Security Engineer

Overview

• Demonstrate an advanced level of understanding of numerous security products and processes.
• Identify, test, implement, and maintain the necessary security products and processes to cost-effectively and uniformly protect information systems assets from intentional or inadvertent modification, disclosure or destruction.
• Interface with both the business and user community to understand their security needs.
• Partner with our IT shared services team to understand Nelnet’s total technology roadmap
• Understand the policy, standards and procedures found in the Nelnet enterprise as well as understanding appropriate laws and regulations that our business.
• Review, analyze, implement and administer vendor and internally developed security software, products and procedures to address security requirements.
• Be responsible for the evaluation of new technologies, tools, and/or development techniques that impact security.

Responsibilities

1. Security - Technical Understanding
2. Understands and demonstrates current job family technical skill expectations
3. Explores and pursues technical skills outside of current job family
4. Actively seeks to remain technically current and increase expertise and abilities
5. Strives to align personal passion and career desires with opportunities and company needs
6. Understands and Exhibits skills to protect data, systems and networks and maintains secure, reliable, redundant systems.
7. Innovation
8. Challenges prevailing assumptions when appropriate
9. Brings forward technology options that provide long-term business value
10. Identifies short-term, tactical technology alternatives that result in immediate business value
11. Strives continually for improvements in delivery of services and solutions
12. Balance the need for experimentation and managed risk with the desire to maintain the existing systems and processes 
13. Agility
14. Willing to adapt to changing technology and business landscapes
15. Remains present and engaged while working through ambiguity
16. Considers change as opportunities to be challenged and grow
17. Helps others adapt to changing environments
18. Problem Solving
19. Uses analytical ability and creative thinking to break problems down into manageable components
20. Thinks open mindedly and considers all alternatives
21. Identifies well thought out, comprehensive alternatives
22. Takes responsibility for ensuring problems are worked to a complete resolution
23. Collaboration
24. Explores concepts, ideas, and alternatives to reach outcomes that gain acceptance and support of all participants
25. Strives to foster an environment of teamwork and unity that allows for constructive conflict, deliberation of ideas and appreciation of diversity
26. Seeks out opinions and thoughts of others without regard for organizational boundaries
27. Strives to be self-aware of personal behaviors that limit collaboration and teamwork
28. Influences, motivates and inspires others through direct and indirect means to accomplish organizational and team objectives and goals
29. Communication Skills
30. Adapts style of communication to match audience and information sharing needs
31. Actively pursues bi-directional sharing of ideas and information
32. Speaks and writes effectively with cohesion and clarity
33. Asks for input, listens actively and seeks to ensure all opinions are heard
34. Strategic Focus
35. Understands Nelnet’s overall business and technology goals and objectives
36. Strives to view things from a business perspective and a genuine desire to do what's right
37. Strives to consistently deliver the right solutions and services
38. Acts as a trusted adviser while seeking short-term wins and long-term benefits
39. Perform additional duties as assigned

Qualifications

1. Highly proficient in the use of multiple IT products, tools, and/or languages.
2. Analyst – One or more years of progressively responsible Information Systems experience.
3. Senior Analyst – Three or more years of progressively responsible Information Systems experience with a focus on security functionality.
4. Three to Five years’ experience with Nexpose (or similar) scanning tools running within multiple enterprise environments and configurations
5. 3 to 5 years’ experience with System Center Configuration Manager (SCCM) within multiple enterprise environments and Configurations.
6. Strong ability to Interpret and review scan results to manage mitigation and remediation across enterprise environment (Nexpose and SCCM)
7. Ability to configure patches and scripting packages across enterprise environment in server and workstation mediums through SCCM and manage deployments
8. Three to Five years’ experience with PowerShell scripting in test and production environments
9. Ability to leverage other system tools to synthesize to analyze and report on risk factors at enterprise level

1. Knowledge of security, control and computer technology.
2. Knowledge of how to lead and/or motivate others.
3. Knowledge of and ability to apply concepts of statistics and probability to identify and address problems, trends, and relationships in work related data.
4. Knowledge of various computer systems and software – PC and/or online – to input, access, modify or produce information or to execute preprograms
5. Knowledge of industry relevant to job.
6. Knowledge of at least one computer development language, methodology, and techniques.

EEO Statement