Security Engineer IV
As a Security Engineer within M&T Bank's Security organization, you will be based in Buffalo, NY. Remote work is an option for well-qualified candidates.
Limited travel is required. A successful candidate will be a subject matter expert in entire platform lifecycle, from architecture/design through implementation.
This role is engineering in nature, however, a strong implementation skill set with proven experience building and supporting shared platforms will be required to provide the desired level of leadership. A successful candidate in the Security Engineering group would have a strong background in cyber security, holding industry credentials (i.e.. CISSP) and have a working knowledge of the NIST framework.
This position leads significant efforts, influences enterprise decisions, and collaborates with individuals at all levels of the organization. The individual will be part of a team that supports security solutions such as Single Sign-on, Federation, and Privileged Access Management.
The role encompasses defining capabilities, design and reviewing solutions both cyber and business of banking. Additionally, working with stakeholders to define strategic roadmaps and future strategies are required.
This lead technical position will provide the foundation for sound technical decision making and control within the Web services component. The position duties will include the development of the architecture and support of the Web server component hardware and software. Primary responsibilities will include the mentoring and leadership of other Web services based staff as well as providing a level of mentoring to development staff.
Duties will include ongoing hardware/software maintenance, capacity planning and ensuring the deployment of management, monitoring and control of server(s). Develops re-usable service components using corporate standard software/technologies that will be leveraged by development and business personnel to deploy Web based solutions.
Work closely with Technology management, senior engineers and support teams on a regular basis to implement and manage design, development and execution of technical solutions that meet or exceed the current and future needs of the organization.
Conduct infrastructure architecture and design, research and development of new or expanded systems, creation of technology standards and policies, thorough analysis of user requirements and operational constraints, unit test and system integration and user acceptance testing.
Regularly and independently interact with business partners of varying associate/management levels to ensure clarity of the problem/opportunity and elicit business requirements.
Coordinate vendor interactions and vendor resources as needed.
Mentor and coach less experienced engineers, technicians and integrators. Review documentation, proposals and changes proposed by less experienced staff.
Continuously seek to expand knowledge and understanding of Financial Services trends, practices and technologies.
Follow and promote use of industry best practices, standards and procedures.
Maintain a strong aptitude and working knowledge of M&T applications, systems and development environments.
Maintain a detailed understanding of vendor technologies and services used by M&T Bank.
Understand and adhere to the Company's risk and regulatory standards, policies and controls in accordance with the Company's Risk Appetite. Identify risk-related issues needing escalation to management.
Promote an environment that supports diversity and reflects the M&T Bank brand.
Maintain M&T internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators as applicable.
Complete other related duties as assigned.
Minimum of 8 years' combined higher education and/or experience in systems design, management, and/or architecture
Strong understanding of the system development and infrastructure lifecycle and architecture, vendor best practices, IT Service Management and systems design
CISA, CISSP, and CISM preferred.
5 to 7 years of Infrastructure and/or Security experience, including Security best practices.
Strong understanding of cyber and technology web-based applications, directory services, and web services Security applications such as Ping Identity, CA SSO/SiteMinder, Oracle Directory, CA-APIM/Layer7, CA-PAM/Xceedium preferred. Experience with standards such as SAML, OAUTH 2.0, Open ID Connect, and WS-federation.
Experience securing both on-premise and cloud-based applications.
Proven experience driving a platform, including applying industry best practices, new product features, and using automation to replace manual processes.
Comfortable with Linux command-line and TCP/IP networking concepts.
Strong communications skills to effectively communicate with and make recommendations to senior and executive management and internal and external service partners
At M&T, we strive to be the best place our employees ever work, the best bank our customers ever do business with and the best investment our shareholders ever make. So when looking to advance your career, look to M&T.
As a top 20 US bank holding company and one of the best performing regional banks in the country, we offer a wide range of performance based career development opportunities for talented professionals. And through our longstanding tradition of careful, conservative and consistent management and a strong commitment to the communities we serve, we continue to grow with a focus on the future.