Job Description YOUR LIFE'S MISSION: POSSIBLE
You have goals, dreams, hobbies and things you're passionate about.What's Important to You Is Important to Us
We're looking for people who not only want to do meaningful, challenging work, keep their skills sharp and move ahead, but who also take time for the things that matter to them-friends, family and passions. And we're looking for team members who are passionate about our mission-making a difference in military members' and their families' lives. Together, we can make it happen.Don't take our word for it.
- FORTUNE 100 Best Companies to Work Forฎ
- Computerworldฎ Best Places to Work in IT
- FORTUNEฎ Best Workplaces for Millennials
- Forbesฎ America's Best Employers
IND123 Basic Purpose
Navy Federal Credit Union is seeking a Senior Cyber Security Engineer to implement the latest Data Loss Prevention (DLP) technology and strategies and work with the line of business stakeholders building DLP policies based on ongoing regulatory requirements and analysis of user business processes and workflows.Responsibilities
Develop fundamental understanding of Navy Federal products and their unique valve propositions.
Develop DLP program objectives, implement DLP controls, define standards and policies.
Integrates Agile principles into team practices and work products using Objectives and Key Results (OKR).
Work with DLP team members to influence/define product strategy and roadmaps to focus on quality and continuous delivery.
Assess, report on, and make recommendations regarding current and proposed architectures, strategies, and systems in the DLP space.
Analyze business requirements and provide recommendations for tuning content detection rules to improve accuracy across multiple systems.
Assist to develop secure system solutions to meet DLP program requirements.
Analyze SaaS productivity tool workflows and design Cloud Access Security Broker (CASB) controls.
Create and maintain documentation related to DLP solutions; this may include conceptual, logical, and physical diagrams; new environment design documents; write ups on technical capabilities and solution configurations; etc.
Follow up and work with internal IT teams to ensure solutions are built, deployed, and modified as necessary according to the projects.
Support audit responses and investigations.
Track and report key performance indicators and metrics.
Identify gaps in controls, processes, systems and recommend solutions.
Participate in various DLP audits, control testing and other processes.
Ability to demonstrate strong written, oral and presentation skills with the ability to discuss highly technical concepts to all audiences, ranging from non-technical to executive level technical decision-makers.
Ability to listen and collaborate with audiences ranging from IT administrators to executive level stakeholders to understand their requirements and position tools to fulfill those requirements.
Must be self-motivated and self-educating, yet willing and able to work collaboratively.
Engage in technical design of solutions based on use cases and business requirements.
Participate in proof of concepts and other technical evaluations of technologies, designs and solutions and provide recommendations.
Stay abreast of emerging technologies and threats to proactively assess and evaluate the adoption thereof into the organization.Qualifications
Bachelor's Degree in Computer Science, Information Technology or the equivalent combination of training, education, and experience
Minimum 5+ years of total experience in Cyber Security engineering, on premise and cloud architectures, DLP and DRM policy tuning
Minimum 3+ years of direct hands-on experience in tuning of network sensors like IDS/IPS, DDOS, Cloud Security services
Domain expertise of cloud security access broker (CSAB)
Domain expertise with Agile Methodology and developing OKRs
Detailed understanding of Virtual Network Technologies Routers, switches, Load Balancers, firewalls, proxy, etc.
Good understanding and exposure to Cloud standards, architecture and models
Detailed proficiency with Linux (or similar) operating systems
In depth understanding of TCP/UDP/ICMP/IP protocol
Experience with Splunk
Experience with PKI, SSL, SSH, HTTPS, etc.
Experience with NIST SP 800-41, 800-43A
Experience with NIST Risk Management Framework
Experience with DISA STIG Hardening Standards
Experience with industry leading firewalls, proxy and load balancing solutions
Experience with network security concepts and principles
Experience with Server and Endpoint operating system security
CISSP, CCNP Security certification a plusHours
: Monday - Friday, 8:00am - 4:30pmLocation
: 820 Follin Lane, Vienna, VA 22180
*Due to COVID-19 and social distancing, this position will be temporarily working from home with plans to return to campus at the desired location listed once Navy Federal is back to normal operations. The specific logistics for returning to campus will be determined at a future date by individual leadership*Equal Employment Opportunity
Navy Federal values, celebrates, and enacts diversity in the workplace. Navy Federal takes affirmative action to employ and advance in employment qualified individuals with disabilities, disabled veterans, Armed Forces service medal veterans, recently separated veterans, and other protected veterans. EOE/AA/M/F/Veteran/DisabilityDisclaimer
Navy Federal reserves the right to fill this role at a higher/lower grade level based on business need. An assessment may be required to compete for this position.Bank Secrecy Act
Remains cognizant of and adheres to Navy Federal policies and procedures, and regulations pertaining to the Bank Secrecy Act. - provided by Dice