Senior information security engineer job description

Every day, Global Payments makes it possible for millions of people to move money between buyers and sellers using our payments solutions for credit, debit, prepaid and merchant services. Our worldwide team helps over 3 million companies, more than 1,300 financial institutions and over 600 million cardholders grow with confidence and achieve amazing results. We are driven by our passion for success and we are proud to deliver best-in-class payment technology and software solutions. Join our dynamic team and make your mark on the payments technology landscape of tomorrow.
#LI - Remote
Summary:
Develops, configures, documents, and maintains information security solutions. Installs and configures web proxies, intrusion detection systems, endpoint monitoring software, and vulnerability scanning systems. Ensures that threats and vulnerabilities to the organization's business systems and applications (both in-house and cloud-based) are minimized. Manages encryption protocols to protect the organization's data as well as management of authentication and access controls. Evaluates information security configurations when intrusions have occurred and monitors the effectiveness of implemented changes. Monitors overall compliance with security standards and conducts periodic security reviews.

Description:
Delivers secure solutions and/or secure remediation solutions for highly complex projects to the enterprise with intermediate technical applications included.Installs tools to specifically secure each level within security framework for highly complex projects.Provides expert advice and leads discussions on new security technologies and trends while also being able to validate corporate conformance to industry standards utilizing set analysis criteria.Investigates intrusion incidents, conduct forensic investigations for highly complex projects and provide incident responses.

Minimum Qualifications:
Bachelor's DegreeRelevant Experience or Degree in: in Information Security or Computer Science preferred. Other majors will be considered.Typically Minimum 4 Years Relevant ExpOne or more of the following-CISSP, CEH, CISA, CISM, eWPTX, OSWE, PCI-QSA, PA-QSA, PCIP, CRISC, CGEIT

Desired Skills & Capabilities:
Cloud security experience is desirable Scripting knowledge such as Python and PowerShell is desirable
Global Payments Inc. is an equal opportunity employer.
Global Payments provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex (including pregnancy), national origin, ancestry, age, marital status, sexual orientation, gender identity or expression, disability, veteran status, genetic information or any other basis protected by law. Those applicants requiring reasonable accommodation to the application and/or interview process should notify a representative of the Human Resources Department.

About us
WEX is a global leader in financial technology solutions, based in Portland, Maine, United States, with over 6,000 WEXers distributed in over 40 countries. We simplify the complexities of payment systems across continents and industries like Fleet, Corporate Payments, and Benefits. We look to manage employee benefits, streamline how companies pay and get paid by suppliers, save on fuel costs, or modernize how companies manage their fleet, WEX solutions reduce the administrative burdens.
About the opportunity

The IAM Security Engineering Team, under the Global Information Security Team at WEX, is focused across all lines of business to enhance Identity and Access Management capabilities company-wide and assist with IAM in the diverse areas of the organization. Through collaboration with cross-functional IT teams, the role will be responsible for developing, maintaining, promoting and providing support to WEX IAM systems.

Key Responsibilities:
Improve, maintain and support technical Identity Access Management tools Coordinate IAM engineering activities Assist with designing and performing access management processes and enhancements.Executing ongoing reviews for IAM process and tools following compliance with SOX, PCI, HITRUST etc.Liaise across the IT Org to create awareness of access management security and champion efforts while partnering with various support teams Working collaboratively with your team to continuously grow and share knowledge and skills

We are looking for a professional who has:
Knowledge of IT system access, and computer security, including MFA, SSO, PAM, SCIM etc Have Java, Beanshell and other scripting skills required for code level integrations Insight into how entitlement management is used to help prevent unauthorized access to secure systemsA clear understanding of how computer security breaches can disrupt business, including the financial and operational implications Problem-solving skills Exceptional Communication skills to document and share your findings, detail security issues, make recommendations, and identify solutions.Have worked with leading IAM PlatformsExperience in common IAM tools Have a diverse background in IT, Security and supporting processes Enjoy standardizing, automating and optimizing technologies and processes

Minimum Requirements:
Solid experience in Information SecurityHave experience in IAM SecurityHave a practical understanding of modern cloud IT infrastructure, networking, and security engineering concepts Have knowledge of Java, Beanshell and other scripting skills required for code level integrations Have cloud experience with AWS and/or AzureHave excellent customer support skills, both written and verbal Experience with Linux and Unix operating systems

It would be great, if you had already had the opportunity to:
Security Certifications eg. SSCP, CCSP, CISSPCloud Certifications eg. Azure, AWSExperience working with Cloud Security Access Management tools Experience with implementing role-based Security

About behaviors, we expect from you:
A highly motivated Security Engineer who loves working on small, high-performing teams that interface with the entire Enterprise.A collaborative, skilled communicator who works well with colleagues and stakeholders to drive projects from inception to completion.Someone who cares deeply for team results but can when needed work independently to deliver high-quality solutions for projects and operational tasks.Comfortable balancing the need to move fast with the realities of working in a highly regulated organization Someone who thrives in situations where details and accuracy are vitalA skilled worker that has the motivation, expertise, and can operate independently and autonomously across global time zones.Able to complete tasks and deliverables with minimal oversight Passionate about offensive security and security assurance.Demonstrated experience in providing IT access, across several of the following domains: web applications, mobile applications, infrastructure, networks, WiFi, cloud and container security.Understanding of PCI-DSS, HITRUST, SOX and other global regulatory frameworks.Ability to work closely with system owners, developers, engineers and/or project teams to understand and act on the business requirementsA passion to develop themselves and the people around you.

If you are looking for a growing career - come be part of WEX today!

Flow is a technology and services company that enables brands and retailers to become international and sell cross-border. Flow's API driven platform enables merchants to sell & ship globally from their own sites, solving all cross-border pain points throughout the entire e-commerce supply chain, such as local payment methods, international shipping options, and all aspects of the upstream site localization such as duty/tax calculation, local pricing and product restrictions. Flow makes it easy for merchants to solve these enormous points of friction when selling globally. The result is a next-generation platform for cross-border commerce, focused on customer experience and maximizing conversion rates.

Flow has raised $55m+ in funding (most recently Series B) from world-class funds including NEA, Amex Ventures, Bain Capital Ventures, Forerunner Ventures, Fung Capital, and more.
About the Role:

At Flow, we're rethinking the way brands do business with their retail customers globally. We're seeking an ambitious, detail-oriented, and collaborative security engineer to join the Information Security team. As a Sr. Information Security Engineer at Flow, you'll join a team that is rapidly maturing to best protect Company information from adversaries and data exposure.

As a member of the Information Security team, you'll be instrumental in tuning existing controls while deepening our layered defense strategy. Your work will be impactful to how we conduct business and leverage technology.

This position will report to our Head of Information Security and will be based in our Hoboken office with flexible remote work opportunities.

Main Responsbilities:Ensuring that our cloud-first, microservice architecture is secure and that the confidentiality, integrity and availability of our information assets is maintained Identify and propose process improvements Streamline systems to increase the fidelity of our monitoring and alerting while greatly improving our visibility and early detection capabilities Provide expert guidance to our tech teams in their design, implementation and support efforts Through close collaboration with our Head of Information Security, address gaps in coverage and identify areas of focus that are prioritized based on risk and the tactics and techniques of our adversaries
You Are:Curious and enthusiastic for tackling tough problems and delivering solutions Passionate about security and practical in your approach Always learning and hungry for new knowledge and skill sharingA strong communicator who's comfortable discussing deeply complex security challenges with peers of varied technical proficiency
You Have:Deep knowledge of cloud security and networking concepts and controls Experience with well-designed microservices architectures, or curiosity to learn Proficiency with SIEM, HIDS, EDR, CSPM, and vulnerability scanning Direct experience with security and compliance frameworks/programs (NIST CSF, CIS, OWASP, PCI, SOX, SOC 2) Working knowledge of consumer data privacy laws
You May Even Have:CISSP | OSCP | CCSP |GMON certification(s)
At Flow, we look for those with a passion for learning and who desire to have meaningful impact. We are a team of problem-solvers and out-of-the-box thinkers. We welcome diverse perspectives and people that enjoy being challenged - come join us!

A little bit about life at Flow:
We offer competitive health insurance for you and your family, flexible paid time off and retirement saving plans to name a few.

All employees are granted stock options so when we say Act Like an Owner is one of our values, we really mean it. You can come to work every day knowing you will always be surrounded by kind and talented people who you will learn from and genuinely care about you.

We invest in growing our people-personally and professionally. Every employee has access to LinkedIN Learning and a professional development budget.

You don't need to come into the office every day because we trust you to deliver exceptional results. We do have certain days designated for everyone to come in since team brainstorming, collaboration and cultural activities are fun to do in person!

Go karting and whiskey tasting to hot sauce competitions and company wide ping pong tournaments - we've got all the bases covered. Flow is so much more than sitting in front of your desk all day.

Flow is an equal opportunity employer. Our team is made up of people from a wide variety of backgrounds and lifestyles. We embrace diversity and welcome applications from people of all walks of life.