IT Security Engineer

At IntraFi, we prosper by working hard in an open and creative environment. Our employees enjoy the flexibility of a hybrid work environment (flexible telework/remote schedule) along with robust benefits and career growth opportunities. Our efforts to create and maintain a culture that values our people have led us to be designated among the top fintech companies to work for by American Banker. IntraFi has also been recognized as one of the best places to work by the Washington Post’s Top Workplaces and the Washington Business Journal’s Best Places to Work. Our company is also recognized among Fortune’s lists of Best Workplaces—Small & Medium Businesses and Best Workplaces in Financial Services and Insurance.

Headquartered in Arlington, Virginia, IntraFi – the nation’s largest deposit allocation service provider and the inventor of reciprocal deposits – provides dynamic, all-weather balance sheet and liquidity management solutions to help financial institutions grow franchise value. The company, chosen by thousands of banks since its founding over two decades ago, has assembled the largest bank network of its kind. Its solutions help institutions to acquire high-value, local relationships; purchase funding; and reduce collateralization costs.

Your Role

As the IT Security Engineer, you will work collaboratively with the IT Security team that is responsible for maintaining the security and integrity of data. Your primary role will be defining and implementing overall security strategy, policies, and procedures.

Your Responsibilities

• Enhancing security posture by providing actionable advice and guidance to protect assets.
• Reducing vulnerabilities through comprehensive security assessments, risk analysis, and testing.
• Mitigating risks by collaborating on innovative solutions to strengthen system defenses.
• Proactively addressing potential threats by reviewing critical access audit logs and reporting anomalies.
• Driving successful outcomes in security initiatives by leading projects, defining requirements, planning tasks, conducting research, testing, implementing solutions, and managing ongoing efforts.
• Building client trust by efficiently responding to due diligence requests and addressing security concerns.
• Safeguarding operations by investigating suspicious activity and unknown visitor reports promptly.
• Ensuring continuous protection by remaining available during off-hours, weekends, and holidays to respond to alerts from Managed Security Service Providers (MSSP).
  
  

Required Experience, Skills, And Qualifications

• Bachelor’s degree or equivalent years of experience
• Active CISSP (Certified Information Systems Security Professional)
• Working knowledge of multiple IT disciplines to include some of the following
• Network routing and the IP protocol
• Cloud security posture management
• Secure application coding
• Firewall rule management
• Endpoint detection and response tools
• Anti-Virus/Anti-Malware tools
• Data-leakage protection concepts and tools
• Computer security incident response
• Vulnerability and penetration testing
• Strong working knowledge of AWS solutions, including
• Key Management System (KMS)
• Secrets Manager
• CloudFront to include Web Application Firewall (WAF)
• CloudFormation
• Control Tower
• Identity and Access Management (IAM)
• SecurityHub
• Config
• GuardDuty
• CloudTrail
• CloudWatch
• Strong working knowledge of M365 and Azure solutions, including
• Defender XDR
• Entra ID
• Purview
• InTune