First Data Security Engineer II in Marietta, Georgia

Position Description Overview

Resource is the primary source for critical vulnerability management identification, assessment, declaration and remediation coordination. Resource maintains awareness of Zero-Day and other potentially critical vulnerabilities and perform assessment of those vulnerabilities relative to the First Data environment to determine if a Critical Vulnerability Needs to be declared and remediation coordination needs to ensue. Resource will also be responsible for leading Security Patch Management activities to include the Identification, Testing & Validation, and Deployment validation of security patches being released monthly by the various patching authorities. Resource also currently spearheads efforts to develop a patch registry which Wells Fargo pays First Data to provide to them on a quarterly basis. Resource will not only owns these activities but will be actively working to evolve these capabilities in a manner that will further reduce First Data’s risk of exploitation associated with poor security patch management and critical vulnerability response processes which can negatively impact First Data’s reputation and revenue generation.

Job Responsibilities

  • Monitor different sources of critical vulnerability identification to include NIST NVD, CVE, etc

  • Work closely with Threat Intelligence, CSIRT and Vulnerability Management and functional resources to assess the impact to the FD environment

  • Based on the assessment create/recommend action plan

  • Draft management level communications related to critical vulnerability to include recommended actions

  • Leverage Tenable Nessus, Tanium and SEIM and CMDB toos to assess the scope and impact of the critical vulnerability

  • Perform vulnerability scans (PCI and Non-PCI) and configuration scans as required

  • Interface with Platform engineering and Patch Deployment teams to validate the the deployment of patches

    Job Requirements

  • 5 years of of Vulnerability Management, Critical Incident Response, and Threat Intelligence experience

  • 5 years of experience with Vulnerability scanners such as qualys, tenable nessus, Tanium and SIEM solutions like Sep, Splunk, etc.

  • Experience in the creation of reports and write-ups for management level consumption using Microsoft Office

    First Data is an Affirmative Action – Equal Opportunity Employer (Minorities/Females/Vets/Disabled/LGBT) First Data provides equal opportunities to all employees and applicants for employment without regard to sex, race, color, religion, marital status, national origin, age, genetic information, sexual orientation, gender (including gender identity/expression), disability, veteran status and military status, pregnancy or pregnancy-related medical conditions, or any other factor that may be protected by law.

Job: *Technical Support

Title: Security Engineer II

Location: Georgia-Marietta-Marietta 1600 Terrell Mill

Requisition ID: 2302980