Job Description:

The Team

Enterprise Cybersecurity (ECS) sets Fidelity's strategy, policy, and standards for the security of and operations in cyberspace. We focus on threat reduction, vulnerability reduction, deterrence, international engagement, incident response, resiliency, and recovery policies and activities. This role is in the Detect and Respond organization.

Enterprise Cyber Security is looking for a passionate network security engineer to focus on investigating, building and implementing security capabilities. standards and solutions within the external defense division. This role offers significant cross organizational exposure to evaluate, implement & manage best-in-class Cyber Tools.

The Expertise You Have

The skills you bring

• A self-starter with a can-do attitude with demonstrated experience in solving complex challenges.
• Investigate, test and implement new security capabilities
• Diagnose and troubleshoot technical issues in various data discovery and data protection technologies.
• Create Splunk dashboards and queries for monitoring and troubleshooting
• Collaborate with SOC, architecture and other partners to continuously improve security postures
• Document and maintain complex technologies and topologies based on security-based practices: Attention to detail
• Develop in-line toolsets (EG CASB) to inspection of SaaS repositories and file stores.
• Evaluate risks and mitigating controls related to business exception requests

Technical

• 5+ years cyber security /IT Engineering / function is required
• 3+ years of experience with implementing and managing SASE solutions. (Zscaler, Palo Alto)
• Experience with cloud DLP, IPS, Malware capabilities (CASB, EDM)
• Experience with network protocols and configurations (SSL, TLS, FTP)
• Strong working knowledge of network and cloud technologies (DNS, Firewall Splunk, AWS, Azure)
• Proficiency in using API's with automation
• Own and drive change across matrix teams
• Knowledge of network proxy protocols / configurations (preferred)
• Proficient in the use of automation tools: Jenkins/Ansible
• Programming experience in Scripting (Python/Bash/Powershell)
• Knowledge AWS / Azure environments
• Knowledge of security compliance standards and frameworks (e.g., NIST)
• Implement and maintain SASE security solutions with a continuous improvement mindset.
• Develop solid short and long term roadmaps to implement preventative capabilities

Behavioral qualities

• Communication skills: Ability to translate technical jargon into business speak.
• Intellectually curious on new opportunities to reduce risk through technology, automation and/or processes
• Proven track record building technical rapport and enduring relationships within diverse teams across the organization.
• Team player with excellent interpersonal & communication skills (written and verbal)

Additional Information

• Fidelity's hybrid working model blends the best of both onsite and offsite work experiences. Having the majority of our associates work onsite is important for our business strategy and our culture. We also value the benefits that working offsite offers associates. Most roles listed as Hybrid will require associates to work onsite all business days of every other week in a Fidelity office. This does not apply to roles listed as Remote or Onsite.

Certifications:

Category:

Fidelity's hybrid working model blends the best of both onsite and offsite work experiences. Working onsite is important for our business strategy and our culture. We also value the benefits that working offsite offers associates. Most hybrid roles require associates to work onsite every other week (all business days, M-F) in a Fidelity office.