A Security System Engineer 4 is a professional, specialist position responsible for the systems and infrastructure which support a set of products. System engineers are involved in the Prepare and Commit phase as they help the solution team identify viable designs and products. This position is responsible for documenting the system components of the business, information, application and technical architectures. The incumbent is responsible for creating and documenting the detail design for the system. As the project moves into the Create phase, this position is responsible to build instances of the system to support the rest of the implementation team. This role helps guide the system on its transition to production.

This individual works with divine guidance to provide or support technology that furthers the mission of the Church and reflects the eternal impact of the gospel.

• Provide significant input and direction to strategic plans and product roadmaps
• Lead collaboration on security related platform items and provide updates to critical stakeholders
• Design measures to protect the system from security compromise and to keep the system safe
• Document the steps required to fulfill service requests
• Plan and perform approved, scheduled and emergency maintenance. This includes documenting the maintenance and following the change management process. In some situations, this role will be required to also approve documented change requests
• Respond to escalated incidents and engage vendors as necessary. Identify, track and resolve associated problems
• Author and maintain documentation and knowledge-based articles
• Adhere to all security guidelines and that systems are properly protected with working backups; ensure all others with access are doing the same
• Perform general research to evaluate a range of product offerings and evaluate emerging trends
• Identify and document technical application, architectures and requirements
• Interact with vendors, provide feedback on their products
• Participate in the design and implementation of supporting systems and infrastructure
• Train other team members on the use of the supporting systems and infrastructure on security knowledge area. Keep training material up-to-date
• Ensure system monitoring is setup, managed appropriately and properly tuned

Education:

• Bachelor's degree in related field, or equivalent professional experience

Work Experience:

• 6+ years of relevant experience with the specific product being supported
  • 2+ years of supporting product development activities and guiding technology decisions
  • 2+ years of experience working in a structured, large-scale operational environment
  • 2+ years of experience working with cloud platforms

Demonstrated Skills & Abilities:

• Proven experience with Change, Incident, and Problem management processes and familiar with ITIL
• Expert knowledge of Unix or Windows servers and network management principles
• Exceptional oral and written communication skills
• Proven leadership and management skills
• Proven as an exceptional troubleshooter with the ability to think under pressure
• Working knowledge of current information security practices, trends, and technologies
• Working knowledge of networking protocols and technologies
• Working knowledge of information security tools, technologies, threats, and practices
• Understand how cyber threat intelligence relates to incident response
• Ability to work effectively in a 24/7 environment
• Experience with Continuous Monitoring operations in an enterprise environment
• Analyze system-generated indicators to identify patterns that would alert potential security incidents or threats
• Demonstrated experience with Windows and Linux operating systems, command line interfaces, and associated security concerns
• Working knowledge of IT organization patterns
• Detail-oriented with the proven ability to follow instructions
• Understand how system storage and memory forensics are used in incident response
• Oracle Cloud Platform
• Oracle Identity Cloud Service (IDCS)
• Identity and Access Management (IAM) (Experience with OKTA preferred)
• Multi-Factor Authentication (MFA)
• Federating with Identity Providers (IdP)
• Managing Access to Platform Resources, Groups and Roles
• Advanced Policy creation
• Managing Application Integrations Access
• Managing Identity Domains, Tenancy, Regions and Compartments
• Resource Tagging
• Managing Authentication (AuthN)
• Managing Authorization (AuthZ)
• Managing access controls and segregation of duties
• Demonstrated experience using a SIEM or data aggregation tool to analyze data sets and identify trends, anomalies, and actionable intelligence
• To successfully perform the essential functions of the job there may be physical requirements which need to be met such as sitting for long periods of time and using computer monitors/equipment