Information Security Engineer

Company: TMX Finance
Location: Carrollton
Posted on: January 25, 2023

Job Description:

Requisition ID 2023-31974Category: IT/ISLocation: US-TX-CARROLLTONOverviewInformation Security EngineerCarrollton, TXThe TMX Finance - Family of Companies is looking for an Information Security Engineer to join our team and provide administration and oversight of our enterprise security technologies. You will become an integral part in advancing the security program by configuring, deploying, and managing various security applications, monitoring and alerting security threats and developing remedies to resolve issues. You will make key recommendations on processes and technology related to solutions and improvements to protect the Company from security weaknesses, in turn, protecting the people we serve. Responsibilities

• Develop strategies, evaluate solutions, design, and implement tools, processes, and controls to validate and ensure that security and privacy are designed into TMX infrastructure and applications while adhering to policy, compliance, and governance requirements.
• Serve as an internal subject matter expert to assess cyber threats and to secure the organization.
• Identify gaps in infosec infrastructure security and privacy capabilities, working with internal teams to remedy and improve our systems and products.
• Understand and improve the completeness and visibility of log/event data.
• Perform Blue/Red exercises against our infrastructure to validate event parsing, alerting fidelity, incident veracity and SOC response.
• Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code).
• Identify visibility gaps, system usability issues, and deliver infosec tooling improvements via configuration, parser improvement, or by raising bugs to partners/MSSPs.
• Validation of vulnerability mitigation strategies with partners/MSSPs.
• Identify, document, and monitor tactics, techniques, and procedures used by threat actors targeting TMX and the broader industry. Proactively research new attack vectors that may affect TMX infrastructure and applications. Qualifications
  • 6+ years cybersecurity experience
  • 2 - 4 years of experience securing cloud-based infrastructure in AWS
  • 1 - 3 years of experience with penetration testing, vulnerability testing, blue/red teaming
  • At least 1 year of threat hunting experience
  • Proficiency with administrative operation, configuration, and debugging/ troubleshooting of Linux, Windows, Active Directory, Exchange, and SSO/MFA technologies
  • Practical understanding of tactical application of various compliance frameworks including monitoring and validating compliance
  • Knowledge of the following technologies: Routing, Switching, VPN, LAN, WAN, Network Security, Stateful Firewalling, NGFW, Firewall policies, Identity based policies, NAT, IPS, AntiMalware, Botnet, Application Control, DDoS, Web Filtering
  • Experience with encryption and authentication technologies
  • Physical demands for this position frequently include: the ability to remain in a stationary position, move about freely inside and occasionally outside of the office, and the operation of mechanical controls, such as a keyboardPreferred Qualifications
    • Strong Windows internals knowledge
    • Network analysis experience
    • Scripting languages (Python, Powershell, etc.)
    • Experience with automation solutionsOur Benefits Include*:
      • A comprehensive new hire training program designed to help set you up for success
      • Access to a robust learning management system, full of e-learning modules and training programs to help boost your professional and personal development
      • Professional Development and Mentor Programs plus Ongoing Training Resources
      • Multiple coverage levels for Medical, Dental, & Vision
      • Group Health & Wellness Program, plus special savings on retail items, travel, entertainment, and more through TMX Perks
      • Traditional 401(k) and Roth 401(k) with Company match
      • Flexible Spending Accounts
      • Basic and AD&D Life Insurance
      • Voluntary benefits, including short-term and long-term disability insurance, accident, critical illness, and hospital confinement insurance
      • Paid Time Off (Accrue 12 days per calendar year plus 2 additional days for each year of service after the first year of employment, 18 days in total)
      • Performance-based career advancement
      • Diverse Culture and Inclusive EnvironmentLearn More About UsThe Information Security Engineer is part of the Information Security team, which works intensely to design and drive the innovation that keeps us competitive. The IT team members are the first responders to global initiatives creating cutting-edge solutions that enhance and differentiate our customers' experiences, and the Service Desk provides a single point of contact to help meet our team members' technology needs. To learn more about this team, visit .Check out what's happening in our Company at .The information contained herein is not intended to be an all-inclusive list of the duties and responsibilities of the job, nor is it intended to be an all-inclusive list of the skills and abilities required to do the job. The Company may, at its discretion, revise the job description at any time, and additional functions and requirements may be assigned by supervisors as deemed appropriate. Requirements, skills, and abilities included have been determined to illustrate the minimal standards required to successfully perform the position. *Based on current benefit offering, which is subject to change with or without notice. Certain benefits are subject to the terms and conditions of the governing plan documents which should be consulted for additional details and eligibility requirements. Important: The TMX Finance - Family of Companies will never ask you for banking or other payment information at any point during the interview or hiring process, nor will we conduct an interview via text message. Any official email correspondence will come from the domain @titlemax.com or @titlemax.biz. In-store positions are in-person only, remote options not available. For questions or verification, call 1- 855-TMX-JOBS. All TMX Finance - Family of Companies Are Equal Opportunity Employers.PI201985837

Keywords: TMX Finance, Carrollton , Information Security Engineer, Other , Carrollton, Texas