Western Union Information Security Engineer in Denver, Colorado

Job Title: Information Security Engineer

Requisition #: 1803055

Western Union is changing. Yes, we’re the company that moves money around the world quickly and reliably in 200 countries and territories. We are also present in over 510,000 locations bringing immense distribution convenience to our consumers. But we’re on the cusp of becoming much more than that. Our vision is to be the preferred financial services provider for the underserved – billions of people and businesses with unmet financial service needs. That means aggressively pursuing digital, mobile, ATM/kiosk and stored value card strategies that meet the needs of today’s global consumers and businesses. So, if you’re looking for a company on the move – and truly one of the most diverse work environments on the planet – then Western Union could be for you.

Right now, we are seeking an Information Security Engineer based at our Global Headquarters in Englewood, Colorado.

In this role, will be to create strategy, rebuild infrastructure and processes, and certify Western Union’s security stance. You will serve as a technical resource and expert use of SIEM/correlation tool to provide risk assessments for global enterprise environment. The engineer will employ highly technical security skills to build/deploy key infrastructure security tools, respond to escalated security alerts, provide enterprise risk assessment, vulnerability remediation, and provide a source of security consultation and expertise for the business.

Sound interesting? Hereare some specifics:

  • Review, build, rank and escalation point for IDS and IPS systems

  • Review escalated IDS/IPS alerts and logs

  • Correlate logs and alerts into attack patterns:

  • Assess and rank the riskto the enterprise

  • Create and lead actionplan to reduce risk

  • Remediation of vulnerabilities

  • Risk ranking and scoring

  • Oversight of remediation

  • Create solutions and leadefforts to reduce risk

  • Review of firewall and perimeter rule sets

  • Database security and review

  • SSL certification management and review

  • Provide vulnerability assessment and potentially assist inpenetration testing

  • Maintain and reviews web hosting environment

  • Security certification of new and existing production systems

  • Provide assistance in research of next generation securityissues, 0-day attacks, and provide input on strategy for future securityinfrastructure and tools

What you will need tosucceed:

  • BS degree in computing /information systems or 6+ years of information security experience and/ornetwork securityis required. A graduatedegree would be considered a plus.

  • Some industry certificationsrequired, such as: SANS (GCFW, GCIH, GPEN, GCIA, GCFA), CISSP, Microsoft(MCSE+security), Cisco

  • Strong experience with one or more industry recognized SIEMsolutions such as ArcSight, LogRhythm, Splunk, QRadar, etc.

  • Strong experience with all versions of Microsoft Windows and Linuxoperating systems

  • Strong experience with Active Directory and LDAP, firewalltechnology, and IDS/IPS technology

  • Expert in TCP/IP, reading network packets, network technologies,and perimeter protection technology

  • Strong skills in web technologies (scripting, SSL, HTTP/S) andtheir security requirements

  • Configuration experience with Cisco hardware and IOS a plus

  • Experience with incident response, forensics and evidencepreservation

  • Experience in leading a diverse project team that implementsnetwork and system security solutions

  • Vulnerability and penetration testing experience and skills

  • Program in multiple languages / scripting languages including SQLquery and manipulation

  • Ability to communicate technical security requirements tobusiness units, create strategy, and implement security plans utilizing strongand effective writing skills

  • Knowledge of WAN/LAN/Cloud networking concepts and concerns asrelated to a Global SIEM deployment.

  • Familiarity with Cloud infrastructure and the unique challengeswith deploying SIEM in the Cloud as well as logging Cloud-based hosts.

  • Understanding of the various logging methodologies: syslog,agent-based, WMI, etc.

What it’s like here:

Western Union (WU) is a company on the move! We believe that when money moves, better things can happen. From small businesses and global corporations, to families near and far, or NGO’s in the most remote communities on Earth, WU helps people and business move money globally. We have a rich legacy of innovation, and are continuing to develop new and more convenient ways for our customers to send and receive money through digital, mobile and retail channels. We have a combined digital and retail network that spans over 200 countries and territories. Some companies specialize in cash-based retail money transfer and others play only in digital. We are leaders in both!

Being on the Western Union team means being tenacious and goal-oriented. It means taking risks and quickly finding the path to success. It means having integrity, and finding ways to make things work. It means thriving as part of a diverse, global team of over 10,000 people who are committed to moving money for better. It means being driven to win, and to do work that makes a difference… on a global stage. Sound like you? Apply now!

Inclusion and diversity are fundamental to our culture and success. Achieving our common vision depends on people with diverse backgrounds working together. Who knows; your unique point of view could be the key to our next groundbreaking idea. We’d love to explore that possibility!

Western Union is proud to be an Equal Opportunity-Affirmative Action Employer. We are committed to equal employment opportunity regardless of race, color, religion, sex (including pregnancy or related medical conditions), national origin, veteran status, sexual orientation, gender identity, age, disability, marital status or other protected category.