Lead-Cyber-Security-Engineer

Job Description

Job Description Summary
Global Technology Services (GTS) is Aegon's global IT partner that provides infrastructure services, information security and global/corporate application support for Aegon's businesses around the world. From 6 locations in the US, the Netherlands, UK, and Hungary, we support 20+ country units and 24000+ employees in the world. Our support consists of a wide range of centralized global IT services such as programming, database management, project management, agile/dev/ops, and more. We continue to maximize the value from having a clear digital and data technology platform strategy that extends our ecosystem, as an approach to digitization, enhancing customer experience, and improving operational efficiency. All of these teams work closely together to provide innovative and digital solutions as well as critical technology support. This is essential for enabling Aegon's businesses around the globe to be innovative, digital and competitive, efficient, and effective, and to provide the best solutions and customer experience for our customers and shareholders.
Job Description

Security is foundational to Transamerica and we are growing our Information Security Team. We are looking for a multi-talented Cyber Security Engineer III. We are a fast paced energetic team dedicated to making our enterprise more secure. So if you have at least 5-10 years cyber experience, are an exceptional team player, and have great Franken-skills; come join our industry leading, global organization.

This dynamic role requires broad understanding of cyber security principles, investigation techniques, and incident response practices to support Transamerica’s Information Security Office’s Incidence Response and Cyber Resiliency team and is responsible for conducting cyber investigations through the full incident response lifecycle. Responsible for identifying control improvement opportunities and working with other stakeholder teams to deliver new technologies and services to support the strategies of the business. These technologies and services are delivered as a part of a technology strategy and roadmap that is developed based on a comprehensive analysis of capabilities and needs. Participates in and provides leadership for small project delivery teams as new technologies and cyber security services are introduced to the business.

Hybrid Work Environment.

What You Will Do:

• Correlating log, paper, process, and event data to find relevant connections and to broaden understanding of cyber security, fraud, network, and process events.
• Coordinate cross functional cyber security and fraud incident response events and teams.
• Reviewing and analyzing forensic and cyber security event data related to fraud and potential fraud events.
• Threat intelligence correlation to reveal and enrich understanding of threat vectors, attack processes, fraud actors, and malicious cyber behavior.
• Conducting open-source threat research and analysis, including mining dark and deep web sources.
• Development and distribution of root cause analyses; to gain shared understanding and agreement on attack, containment, remediation steps, process changes and technical control implementations.
• Working with business leaders and client management organizations to explain and level set fraud event issues and concepts.

What You Will Need:

• Experienced in conducting and leading incident response activities and cyber investigation.
• Experience in at least one, and preferably two or more, organizations in a Cyber Security Engineering role
• Experience with one or more of the following cyber security domain areas: Incident response and management, application awareness, identity awareness, identity and access management, Data handling and classification, web application firewalls, next gen firewalls, network zoning and segmentation, cyber resiliency, secure coding, fraud investigation and response, multi-factor authentication, identity and access management, DLP, forensics, security within SDLC
• Experience in threat intelligence and persistent threat management, incident response and/or crisis management
• Information Security vulnerability management experience; ideally with code, application and infrastructure vulnerabilities
• Information Security controls experience with NIST CSF, NIST SP 800-53, FISMA, ISO 27001 or COBIT or other applicable control frameworks
• 8 or more years cyber security engineering experience
• Ability to define and communicate complex technical risk problems, concepts and situations to multiple skill levels; including business personnel with little to no cyber experience
• Proficiency with Microsoft Office, Preference given to candidates with deep Excel and PowerPoint skill sets
• Experience with systems such as Service Now, JIRA, Tanium, and equivalent
• Ability to fluently read, write and speak English
• Experience with leading group discussion and presenting to varying levels and audiences
• Self-motivated and self-management skills

Preferred Skills, Education and Certifications:

• Strong knowledge of Information Security and Cyber Defense demonstrated by one or more of the following:
• Bachelorette degree in Information/Cyber Security, Information Risk, Information Risk Management
• Bachelorette degree in Information Systems, Computer Science, Information Management or similar four year technical degree combined with one or more of the following:
• Active CISSP, CISM, CISA, CEH, or CHFI certifications
• Experience in Insurance, Payments, Banking or other Fin-Tech Industries
• Strong preference for candidate with excellent Excel and PowerPoint skills
• This is not an entry level position. Preference given to candidates with Transamerica and/or Aegon products, systems and/or domain knowledge

**Please note that the compensation information that follows is a good faith estimate for this position only and is provided pursuant to the Colorado Equal Pay for Equal Work Act and Equal Pay Transparency Rules. It is estimated based on what a successful Colorado applicant might be paid. It assumes that the successful candidate will be in Colorado or perform the position from Colorado. Similar positions located outside of Colorado will not necessarily receive the same compensation. **

Compensation:

The salary for this position generally ranges between $115,000 - $165,000 . This range is an estimate, based on potential employee qualifications, operational needs and other considerations permitted by law. The range may vary above and below the stated amounts, as permitted by Colorado Equal Pay Transparency Rule 4.1.2.

Bonus Eligibility:

This position is also typically eligible for an annual bonus based on the Company Bonus Plan/Individual Performance and is at Company Discretion at a rate of 17.5%.

Working Conditions

• Hybrid: combination of remote and in-office work environment
• Out of hours support (evenings and weekends) may be required
• Travel may be required, less than 10%

What You Receive:

• A Comprehensive Wealth + Health package.
• Wealth Benefits; Competitive Pay, Bonus, and Benefits Package
• Health and Work/Life Balance Benefits

Our commitment to inclusion & diversity means that we value differences. We encourage the unique perspectives of persons and are dedicated to creating a respectful and inclusive work environment.