Manager Cybersecurity Engineering

Posted:
10/1/2024, 6:38:59 AM

Location(s):
Connecticut, United States ⋅ Southington, Connecticut, United States

Experience Level(s):
Mid Level ⋅ Senior

Field(s):
IT & Security

If you’re looking for a meaningful career, you’ll find it here at Webster. Founded in 1935, our focus has always been to put people first--doing whatever we can to help individuals, families, businesses and our colleagues achieve their financial goals. As a leading commercial bank, we remain passionate about serving our clients and supporting our communities. Integrity, Collaboration, Accountability, Agility, Respect, Excellence are Webster’s values, these set us apart as a bank and as an employer.  

Come join our team where you can expand your career potential, benefit from our robust development opportunities, and enjoy meaningful work!

Position Overview:

The Cybersecurity Engineer will be responsible for the design, implementation, and maintenance of critical security controls across our enterprise. This role will have a specific focus on Endpoint Security, Privilege Access Management, Workforce Password Management, and Data Loss Prevention. The ideal candidate will be responsible for safeguarding our organization’s data, managing access to critical systems, and ensuring endpoint devices are secure.  This position plays a key role in identifying and mitigating risks, improving security posture, and responding to security incidents across the organization.

Key Responsibilities:

1. Security Controls Management:

- Design, implement, and maintain critical security controls to protect sensitive data and systems.

- Monitor and analyze security systems for potential threats, vulnerabilities, and incidents.

- Develop and enforce security policies, standards, and procedures.

2. Endpoint Security:

- Deploy, configure, and manage endpoint security tools

- Monitor and respond to endpoint security incidents, ensuring timely remediation and thorough investigation.

3. Privileged Access Management (PAM) and Workforce Password Management (WPM):

- Implement and manage PAM solutions to secure privileged accounts, and access to critical systems.

- Deploy and maintain a WPM solution to centralize and secure colleague credentials.

4. Endpoint Security:

- Deploy, configure, and manage endpoint security solutions (e.g., antivirus, EDR, endpoint encryption).

- Monitor endpoint environments for suspicious activities and potential threats.

- Ensure endpoint devices comply with security policies and standards.

5. Data Loss Prevention (DLP):

- Develop, implement, and maintain DLP strategies and technologies to prevent unauthorized access or transfer of sensitive information.

- Integrate Device Controls with DLP systems to prevent unauthorized copying of data.

5. Risk Assessment and Management:

- Perform regular risk assessments to identify and mitigate potential security risks.

- Collaborate with cross-functional teams to assess the security impact of new projects and technologies.

- Recommend and implement security controls to reduce risk exposure.

6. Compliance and Auditing:

- Ensure compliance with industry standards and regulatory requirements (e.g., SOX, PCI-DSS, GDPR).

- Participate in internal and external security audits, providing necessary documentation and support.

- Maintain up-to-date knowledge of emerging security trends and regulatory changes.

7. Security Awareness and Training:

- Develop and deliver security awareness training programs for employees.

- Promote a culture of security awareness and best practices within the organization.

- Stay current with the latest cybersecurity trends, threats, and technologies.

Qualifications:

- Bachelor's degree in Computer Science, Information Security, or a related field.

- 5+ years of experience in cybersecurity, with a focus on CASB, DLP, and Endpoint Security technologies.

- Strong knowledge of security frameworks and standards (e.g., NIST, ISO 27001).

- Experienced in implementing and managing CASB solutions

- Proficient in DLP concepts and methodologies to safeguard sensitive information 

- Experience with endpoint security solutions

- Proficiency in security incident response and investigation.

- Strong analytical and problem-solving skills.

- Excellent communication and interpersonal skills.

- Relevant certifications (e.g., CISSP, CISM, CEH) are highly desirable.

The estimated salary range for this position is $120,000.00 to $135,000.00. Actual salary may vary up or down depending on job-related factors which may include knowledge, skills, experience, and location. In addition, this position is eligible for incentive compensation.

#LI-Hybrid

#LI-FO1

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.