Cybersecurity Engineer Sr.

Start something good. Empower your career. Become an employee at Cenlar.

Employees have made Cenlar the nation’s leading mortgage loan subservicer.  Our unique culture is defined by our core values of respect, trust, integrity and care. Company ownership, a promote-from-within philosophy, and opportunities for continuous professional growth make Cenlar a great place to launch or boost your career. Consider this opportunity to join our team as a Cybersecurity Engineer Sr.

The Cybersecurity Engineer Sr. leads and/or participates in the design and implementation of cybersecurity controls and the build out and support of ongoing security operational measures or programs within Cenlar’s environment. The Engineer helps implement a secure cloud environment within Microsoft Azure while establishing and maintaining a high level of security compliance. The Cybersecurity Engineer Sr. develops measures to monitor and manage vulnerabilities and cyber threats and support the program leadership needs as assigned.  This role involves technical implementation objectives and direct interface with various stakeholders.  The work of this position has a material effect on the safety and soundness of data and systems which will influence and impact Cenlar’s competitive advantage and reputation.

Job Summary for Identity Access

The Cybersecurity Engineer focuses on identity access management within the Corporate Security Office.  The Engineer uses Sailpoint IIQ to design and implement the configuration required to automate application and system user management to ensure the security of data and access within the environment.  The role involves technical implementation objectives and direct interface with various stakeholders. The work of this position has a material effect on the safety and soundness of data and systems which will influence and impact Cenlar’s competitive advantage and reputation. 

Responsibilities:

• Acts as a Subject Matter Expert and provides thought leadership in initiatives aligned to the CSO and IT strategic roadmaps
• Acts as a Subject Matter Expert and drives the build of reusable security configuration and implements best practices for Information Security Solutions 
• Provides thought leadership in cloud-related security operations including engineering, automation, compliance, security accreditation, and configuration of Identify and Access Management in the cloud
• Maintains the patching program including vulnerability and threat management and mitigation for Information Security Solutions. 
• Mentors junior level employees
• Remains current on security technologies, techniques, and possible threats to Cenlar
• Appropriately assess risk when business decisions are made, include but not limited to compliance and operational risk. Demonstrate consideration for Cenlar’s reputation as well as our clients, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues, as well as effectively supervise the activity of others and create accountability with those who fail to maintain these standards.

Identity Access - Job Responsibilities

• Serves as the Identity Engineer Subject Matter Expert within Cenlar and uses Sailpoint IIQ to implement the configuration required to automate application and system user management.  
• Partners with the Corporate Security Office and business functional teams to automate access certification and reduce manual steps required to complete the access certification.   
• Partners within the Corporate Security Office and end users to determine testing needs of individual departments in order to implement automation of user role provisioning.
• Completes review of Identity Access controls and updates workflow documentation as necessary.  
• Completes assigned tasks designed to ensure the security of the organization's systems and information assets and protects against unauthorized access, modification, or destruction.
• As necessary, updates Sailpoint Operational document (runbook) for 3rd party team that is supporting the operational management of Cenlar’s Sailpoint environment.
• For Security education and training, researches and develops methodologies to enhance enterprise security awareness, education, and training approaches for Identity procedures, including recertification.
• Performs proactive analysis of the security environment to reduce the risk of systems compromise through unauthorized entry and/or activities performed by either external individuals or Cenlar associates.
• Develops a strong working relationship with the Sailpoint Implementation project manager. 
• Provides thought leadership in cloud-related security operations including engineering, automation, compliance, security accreditation, and configuration of Identify and Access Management.
• Stays current on security regulations and associated policies, doctrine, and techniques to enhance Cenlar’s Information Security Program.
• Builds cross-functional relationships with business partners.
• Appropriately assess risk when business decisions are made, include but not limited to compliance and operational risk. Demonstrate consideration for Cenlar’s reputation as well as our clients, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues, as well as effectively supervise the activity of others and create accountability with those who fail to maintain these standards.

Qualifications:

• Bachelor’s degree or equivalent experience
• Master’s degree or professional certifications such as CISSP, CISM preferred
• 10+ years of overall IT experience, preferably security engineering experience, in a technical, hands-on capacity A minimum of 5 to 7 years direct job experience in Financial Services in the areas of Information Security and/or Information Technology; experience in a high-profile organization or similar a plus
• Azure certification preferred (Microsoft Certified: Azure Security Engineer Associate)
• Direct Azure cloud security implementation experience
• Expert understanding of security protocols, cryptography, authentication, authorization and security
• High level knowledge of current IT risks and experience implementing security solutions
• Experience implementing multi-factor authentication, single sign-on, identity management or related technologies
• Ability to interact with a broad cross-section of personnel to explain and enforce security measures
• Excellent written and verbal communication skills, including architectural diagrams and flows, strong business acumen and a commercial outlook
• Prior experience managing ongoing security operations
• Network infrastructure skills including but not limited to configuring and managing firewalls, cloud networks, routing, DNS, VPN, LDAP, Active Directory
• Strong preference for prior experience with implementing Azure security in an on-premise to Azure migration

Identity Access – Additional Requirements to the above

• Professional certifications such as SailPoint Certified Identity IQ Engineer
• Minimum of 4 years Sailpoint IIQ implementation experience, cloud and on-perm

Total Rewards:

As an employee at Cenlar, you’ll receive an outstanding benefits package that includes paid medical, dental, and life insurance, 401(k), and tuition assistance as well as opportunities for training and professional advancement.

Cenlar is a drug-free workplace and an equal employment opportunity/affirmative action employer M/F/D/V/SO.

---