Senior Active Directory Engineer – Assistant Vice President

Senior Active Directory Engineer – Assistant Vice President

Requirements

• Must have Expertise in AD security features like Group Policy, access control lists (ACLs), and security groups.
• Must have Specialize Knowledge of Active directory monitoring including user account activity, authentication events, and security configuration changes.
• Must have Expertise level knowledge into AD Federation Services (AD FS), Windows Server Active Directory Certificate Services (AD CS), and Azure Active Directory (Azure AD).
• 5 years’ experience in cybersecurity assessment activities or IT audit, penetration testing, and/or vulnerability management
• 5 years Prior information technology (IT) experience in mid or large-scale companies
• Experience with one or more of the following control areas: Active Directory, Vulnerability Management, Configuration Management, Cloud services
• Experience in performing information security assessments; provide information security guidance to business stakeholders; interpreting and applying information security policy and standards
• Technical knowledge and hands on experience with security and networking architecture, network security design, routers, wireless security, intrusion prevention/detection, firewall architecture, SIEM, DLP, and encryption
• Knowledge and prior experience with operating systems internals (Linux, Windows), network protocols and technologies, web services, databases, scripting, and programming languages (C/C++, Java, Perl, Python, Assembly)
• Proficient working knowledge within the following risk domains/technologies: Database and application security, Firewall technologies, Network Architecture, Database/Application/Network Layer Secure Protocols, Change Management, Vulnerability Management, System Configuration Management, Cloud Configuration Management.

Responsibilities

• Co-Develop guidelines for the usage, control, maintenance and audit-readiness of information and computer resources that are used in the distributed processing environment.
• Analyze and address security gaps for technologies within the Bank’s infrastructure
• Identify distributed systems security issues as they arise and coordinate with the technology owners to ensure that issues are addressed and resolved in a timely basis.
• Execute technical risk assessment activities for scoped environments
• Perform reporting of findings, issue resolution and management of findings
• Support FLOD/SLOD assessments, audits and external exams
• Provide effective, accurate and timely reporting
• Perform Information Security remote/table-top assessments
• Identify high risks find and lead risk findings to resolution
• Identify control deficiencies by analyzing and identify underlying root causes
• Designing, implementing, and collaborating on a range of information security metrics and performance reports
• Assisting stakeholders in identifying, initiating, and tracking corrective actions to address anomalies
• Analyzing control results in an objective and quantifiable manner
• Produce detailed documentation of assessments and perform threat analysis of gaps identified
• Communicate vendor information security issues to stakeholders, ensuring their understanding of associated risks and actions needed to remediate those risks
• Validate evidence from vendors, before remediation plans are closed.

Preferred Qualifications

• Certified Information Systems Security Professional (CISSP)
• Global Information Assurance Certification (GIAC)
• Certified Information Systems Auditor (CISA)
• Certified in Risk and Information Systems Control (CRISC)
• Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP), or other security certifications desired
• Degree in Computer Science or related professional experience.