Job Information
Ascensus Senior Security Operations Engineer in Philadelphia, Pennsylvania
At Ascensus, technology is more than just a solution. It powers the business that helps millions of people save for what matters—retirement, education, and healthcare. Our technology experts tackle exciting challenges in collaborative teams, but work in an environment where individual and career development is always valued. Technology associates leverage their talents and passion, building new and innovative platforms, creating programs founded in automation in agile frameworks, and driving existing and new markets—all of which supports the rapid growth of a dynamic industry leader.
Section 1: Position Summary
This position will be responsible for operational security responsibilities across Ascensus. The individual hired for this position requires a passion for data protection, strong problem solving and analytics, documentation, communication and organizational skills, collaborative abilities, self-motivation, innovation, efficiency and attention to detail. This position will be empowered to help guide our operational security program. This position reports to the Security Operations Lead. Work location is flexible, however, preference for our Dresher, PA, Brainerd, MN, Newton, MA or Fargo, ND offices.
Section 2: Job Functions, Essential Duties and Responsibilities
Responsible for protecting, securing, and proper handling of all confidential data held by Ascensus to ensure against unauthorized access, improper transmission, and/or unapproved disclosure of information that could result in harm to Ascensus or our clients.
Our I-Client service philosophy and our Core Values of People Matter, Quality First and Integrity Always® should be visible in your actions on a day to day basis showing your support of our organizational culture.
Assist with other tasks and projects as assigned
Essential Duties and Responsibilities:
Security Event Monitoring & Response
Monitor security events from sources including, but not limited to:
SIEM
IDS/IPS
Network and web application firewalls
Anti-Virus/Malware
Applicable server and application security logs
Data Loss Prevention (DLP)
Analyze events filtering for false positives
Understanding of basic network services, vulnerabilities and attacks
Respond to and escalate events; participate in on-call rotation
Work with the security team to enhance processes & procedures
Contribute to and maintain documented processes around monitoring & response
Work closely with information security, IT, risk & governance and facilities teams.
Periodically report on metrics
Process phishing email escalations from Associates
Correlate events with other known social engineering attempts
Management of Security Solutions
Build, manage and maintain tools including, but not limited to:
SIEM
IDS/IPS
Web Application Firewall
Anti-Virus/Malware & Endpoint Protection
DLP
Web content filtering
Vulnerability scanning
File intergrity monitoring
Network Access Control (NAC)
Maintain documentation around tools (e.g., SOPs & configurations)
Champion the information security tool’s usage to maximize features
Review access requests around content filtering, removable media and local administrative exceptions
Work collaboratively with the various technology teams to accomplish security objectives
Additional security experience may be gained depending on associate’s level of interest and availability:
Assessing and selecting security vendors or solutions
Identify emerging vulnerabilities and evaluate associated risks
Assisting in incident response events
Security testing (vulnerability scans, aspects of ethical hacking/penetration testing)
Detailed configuration reviews
Assist with other tasks and projects as assigned
Supervision
- N/A
Section 3: Experience, Skills, Knowledge Requirements
Experience managing security tools noted above; expert level knowledge in two or more
Experience with monitoring and response activities
Knowledge of information security risks, at least technical aspects including working knowledge around remediation
Strong written and oral communication skills. The ability to communicate effectively (clear, concise and professionally) with all levels within Ascensus
Highly organized and able to process and manage inventories of controls and findings
Excellent analytical and problem resolution skills
Self-starter and able to demonstrate a high level of independence with little oversight and direction
Persistence and strength to champion initiatives
Expert level proficiency in MS Office software applications, specifically Word, Excel and Power Point
Able to manage department projects/initiatives; project management experience a plus
Mentor and cross-train other analysts; shares knowledge in order to advance team skillset
Positively represents the team to internal and external stakeholders
3-5 years of experience
Strong SIEM and DLP experience
Knowledge of networking
Knowledge of secure application development practices
Bachelor’s degree or Associate’s degree plus equivalent work experience required
Security certifications welcomed
Fraud detection
Forensics
We are proud to be an Equal Opportunity Employer
Be aware of employment fraud. All email communications from Ascensus or its hiring managers originate from @ascensus.com or @futureplan.com email addresses. We will never ask you for payment or require you to purchase any equipment. If you are suspicious or unsure about validity of a job posting, we strongly encourage you to apply directly through our website.
Ascensus provides equal employment opportunities to all associates and applicants for employment without regard to ancestry, race, color, religion, sex, (including pregnancy, childbirth, breastfeeding and/or related medical conditions), gender, gender identity, gender expression, national origin, age, physical or mental disability, medical condition (including cancer and genetic characteristics), marital status, military or veteran status, genetic information, sexual orientation, criminal conviction record or any other protected category in accordance with applicable federal, state, or local laws (“Protected Status”).