Lead Information Security Engineer - Vulnerability Management (Remote)

Apply for this position Please mention DailyRemote when applying
Posted 6 days ago United States Salary undisclosed
Before you apply - make sure the job is legit.

Attempting to apply for jobs might take you off this site to a different website not owned by us. Any consequence as a result for attempting to apply for jobs is strictly at your own risk and we assume no liability.

Job Description

Make banking a Fifth Third better We connect great people to great opportunities. Are you ready to take the next step? Discover a career in banking at Fifth Third Bank. We connect great people to great opportunities. Are you passionate about security and ready to take the next step of your career? Come join Fifth Third Bank and help us revolutionize Bank Security and build trust in a digital world. The Lead Information Security Engineer on our EVM team will be supporting the continuous vulnerability identification, prioritization and remediation process and reduce the Fifth Third Bank's attack surface across cloud, traditional infrastructure, endpoints, and applications. This role is responsible for supporting the day-to-day operations and administration of various enterprise security tools. ESSENTIAL DUTIES AND RESPONSIBILITIES: Act as a vulnerability management SME to support the FTB Enterprise Vulnerability Management program through vulnerability identification, prioritization, and mitigation. Manage oversight and operational responsibility for scanning infrastructure including appliance configurations, scan policies, agents, authentication, and continuous tool optimization. Perform troubleshooting and problem resolution to maintain maximum scan coverage and depth of the enterprise infrastructure. Execute Policy compliance scans against security hardening configuration benchmarks for NIST, CIS, DISA, CSA standards. Continuously improve and manage the process to identify vulnerabilities within the Bank's environment through automation. Partner with IT and business teams to assist in developing solutions to remediate identified vulnerabilities and misconfigurations, effectively prioritized by efficiency and risk. Support the Bank's operational information security responsibilities, including the development maintenance of standards, procedures, and guidelines necessary to satisfy the Information Security operations. Mentor more junior members of the team. MINIMUM KNOWLEDGE, SKILLS AND ABILITIES REQUIRED: Bachelor's degree in Computer Science/Information Systems or equivalent combination of education and experience. Master's degree a plus. At least 6 years of related experience in administering enterprise security tools and Vulnerability management hands-on. Strong understanding of various operating systems, cloud, and networking (CIDRs, Ports, RFC1918) Strong troubleshooting and problem-solving skills. Familiarity with industry standards for secure configuration and best practices - NIST, CIS, DISA, CSA Understanding of security concepts, best practices, CVSS and risk. Experience with Qualys is preferred. Working knowledge with scripting languages (Python, Bash, PowerShell, etc.) is preferred. Skill in oral and written communication, including presentations to senior management, various levels of business and IT sponsors, and technical resources. Industry Standard Certifications such as CompTIA Security+, CISSP, CISM, GIAC and AWS are preferred. Lead Information Security Engineer - Vulnerability Management (Remote) Total Base Pay Range 73 000.00 USD Annual LOCATION Virtual, Ohio 00000 Fifth Third Bank, National Association is proud to have an engaged and inclusive culture and to promote and ensure equal employment opportunity in all employment decisions regardless of race, color, gender, national origin, religion, age, disability, sexual orientation, gender identity, military status, veteran status or any other legally protected status.