Posted: Friday, March 16, 2018 11:11 AM
Req ID: 39284
Areas of Interest: Information Security
BOK Financial (BOKF), Headquartered in Tulsa, Oklahoma, BOK Financial Corporation (NASDAQ: BOKF) is a top 25 U.S.:based financial services holding company with operations in ten states : Oklahoma, Texas, Arkansas, Arizona, Colorado, Kansas/Missouri, New Mexico, Nebraska and Wisconsin. The company began more than 100 years ago in Tulsa and has successfully diversified into a variety of industries, businesses and geographies.
The Senior Information Security Engineer is responsible for supporting the architecture, implementation, and ongoing maintenance of the information security program and ensuring the confidentiality, integrity, and availability of corporate assets. Works with functional areas to define, document, and implement security strategies, architectures, and procedures. Assess and verify systems are protected from threats, while enabling the organization to work effectively and productively.
PRINCIPLE DUTIES AND RESPONSIBILITIES:
:Design, configure, deploy, and manage security infrastructure including: VPN, firewall, application firewall, IPS and IDS systems, vulnerability assessment systems, multi:factor / strong authentication technologies, RADIUS/TACACS+ servers, proxy servers, URL filtering, and logging servers.
:Work with senior management, systems operations staff, software development staff, support staff, 3rd parties and end:users to ensure rapid resolution of security issues.
:Manage security initiatives from design to implementation.
:Defines and implements technical security risk assessment program. Provide guidance of security risk assessments of third party relationships and associated corrective actions.
:Identify vulnerabilities and reduce risk by analyzing processes, network designs, and software designs.
:Assists in the information security awareness, training, educational activities, the preventive monitoring of potential information security threats, investigation of information security breaches and drives appropriate response to the breach.
:Responsible for maintenance, monitoring, capacity planning, and 7x24 support of security systems and security related issues.
:Assists in the information security incident response process and provide guidance.
:Defines and implements technical security risk assessment program and implement remediation plans. Provide guidance of security risk assessments. Collaborate with personnel across to ensure appropriate risk levels are identified.
:Perform security assessments.
:Utilize industry best practices, ISO standards, and regulatory requirements to design security controls and processes.
:Provide support for information security incidents. Assist with the investigation of security breaches, policy violations, and security incidents.
KNOWLEDGE, SKILLS and ABILITIES:
:Requires BS in Computer Science or 6:8 years of technical security related experience and extensive background in supporting information security systems
:Understanding of network protocols and experience in more than one of the following: Web Proxies, Firewalls, Intrusion Detection tools, File integrity monitoring tools, Vulnerability assessment tools, Security Information and Event Management, Secure Email Gateways, Application Firewalls, Data Loss Prevention
:Verbal and written communications and presentation skills. Must have the ability to communicate with internal/external customers, vendors, management in both formal and informal situations
:Administrative and security expertise with all versions of Windows and Windows Server and Unix variants
:System administration experience in a production environment
:Experience in assessing designs related to networks, operating systems, and applications
:Experience with assessing risk related to networks, operating systems, and applications
:GIAC or CISSP certification is preferred
This level of knowledge is normally acquired through completion of
• Location: Tulsa
• Post ID: 19993992 tulsa