Cyber Security-Engineer I

FICO (NYSE: FICO)is a leading global analytics software company, helping businesses in 90+ countries make better decisions. Join our world-class team today and fulfill your career potential!

Job Summary

Job Description

• Job Posting Title

Cyber Security Engineer - CVA (Configuration and Vulnerability Assessment)

• Job Description Summary

Reporting to the Sr Manager of Configuration and Vulnerability Assessment team, this role will be managing the CVA scanning and reporting infrastructure. This position will work with key stakeholders to understand threats unique to each business unit or application. This position will collaborate with technology, security, development and product management groups across the corporation to drive successful execution of the CVA program to ensure an appropriate proactive enterprise security posture.

General IT knowledge is required. A solid understanding of OS’s, IP networks, and database and application functionality are critical. This position should be able to participate in technical discussions with IT personnel and have the ability to quickly understand the FICO Technology environment, including network, OS and key applications.

Job Details

• Job Profile
  • Cyber Security-Engineer I

• Job Description

Responsibilities:

• Collaborate with FICO Cyber Security Team, Business and IT partners, and clients.
• Act as an internal subject matter expert with respect to CVA scanning and reporting. Assist in maintenance of the enterprise to VMLC (Vulnerability Management Life Cycle) policy and associated VM standard.
• Conducting required tasks for the vulnerability scanning program and publishing reported vulnerabilities to impacted teams for remediation.
• Triage and risk rank vulnerabilities according to severity and exposure. Work with Product and IT teams to risk rank and patch vulnerabilities related to the technology stack. Develop remediation plans for vulnerabilities.
• Participate in the development and implementation of new business initiatives involving security to ensure compliance with established policies.
• Maintain the CVA infrastructure including the delivery of enterprise wide vulnerability assessments, manage the communication, management, and resolution of findings across the enterprise and to external stakeholders.
• Maintenance of an executive level dashboard and actionable metrics that reflect the current enterprise security posture.
• Scan and report on the appropriate configuration standards, based on CIS, to ensure baselines are being met and compliance drift is managed.
• Initiate improvement activity to reduce risk, ensure compliance, lower cost, and improve quality within IT processes.
• Conduct/support periodic risk assessments and develop appropriate mitigation plans in support of deliverables.
• Continuous review of configuration management and vulnerability management posture inside the company and knowledge of all external developments that could impact the CVA posture, including vendor patches, zero-day exploits, end-of-life systems or deprecated services.
• This role will have the responsibility of ensuring endpoint security solutions, policies and emerging technology are on track to meet and respond to the ever-present threat to our data and endpoint infrastructure
• The ideal Endpoint Security Ops Engineer will be adept in learning new security capabilities, adaptable, take initiative, and be a team player

Education/Experience Required:

• Bachelor’s degree in Computer Science or related field nice to have; equivalent work experience is acceptable
• Experience in support of information technology teams/systems, networks, or related business processes
• CISSP,CISM, or another similar info security/IT certification is desired or the willing to pursue CISSP or CISM.

Skills/Experience:

• Experience with Qualys or other security vulnerability detection technology required.
• Demonstrates subject-matter expert level understanding in multiple IT, Security and Software disciplines.
• Ability to understand the cause and effect of application vulnerabilities with Operating System Vulnerabilities.
• Must be able to multi-task and keep track of large amounts of information across disparate systems.
• Ability to keep making progress and define future strategy/policy with regards to Enterprise CVA.
• Adherent to ‘continuous monitoring’ and ‘continuous improvement’ thought process.
• Demonstrated technical security expertise in a variety of cloud platforms (AWS is preferred).
• Comfortable interfacing with other internal or external organizations regarding problems that must be addressed to enhance security posture.
• Ability to effectively translate and present solutions in business or management terms.
• Ability to work effectively in a team environment.
• knowledge on any scripting language is nice to have
• Moderate documentation and analytical skills; documenting processes, policies and standards
• Moderate ability to provide end to end support to enterprise counterparts, identifying root cause of complex enterprise initiatives
• Moderate trouble shooting skills across complex enterprise applications, server and endpoint environments
• Moderate ability to onboard, learn and adapt to new technologies
• Basic privileged access management/right management experience, designing solutions based on least privilege
• Basic knowledge of malware operation, indicators or threat
• Moderate knowledge of current threat landscape

Why Make a Move to FICO?

At FICO, you can develop your career with a leading organization in one of the fastest-growing fields in technology today – Big Data analytics. You’ll play a part in our commitment to help businesses use data to improve every choice they make, using advances in artificial intelligence, machine learning, predictive and prescriptive modeling, and much more.

FICO makes a real difference in the way businesses operate worldwide:

• Credit Scoring — 150+ billion FICO Scores have been sold to date, making it the most used credit score in the world.
• Fraud Detection and Security — 2.6+ billion payment cards globally are protected by FICO fraud systems.
• Lending — 3/4 of US mortgages are approved using the FICO Score.
• Anti-Money Laundering — our solutions check more than half a billion transactions a day to prevent criminal schemes such as terrorist financing

Global trends toward digital transformation have created tremendous demand for FICO’s solutions, placing us among the world’s top 100 software companies by revenue. We support many of the world’s largest banks, insurers, retailers, telecommunications providers and other firms reach a new level of success.

Our success is dependent on really talented people – just like you– who thrive on the collaboration and innovation that’s nurtured by a diverse and inclusive environment. We’ll provide the support you need, while ensuring you have the freedom to develop your skills and grow your career. Join FICO and help change the way business thinks!

Learn more about how you can fulfill your potential at www.fico.com/Careers

FICO values the benefit that diversity and a culture of inclusion bring to our workplace. We are an equal employment opportunity and affirmative action employer and we’re proud to offer employment and advancement opportunities to all applicants without regard to race, color, ancestry, religion, sex, national origin, pregnancy, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status.