SMBC Group is a top-tier global financial group. Headquartered in Tokyo and with a 400-year history, SMBC Group offers a diverse range of financial services, including banking, leasing, securities, credit cards, and consumer finance. The Group has more than 130 offices and 80,000 employees worldwide in nearly 40 countries. Sumitomo Mitsui Financial Group, Inc. (SMFG) is the holding company of SMBC Group, which is one of the three largest banking groups in Japan. SMFG’s shares trade on the Tokyo, Nagoya, and New York (NYSE: SMFG) stock exchanges.
In the Americas, SMBC Group has a presence in the US, Canada, Ireland, Mexico, Brazil, Chile, Colombia, and Peru. Backed by the capital strength of SMBC Group and the value of its relationships in Asia, the Group offers a range of commercial and investment banking services to its corporate, institutional, and municipal clients. It connects a diverse client base to local markets and the organization’s extensive global network.
Role Description
The Security Engineering role is part of a team responsible for administering security projects designed to safeguard the bank's information systems. The Engineer focuses on defining and documenting projects, creating and executing project plans, engaging in project cost management, resource management, and performing periodic reporting. Acts as a subject matter expert who uses expertise to resolve complex problems in consideration of established policies, guidelines or processes.
Role Objectives
* Works with internal IT Application, Infrastructure, Network and Support teams to ensure that security controls are implemented at all significant and relevant phases of IT processes.
* Configures firewall rulebase and objects.
* Configures system and network related parameters.
* Performs IDS/IPS configuration, updates and tuning.
* Participates in incident response and investigations; tracks and documents the remediation process.
* Coordinates and performs security audits and vulnerability assessments to determine internal security procedures and compliance requirements.
* Reviews security event log data and investigates anomalies.
* Implements and supports information security solutions including security architectures, change and configuration management and security product integration.
* Performs testing to evaluate new products for network and system controls.
* Provides training to Help Desk staff on access request procedures.
* Adheres to project management methodology/SDLC/PLC processes as it relates to projects and their implementation.
Qualifications and Skills
* 2 years experience supporting IT Security tools and applications.
* Bachelor’s degree in Computer Science or related field.
* Process documentation, flow charting and re-engineering experience.
* Some Project Management Experience a plus.
* Encryption technologies and PKI infrastructure.
* Knowledge of Information Security regulatory requirements, codes and industry guidance such as NIST 800-53, ISO27001, CIS and Cobit.
* Ability to utilize resources to contribute valuable input to Information Security projects and Risk Assessments, e.g. ISACA, CIS, FS-ISAC.
* Networking technologies (TCP/IP/etc…) and protocols (SSL, SSH, LDAP, SMTP, DNS, etc.).
* Microsoft Active Directory.
* Familiarity with security monitoring concepts.
* Administration of more than Palo Alto Firewall, Checkpoint Firewall, Imperva Waf, Tufin.
* Strong verbal and written communication skills.
* Ability to communicate effectively to all levels in the organization and adapt information delivery based on audience.
* Ability to communicate information security concepts across a broad range of technical and non-technical staff.
* Ability to multitask and work under tight deadlines.
* Ability to raise awareness and issues to executive leadership, engage leaders and stakeholders in understanding their roles in delivering enterprise Change, Configuration and Release Management process.
* Good communication and written skills.
* Self-motivated and ability to work within stringent time frames.
* Strong analytical and investigation skills.
* Strong team player.
* Experience dealing with both technical and non-technical staff.
* Weekend and late night work will be required on occasion for support.
Additional Requirements
SMBC’s employees participate in a hybrid workforce model that provides employees with an opportunity to work from home, as well as, from an SMBC office. SMBC requires that employees live within a reasonable commuting distance of their office location. Prospective candidates will learn more about their specific hybrid work schedule during their interview process.
We are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, national origin, disability status, protected veteran status or any other characteristic protected by law. SMBC provides reasonable accommodations for employees and applicants with disabilities consistent with applicable law. If you need a reasonable accommodation during the application process, please let us know at accommodations@smbcgroup.com.
#J-18808-Ljbffr