Principal Information Security Platform Engineer at First Financial Bank in Cincinnati, Ohio

Posted in Other about 2 hours ago.





Job Description:

We do the right things, right now. We do them in a way that is relevant to our clients. Become a part of our history as it continues to be written!


If you are interested and qualified for this role, we invite you to apply.


The Principal Information Security (IS) Platform Engineer is responsible for designing, implementing, and maintaining secure platforms with a strong emphasis on protecting sensitive information and preventing data loss within the organization. The incumbent will be an integral part of the Information Security team and partner with key stakeholders to identify potential risks, design and implement DLP solutions, and assist with the engineering of other security platforms (ex. Web Gateways and Web Application Firewalls). The Principal IS Platform Engineer is expected to stay up to date with the latest industry trends and technologies, conduct periodic risk assessments, and provide training and guidance to associates on data protection best practices. The incumbent will also be expected to monitor and analyze data security incidents, investigate breaches, and develop incident response plans to mitigate future risks.


Job Description



Essential Functions/Responsibilities



  • Design and implement DLP solutions to monitor, detect, and prevent data leaks across endpoints, networks, and cloud environments.

  • Integrate DLP policies into existing infrastructure and workflows, ensuring minimal disruption to business processes.

  • Drive technology requirements: engineer and tune alerts generated from DLP systems and other technologies.

  • Regularly audit DLP rules to improve accuracy across systems and minimize false positives through use of technology and data analytics.

  • Identify governance, process and data loss resiliency improvement areas; propose and implement changes to eliminate redundant work by leveraging automation.

  • Perform analysis and remediation of data loss events.

  • Analyze event metrics to inform and enhance company's security posture and improve existing monitoring and response processes.

  • Configure, manage, and optimize web gateways to monitor and filter web traffic for malware, phishing, and unauthorized data exfiltration.

  • Implement policy-based web filtering policies and real-time threat detection mechanisms for web traffic control.

  • Implement, configure, and monitor cloud web application firewall to protect web applications.

  • Collaborate with application developers to configure and optimize WAF rules, ensuring appropriate coverage and effective protection without functionality or performance impact.

  • Create and maintain security controls for on prem and cloud-based infrastructure in alignment with FFB's enterprise requirements.

  • Work closely with the threat management team to respond to potential or real high-risk threats.




Minimum Knowledge, Skills, and Abilities Needed to Perform Essential Functions of the Job



  • Bachelor of Science degree in Information Technology or related field or equivalent experience.

  • Strong hands-on experience with DLP tools and technologies, including overseeing and implementing security solutions within cloud ecosystems.

  • Comprehensive expertise in end-to-end DLP management

  • Experience with Web Gateways.

  • Experience managing and configuring cloud web application firewalls.

  • Experience with supporting cloud computing platforms (more Azure preferred).

  • Knowledge of business concepts, tools and processes that are needed for making sound decisions in the context of the business.

  • An applied understanding of relevant and emerging technologies and an ability to embed learning and innovation in the day-to-day.

  • 5-7+ years of experience with emphasis on cybersecurity, or equivalent combination of education and experience.

  • Experience utilizing security tools such as Endpoint Detection & Response, Security Information & Event Management.

  • Excellent problem solving, communication and collaboration skills.

  • Experience configuring policy and regular expressions.




Preferred Knowledge and Skills




Level of Complexity and Scope



  • Regularly works on problems of diverse scope within information security where the analysis of information requires the evaluation of identifiable factors.

  • Works on moderately complex to highly complex issues with varying scope across the organization.




Degree of Independence and Decision-Making



  • Ability to apply guidelines with proficiency and receives minimal guidance in the day to day.

  • Collaborates with senior roles and line of business partners to devise solutions using subject matter expertise within Information Security.

  • Work is done independently and only reviewed at critical points.




Required Supervisory Responsibilities



  • No direct supervisory responsibilities.

  • May mentor and direct junior associates.




Physical Requirements



  • Prolonged periods of deskwork.

  • Frequent use of computer, keyboard, phone and office equipment.

  • Occasionally lifting and carrying light objects, typically up to 10-15 pounds.

  • Occasionally reaching for items on shelves or in drawers.

  • Clear and effective communication in person and over the phone.

  • Ability to move within an office environment.




Compliance Statement



The associate is responsible for meeting all compliance requirements imposed on First Financial Bank by State and Federal law and regulation, as well as all related First Financial Bank policies and procedures. This includes all Bank Secrecy Act, Anti-Money Laundering, OFAC and Suspicious Activity reporting requirements, as well as all other lending and deposit compliance requirements.



Development and Training






    It is our policy to not discriminate against any individual in violation of federal, state, and local laws as it relates to age, race, color, religion, national origin, sex, marital status, pregnancy, gender identity, disability, sexual orientation, genetic information, veteran/military service, or any other characteristic protected by law.


    We are an E-Verify Employer.
    More jobs in Cincinnati, Ohio

    General Business
    about 4 hours ago

    Kroger Corporate
    General Business
    about 4 hours ago

    Kroger
    More jobs in Other

    Other
    1 minute ago

    Memorial Healthcare System
    Other
    1 minute ago

    Memorial Healthcare System
    Other
    1 minute ago

    Memorial Healthcare System