Vacancy expired!
- Work with managed service providers, security tools, log sources and various teams to identify threats to Acima and provide effective mitigations to avoid business interruptions
- Review and analyze access, network, and system logs and alerts in a hybrid-cloud environment for inappropriate or unauthorized access
- Support business initiatives by enhancing and supporting information security requirements, standards and principles
- Conduct regular system tests and ensure continuous monitoring of network, system, and application security
- Promptly respond to all security incidents and provide thorough post-event analysis utilizing associated runbooks and incident response plans
- Interact with internal and external auditors as needed to ensure regulatory and policy compliance.
- Identify and determine root causes of security violations. Verify and document the corrective actions to ensure application, data, and infrastructure security
- Provide technical guidance and recommendations to co-workers about the risks and control measures associated with new and emerging information system technologies
- Communicate with key groups (i.e. various lines of business and other technical teams) regarding potential threats, remediation efforts and all logical implementation steps
- Keep pace with emerging security threats, technologies, and systems
- Track, analyze and mitigate Advanced Persistent Threats (APT), phishing and social engineering other security related threats.
- Detect, respond, and mitigate logical and cyber threats on a per event basis
- Monitor, review, and provide security guidance for Network security tools and associated access mediums such as Network access controllers (NAC), gateway anti-malware and enhanced authentication
- Create analytical reports for Leadership on complex criminal activity
- Identity and access management principles
- Application security and encryption technologies
- Assist in the preparation and periodic update of information security policies, architectures, standards, and other technical requirements documents needed to enhance security.
- Knowledgeable on cyber threats relative to the retail and fintech industries
- Keep up to date on the latest security standards and best practices
- MUST SIT IN DRAPER, UTAH OR PLANO, TX OFFICE
- Basic functional knowledge of Sarbanes-Oxley (SOX) and Payment Card Industry Data Security Standards (PCI-DSS) in order to monitor and enforce related controls
- 3 or more years of Security information and event management correlation (SIEM) experience.
- 3 or more years of information security tools administration or cyber threat research/analysis experience
- 2 or more years of hands-on Cloud security experience (AWS – Azure) and security related tools.
- Indepth knowledge of network and web related protocols (TCP/IP, UDP, IPSEC, DNS, HTTP, HTTPS, routing protocols, etc.)
- Demonstrated by means of experience or technical Certification for security business controls, strategies, methodologies as well as knowledge and experience with all of the following technologies; firewalls; intrusion detection; directory services; web access controls; advanced authentication methods; public key infrastructure (PKI); VPN, TCP/IP; anti malware, single sign on; audit; diagnostics, Log Rhythm, and forensic tools.
- Experience with change management and related ticketing systems
- Demonstrated ability to create technical documentation utilizing industry recognized tools.
- Must be familiar with the current regulatory environment such as Sarbanes-Oxley, GLBA, etc.
- Must have the ability to effectively communicate to all levels of individuals clearly at their level.
- Bachelor’s degree in related field preferred
- Relevant technical security certifications (example: CISSP, GCIH, Security+, CEH, AWS Security).
- 5 or more years relevant Information security work experience.
- Functional knowledge working with some or all of the following:
- Sentinel One
- Web Application Firewalls (WAFs)
- Security Controls for Cloud Environments (Microsoft Azure, Amazon Web Services)
- Okta Identity Management
- Rapid 7 IDR/InsightVM, LogRhythm, Splunk or Similar SIEM.
- Intermediate to Advanced Knowledge of Microsoft PowerShell
- Familiarity with programming or scripting language
- Experience in managing web application security
- Prior Security Operations Center (SOC) or Network Operations Center (NOC) experience
- Background in Security Incident Response
- Company activities (Ping-Pong tournaments, health pushes, etc.)
- Department snacks and treats
- Employee referral bonus program
- Medical insurance
- Dental plans
- Vision plans
- Supplemental insurance (long-term/short-term disability, life insurance, etc.)
- Health Savings Account (HSA) with company match
- Company paid holidays
- Paid Time Off (PTO)