Manager I, Security Engineering

Overview

When you think of InComm Payments, think of Innovative Payments Technology. We were founded over 30 years ago and continue to be a pioneer in the payment (FinTech) industry. Since our inception, we have grown to be a team of over 3,000 employees in 35 countries around the world. We own over 400 global technical patents and a network that includes over 525,000 points of retail distribution that points to our industry expertise. InComm Payments works with the most recognized and valued brands in the world, and we are partnered with most of the world’s leading merchants. InComm Payments is highly focused on our people and their growth, and we work hard to make a career at InComm Payments meaningful and rewarding. We value innovation, quality, passion, integrity, and responsibility in all that we do, and we are looking for great people to join our team as we move forward towards a very bright future. You can learn more about InComm Payments by visiting our Website or connecting with us on LinkedIn, YouTube, Twitter, Facebook, or Instagram.

About This Opportunity

We are looking to add to our Global Security Team! The Manager I, Security Engineering will be responsible for implementing, maintaining and improving solutions for the InComm Security program focused in the Cyber Security Operations Center (CSOC). To be successful, you must be well-versed in understanding the IT landscape including security, infrastructure, network, client, server, emerging technology standards and trends and you will be involved in strategy, design and engineering to contribute to the development of protection and secure solutions. This team has two primary focuses: Endpoint Security and SIEM (Security Information & Even Management). We have well-established platforms in place and a team of solid contributors. We are looking to add a strategic leader to the team to help put together goals, objectives, and strategic roadmaps to ensure we are responding to the latest industry trends. This is a 100% US-based remote position. We prefer someone in Eastern/Central timezones for ease of collaboration with current team members, but other timezones will be considered for the right candidate.

Responsibilities

Implement security solutions across supported systems and applications with documentation.

Possess working knowledge of security solutions and technologies:

Intrusion detection / prevention systems (IDPS) Logging & Security Information and Event Management (SIEM) Endpoint Detection & Response (EDR), Anti-Virus (AV) and malware protection Email Security Gateways Host-based intrusion protection (HIPS) File Integrity Monitoring (FIM) Security Orchestration, Automation, and Response (SOAR) Security Awareness & Phish Testing Platforms

• Lead automation and optimization efforts for security tools utilized by the Cyber Security Operations Center (CSOC).
• Create and optimize content-based rules for SIEM platform for enhancing threat detection and reduce false positive detections.

Utilize APIs and plugins to develop automations and playbooks for the Security Orchestration, Automation, and Response (SOAR) platform. Work closely with Cyber Operations teams to develop and integrate custom playbooks, use cases, and workflow integrations across CSOC platforms. Apply an adversarial mindset to your research and detection engineering recommendations. Develop dashboards to show real-time metrics and performance in the CSOC. Specify security requirements and maintain operation of security systems. Research, recommend and implement changes in security technology and processes in accordance with leading practices and business-related goals. Coordinate and manage subject-matter expertise for security processes, topics and trends.

Qualifications

Experience working with commercial Endpoint Detection & Response (EDR) platforms and commercial Security Information and Event Management (SIEM) platforms. Software development experience in at least one scripting language (e.g. PowerShell, Python, etc.) Experience managing code with git/GitHub Experience developing comprehensive technical documentation for end user utilization and support. Experience managing logging across multiple operating systems. Ability to manage multiple tasks simultaneously and meet established deadlines. Ability to collaborate with all IT teams on security-related incidents, tasks and projects. Ability to work productively while remote and communicate effectively in a virtual team environment. Experience with operations and management of complex enterprise-architected systems on multiple platforms, applications, operating systems and infrastructure. Experience utilizing security best-practices to for protection solutions. Extensive knowledge of Windows end user workstation and server operating systems and administration. Experience managing Linux server operating systems. Knowledge of enterprise network systems. Prefer knowledge of Microsoft Azure and O365 cloud security. Knowledge of enterprise Identity & Access Management (IAM) systems. 4+ years Information Security experience. 2+ years in team leadership or management preferred. Education & Certifications A Bachelor’s degree in Information Security, Computer Science, Information Systems, or another related field is preferred, but not required. A CISSP certification is preferred, but not required. Career development plan to include certifications upon hire. InComm Payments provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity or national origin, citizenship, veteran’s status, age, disability status, genetics or any other category protected by federal, state, or local law. *This position is eligible for the Employee Referral Bonus Program Tier IV #LI-SO1 #LI-Remote