Security Engineer

Job Description

Security Engineer

Summary:

The Security Engineering team is responsible both for understanding and securing the ACI-developed and hosted applications as well as the direct management and maintenance of all security-related tools and technologies that are leveraged by the organization. The candidate must therefore have both a strong understanding of Information Security as well as a strong general IT/systems background to be able to effectively suggest, implement, and maintain the health of solutions for the organization. As a Security Engineer, you are expected to have extensive experience in most if not all of the technologies listed and be a sufficient self-starter that is capable of taking high-level directives and driving them through to execution in addition to being a mentor for other engineers and analysts.

Responsibilities:

• Manage the full system lifecycle of enterprise security solutions including:
  • Endpoint Security: Identity Management, Endpoint Protection, Vulnerability Management, and Cryptography systems/platforms,
  • Analytics: Monitoring, logging & SIEM systems
  • Identity Management: Active Directory, LDAP, SailPoint, Kerberos, TACACS/ISE, AAA, Jumpboxes, etc
• Perform in-depth Proof-of-Concepts and "bake-offs" of competing technologies, selecting the right tool via objective scoring criteria
• Develop in-depth documentation and run-books of security tools and platforms including detailed information on the solution itself as well as wiki-style "how to" steps for common processes that can be easily consumed by Operations staff
• Proactively work with Software Development, Application, and Sales teams to understand our in-house developed solutions and implement an effective strategy to secure them early in the process
• Reverse engineering, diagramming, and documentation of custom and legacy applications
• Continuing education of emerging technologies and how to effectively secure them
• Work with Security Operations team to develop standard procedures for handling routine security events

Minimum Requirements:

• Bachelor's degree in Computer Science or Information Security or equivalent experience
• 1+ years of experience in Information Security
• Advanced knowledge of Linux and/or Windows Operating Systems
• Working knowledge of TCP/IP Networking
• Experience supporting and securing highly complex and custom applications
• Experience building highly available solutions at enterprise scale

Preferred Skills:

• Scripting (Python preferred) and Automation (Ansible) experience strongly desired
• DevOps/DevSecOps experience
• Experience with Endpoint Protection solutions such as Anti-virus/malware, FIM (File Integrity Monitoring), HIDS (Host-based Intrusion Detection Systems), DLP (Data Leak Prevention)
• Experience with device and system hardening
• Experience with Identity Management systems
• Experience with Active Directory, LDAP, Kerberos, Cisco TACACS/ISE, AAA
• Experience with Containerization technologies
• Experience with HSM (Hardware Security Modules)

#LI-KC1

About Us

ACI Worldwide is a global leader in mission-critical, real-time payments software. Our proven, secure and scalable software solutions enable leading corporations, fintechs and financial disruptors to process and manage digital payments, power omni-commerce payments, present and process bill payments, and manage fraud and risk. We combine our global footprint with a local presence to drive the real-time digital transformation of payments and commerce.