Senior Security Operations Engineer 9/9/2016

First American Santa Ana, CA

Company
First American
Job Classification
Full Time
Company Ref #
34758BR
AJE Ref #
576122550
Location
Santa Ana, CA
Experience
Mid-Career (2 - 15 years)
Job Type
Regular
Education
High School Diploma or GED

JOB DESCRIPTION

APPLY
First American Financial Corporation (NYSE: FAF) operates through its family of companies to help people achieve and protect their dream of homeownership. First American was named one of FORTUNE s 100 Best Companies to Work For in 2016. With experience dating back to 1889, First American is a leading provider of title insurance protection and settlement services to the real estate and mortgage industries. More information about the company can be found at www.firstam.com

Job Description

The Sr. Information Security Operations Engineer is responsible for providing operational security solution oversight to ensure the successful meeting of Operating Level Agreements and Service Level Agreements to the Security Operations Customers. As a Senior Information Security Operations Engineer, you will be chartered with interacting and facilitating with various groups company wide, including but not limited to client managers, business customers, third-parties, vendors, and auditors.

*Design, implement, configure and maintain security applications and infrastructure to support corporate policies, federal and state security regulations.
*Lead technical engineering services to support and update existing security systems and work to automate processes related to security implementations, monitoring, and enforcement.
*Evaluate and implement security devices such as firewalls, IDS, IPS, threat correlation tools, vulnerability scanning tools, encryption capabilities, etc.
*Assist in the planning of large scale systems projects through vendor comparison and cost studies. May act as project team leader for smaller scale systems projects.
*Interact with auditors, providing evidence as needed.
*Interact with internal and external clients on security requirements, identify security process and develop strategies/solutions to security issues while maintaining tight security discipline.
*Collaborate with application and system development teams to configure and deploy systems and applications in a secure manner.
*Collaborate with Network Engineering in developing and maintaining a secure network infrastructure including design of network segmentation, firewall policies, and configuration of security devices.
*Maintain and provide continuous tuning of Security Incident & Event Management solution. Evaluate and research SEIM alerts and modify triggers and policies as appropriate.
*Participate in investigations of computer security incidents including incident response, containment of the incident and forensics.
*Serve as a Subject Matter Expert for assigned security applications
*Prepares operational documentation for operational teams in use of security solutions
*Evaluate proposed system & application changes for security risk.

Job Qualifications

Qualifications:

*High school diploma or GED required; Bachelor s degree in Computer Science, Information Technology, Telecommunications, or Electrical Engineering strongly preferred
*Certifications preferred: CISSP, CISA; CEH; CSSLP; CCNA, and CCNP
*Five to eight years of information security experience
*Must have two years of experience with networking, intrusion detection, VPN, PKI, Cisco and PIX firewalls, SIEM, Identity management and encryption technologies
*Experience in implementing Information Security technologies and/or processes required
*Experience in product evaluation and managing vendor relationships required
*Experience in defining Information Security strategy and integrating security technologies into corporate frameworks
*Must have hands on working knowledge of UNIX/AIX, Microsoft 2003 and later, firewall multi-layer design and implementation, router access list/packet filtering, WANs, LANs, network protocols and network services, Intrusion detection systems, Virtual Private Network, two factor authentication