Intermediate Cyber Security Engineer - Vulnerability Management (Work From Home)

IT - General Global Technology Services (GTS) is Aegon's global IT partner that provides infrastructure services, information security and global/corporate application support for Aegon's businesses around the world.

From 6 locations in the US, the Netherlands, UK, and Hungary, we support 20+ country units and 24000+ employees in the world. Our support consists of a wide range of centralized global IT services such as programming, database management, project management, agile/dev/ops, and more.

We continue to maximize the value from having a clear digital and data technology platform strategy that extends our ecosystem, as an approach to digitization, enhancing customer experience, and improving operational efficiency.

All of these teams work closely together to provide innovative and digital solutions as well as critical technology support. This is essential for enabling Aegon's businesses around the globe to be innovative, digital and competitive, efficient, and effective, and to provide the best solutions and customer experience for our customers and shareholders.

Security is foundational to Transamerica and we are growing our Information Security Team. We are looking for a multi-talented Cyber Security Engineer. We are a fast paced energetic team dedicated to making our enterprise more secure. So if you have at least 1-3 years cyber experience, are an exceptional team player have great Franken-skills; come join our industry leading, global organization.

• Assist with defined tasks in support of specified cyber security domain areas
• Identifying weaknesses and vulnerabilities in relation to industry best practices and provide support to the application of security frameworks and regulatory standards such as, but not limited to: GLBA, CIS, PCI DSS, ISO 27001 and NIST 800-53
• Review security vulnerabilities across diverse technologies and rapid changing environments including on premise and cloud infrastructure. Supports the analysis, implementation, and management of administrative, technical and physical safeguards to ensure the privacy and protection of company information and supporting technology and services
• Assist in the research, development and implementation of information security initiatives, such as policy, program, process, procedural and technology improvements and solutions
• Ability to help employees and contractors understand their role in safeguarding information, technology and services by being an ambassador
• Gathers data, analyzes and drafts reports, including department, project, key indicators and dashboards. Ability to quickly develop excellent working relationships with peers and key stakeholders, such as business partners, legal, internal audit, risk, and technology specialists
• Improve and automate existing vulnerability management lifecycle

• Bachelor’s degree with emphasis in Computer Science, MIS, Auditing, Finance, or Business or equivalent education and experience required. 1 to 3 years of cyber security engineering work experience required.

• Knowledge of applicable control frameworks such as: NIST CSF, NIST SP 800-53, FISMA, ISO 2700, COBIT
• Strong foundation in core, advanced and advanced persistent threat (APT) technology controls (SIEM, endpoint security platform, firewall, intrusion detection/prevention systems, data leak prevention systems, syslog servers, vulnerability scanners, web application firewalls, threat data feeds, forensics, application whitelisting )
• Security in Software Development Life Cycle (SDLC)
• Experience with one or more of the following cyber security domain areas: application awareness, BCP/DR, cyber resiliency, data handling and classification, data level encryption, DLP, forensics, fraud investigation and response, identity and access management, identity awareness, incident response and management, key management systems, multi-factor authentication, network zoning and segmentation, next gen firewalls, secure coding, security within SDLC, STIGs, web application firewalls (WAF), web certifications
• Certifications desirable - OSCP, CISSP, CEH and/or CompTIA Security+/CySA/CASP+.

• Ability to fluently read, write and speak English
• 2-3 years of related work experience with vulnerability management
• Experience with systems such as ServiceNow, JIRA or equivalent
• Strong background in creating and automating vulnerability reports and dashboards including trending and graphing data
• Hands on experience with application security, dynamic scanning, static scanning, and container security
• Working knowledge of one or more vulnerability management systems including Fortify, Nexpose, Twistlock, Nessus Tenable, etc.

• Preference given to candidates with Transamerica and/or Aegon products, systems and/or domain knowledge
• Experience in Insurance, Payments, Banking or other Fin-Tech Industries

• Normal office working environment or work from home opportunity
• Minimal travel may be required

• Wealth Benefits; Competitive Pay, Bonus, and Benefits Package
• A Comprehensive Wealth + Health package.
• Health and Work/Life Balance Benefits