scenario.
• Performs hands-on support for a wide range of security technologies including, but not limited to: Azure Security solutions, Office365 Security configurations, IDS/IPS, malware analysis and protection, content filtering, logical access controls, identity and access management, data loss prevention, firewalls, content filtering technologies, cloud security tools and vulnerability scanning.
• Responsible for engineering cloud security solutions to include Security Incident and Event Monitoring (SIEM) system, vulnerability scanning, web application testing, network monitoring, and Database Activity Monitoring; Write tutorials, how-to videos, and other technical articles for team's administration guide reference.
• Responsible for the architecture and administration of access to applications, portals, and external business services as well as IT systems and services. High degree of knowledge of Identity and Access concepts and technologies to secure production and corporate access, such as: SSO, SAML; Understanding of controls (e.g. access control, auditing, authentication, encryption, integrity, physical security, and application security).
• Monitors and responds (including systems/infrastructure related to IT Security operations) to potential information security threats.
• Performs in-depth analysis of potential issues and documents in reports targeted to security management. Assists in the resolution of information security incidents.
• Build security automation for on-premise and cloud environments in the areas of enforcing controls and incident response process.
• Additional duties as assigned.

JOB REQUIREMENTS:

• Bachelor's Degree, Computer Science, Information Systems, or other related field preferred.
• 5+ years progressive experience in IT support role (Security Operations, Network Operations, IT Operations, Helpdesk, Technical Support).
• Information Assurance/Security/Technical certifications is preferred. Experience in highly regulated environments including financial services or banking industry is preferred. One or more Azure / Cloud Certification strongly preferred.
• Technical proficiency with Microsoft, Linux or Unix server operating systems and Networking (routing minimally).
• Experience with broad array of security technologies, such as NGFW, WAF, SIEM, endpoint security, vulnerability management solutions (Qualys, Tenable), Database Activity Monitoring Systems (DAM), and more.
• Knowledge of system and network architecture; Local and wide area networking concepts, principles and protocols; encryption experience, including virtual private networks (VPNs), IPsec, SSL/TLS, LDAP and public key infrastructure (PKI).
• Maintain and monitor compliance with regulatory and security industry standards. Identify and implement process improvements including automation where appropriate.
• Working knowledge of internal controls, compliance, regulations (such as Sarbanes Oxley), and IT Frameworks (such as COBIT, ISO, and ITIL). Has basic understanding of segregation of duties within a business context
• Possesses senior-level understanding of concepts or knowledge in various information security areas, such as: Identity and Access Management, Security technology, Role-based Access Controls, Information Risk and Governance.
• Extremely detail oriented and driven to succeed.
• Must possess excellent communications and interpersonal skills and be able to effectively work with all levels of Bank management as well as external customers.
• Must be able to communicate technical information to non-technical users.
• Normal working requirements which involve occasional evenings and weekends.

FHLB Dallas Offers a Professional, Inclusive Culture

FHL Bank Dallas employees are committed to and exemplify the following principles:

• Service to our members is first and foremost
• All business will be conducted honestly and ethically
• Each employee contributes to customer service by directly serving our members or supporting those who do
• Interaction with members should focus on building professional relationships and helping customers achieve their goals
• Cooperation and teamwork throughout and across all levels of FHLB Dallas are essential to its effectiveness
• Colleagues and members will be treated with the utmost respect and dignity

FHLB Dallas provides equal employment opportunity to all individuals without regard to race, religion, color, sex, age, marital status, ancestry, veteran status, disability, or national origin. FHLB Dallas will consider for employment all persons on an individual basis consistent with job-related criteria without regard to visible and non-visible disabilities. Equal opportunity applies to all employment practices, including recruitment, screening, hiring, compensation and training, as well as other conditions and privileges of employment.