Information Security Engineer Senior (Network Security & Architecture) - Synovus

Job Summary:

We are looking for an experienced Senior Information Security Engineer to join our security team. This role will be primarily focused on network security, security architecture, and working with technologies such as Host Controls - Endpoint Detection and Response (EDR), Cloud Access Security Brokers (CASB), Secure Web Gateway (Proxy) Technologies, and other platforms as required. The ideal candidate will play a critical role in designing, deploying, managing, and rolling out new security functionality across our organization's infrastructure.

As a Senior Information Security Engineer, you will be responsible for improving security posture, optimizing security operations, and ensuring that security controls are effective, scalable, and future-proof.

Key Responsibilities:

* Network Security Architecture:

* Design, implement, and optimize secure network architectures, including oversight of configuration and management of firewall policies, VPNs, IDS/IPS, and network segmentation design.

* Assist in network security initiatives to protect both on-premise and cloud infrastructure.

* Conduct regular security assessments and audits of network infrastructure to identify vulnerabilities and implement remediation plans.

* Endpoint Detection and Response (EDR):

* Oversee the deployment, configuration, and ongoing management of EDR tools across all endpoints (workstations, servers, mobile devices, cloud).

* Work with the SOC (Security Operations Center) to fine-tune EDR policies, triage alerts, and identify emerging threats.

* Analyze endpoint-related security incidents and lead post-mortem investigations to enhance detection capabilities.

* Cloud Access Security Broker (CASB) Technologies:

* Implement and manage CASB solutions to monitor and secure cloud applications (SaaS, IaaS) used within the organization.

* Develop policies to ensure safe use of cloud services such as user activity monitoring and risk analysis.

* Collaborate with cloud and application teams to enforce cloud security posture management (CSPM) best practices and ensure compliance.

* Proxy Technologies:

* Deploy and manage secure web proxies, ensuring proper URL filtering, traffic inspection, and DLP capabilities.

* Design and optimize proxy-based solutions to enforce company-wide security policies for web traffic, applications, and remote access.

* Evaluate and implement solutions for secure web access control and advanced threat protection.

* Deployment & Rollout:

* Lead the deployment of security tools and technologies across various platforms and environments (cloud, hybrid, on-premise).

* Manage and support the rollout of new security features, technologies, and product updates across the organization.

* Assist in automating and streamlining deployment processes to ensure consistency, scalability, and ease of management.

* Collaboration & Leadership:

* Collaborate with cross-functional teams, including infrastructure, operations, and development, to ensure the secure design and implementation of IT systems and services.

* Provide expert guidance on security best practices and policies, and mentor junior security engineers.

* Assist in incident response efforts for network, endpoint, and cloud-related incidents, and assist with forensics when necessary.

* Continuous Improvement:

* Stay current with evolving cyber threats and trends in network security, EDR, CASB, and Secure Web Gateway technologies.

* Contribute to the development and refinement of the company’s security strategy and roadmap.

* Each team member is expected to be aware of risk within their functional area. This includes observing all policies, procedures, laws, regulations and risk limits specific to their role. Additionally, they should raise and report known or suspected violations to the appropriate Company authority in a timely fashion.

* Perform other related duties as required.

The information on this description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job.

Synovus is an Equal Opportunity Employer supporting diversity in the workplace.

Minimum Education:

* Bachelor's Degree in Information Technology, Business Administration, or related field or an equivalent combination of education and experience.

Minimum Experience:

* Eight years of information security experience to include a background in a multiple information security technologies (e.g. intrusion detection, penetration testing, identity and access management)

Certification(s):

* Certified Information Systems Security Professional (CISSP), Microsoft Certified Systems Engineer (MCSE), and/or Certified Network Engineer (CNE) are preferred.

Required Knowledge, Skills, & Abilities:

* Knowledge of various information security concepts and technologies such as identity management, network security, risk assessment, application security, platform security, security monitoring.

* Extensive knowledge of industry standard information security practices and processes. Seen as a thought leader, innovator and change agent.

* Robust information security knowledge of firewalls, IPS, proxy, load balancers, remote access, packet capture procedures and applications, packet capture analysis, vulnerabilities, OWASP, and patching best practices

* Knowledge of network intrusion techniques, vulnerabilities, exploits, advanced malware, and the corresponding detective and preventative techniques

* Solid understanding of governance, compliance and audit regulations related to the financial services industry. (FDIC,OCC,FINRA,GLBA,SOX,PCI)

* Strong oral and written communications skills with the ability to communicate to technical and non-technical audiences.

* Strong analytical and problem-solving skills.

* Strong team-oriented interpersonal and communication skills.

* Solid project management skills in planning and monitoring projects in a cross-functional environment.

* Ability to solve problems independently, quickly, and completely and to communicate them clearly to management.

* Ability to adapt to rapidly changing technology and apply it to business needs.

* Ability to assist with network and application troubleshooting; provide technical consulting support

* Ability to lead projects with very limited oversight

Equal Opportunity Employer Minorities/Women/Protected Veterans/Disabled