Description
As a Sr Information Security Engineer you will be considered a technical expert in one or more phases of Information Security engineering. This includes providing design recommendations based on long-term IT/Information Security organization strategy and expertise to mitigate risk and drive business results. You will determine specifications, plan, design, and develop business critical technology solutions, utilizing appropriate engineering processes – either individually or in concert with product team, that will continually support and improve the controls and security posture within our Information Technology Environment.
You will be responsible for the engineering and development function supporting the creation and maintenance of one or more services within Thrivent’s Information Security Program along with the associated architecture and standards that deliver enterprise-wide Information Security services for internal and external customers. The primary focus will be infrastructure security which includes developing, managing, and engineering AV/EDR/XDR, email security, and vulnerability assessment and delivery solutions.
At Thrivent, we are focused on a digital transformation that will deliver modern, innovative experiences for our clients, financial advisors, and employees. We are investing in data and technology, using DevOps practices, and building an engineering culture of empowered technical experts. Our technologists are involved in work that includes cloud native development, digital architecture and integration, automation, cloud data platforms, artificial intelligence, and machine learning as well as maximizing platforms such as Salesforce, AWS and Microsoft.
DUTIES & RESPONSIBILITIES:
Ensuring Security
Understand and apply Thrivent Information Security Policies, standards, and processes to ensure the confidentiality, integrity, and availability to Thrivent information and information systems.
Support assigned security technologies in accordance with Thrivent security policies, standards, and SOP’s
Provide assistance with other deployed security technologies and support team members
Support regulatory examinations and internal audits as needed
Provide on-call support in support of assigned Information Security deployed technologies
Ability to understand potential cyber threats and respond appropriately across all IT services, technologies and processes
Designing Solutions
Apply technical knowledge to drive outcomes that are intended to minimize risk
Ability to work and problem solve independently on initiatives that align to the broader information security engineering strategy
Implementing Solutions
Member of team that can work independently, as well as collaboratively with team, in developing core information security solutions for the products that deliver outcomes
Consistent and dependable in delivering core technology solutions that delivers outcomes and meets/exceeds the teams expectations for security, stability, scalability, resilience, etc.
Learning and Applying New Techniques
Shares new ideas and techniques with team
Encourages junior engineers to invest in learning as a part of their job
Collaborating within the Team
Participate in team’s collaboration sessions to provide technical expertise to solve a problem/remove technical roadblocks for the team
Participate in product planning and implementation. Helps team to understand and decompose work
Defining Engineering Standards and Patterns
Contribute to develop engineering practices, templates, and frameworks in collaboration with the team.
QUALIFICATIONS & SKILLS:
Required:
Bachelor’s degree in Computer Science or other technical field or equivalent work experience
7+ years of experience in engineering environments, taking abstract concepts and ideas and formulating a detailed software engineering plan to deliver
5+ years of experience within the information security engineering space
Sound knowledge of systems design concepts that provide security and stability
Expertise in problem-solving and completing complex engineering tasks
Infrastructure security experience (AV, EDR, XDR)
Proficient in cybersecurity best practices and industry standards
Strong interpersonal and collaboration skills
Preferred:
Microsoft Defender security stack experience
Vulnerability assessment experience
Email security experience
Cloud security experience
Financial Services industry experience
Coach / mentor other team members as appropriate
Strong understanding of Windows and Linux operation systems
Proficient in networking, storage, server, and application technologies
We exist to help people achieve financial clarity. At Thrivent, we believe money is a tool, not a goal. Driven by a higher purpose at our core, we are committed to providing financial advice, investments, insurance, banking and generosity programs to help people make the most of all they’ve been given.
At our heart, we are a membership-owned fraternal organization, as well as a holistic financial services organization, dedicated to serving the unique needs of our clients. We focus on their goals and priorities, guiding them toward financial choices that will help them live the life they want today—and tomorrow.
Thrivent provides Equal Employment Opportunity (EEO) without regard to race, religion, color, sex, gender identity, sexual orientation, pregnancy, national origin, age, disability, marital status, citizenship status, military or veteran status, genetic information, or any other status protected by applicable local, state, or federal law. This policy applies to all employees and job applicants.