Principle Cybersecurity Engineer-1
At Discover, be part of a culture where diversity, teamwork and collaboration reign. Join a company that is just as employee-focused as it is on its customers and is consistently awarded for both. We’re all about people, and our employees are why Discover is a great place to work. Be the reason we help millions of consumers build a brighter financial future and achieve yours along the way with a rewarding career.
Job Description
At Discover, be part of a culture where diversity, teamwork and collaboration reign. Join a company that is just as employee-focused as it is on its customers and is consistently awarded for both. We’re all about people, and our employees are why Discover is a great place to work. Be the reason we help millions of consumers build a brighter financial future and achieve yours along the way with a rewarding career.
The responsibility of the Principal Cybersecurity Engineer role is to contribute to the delivery of critical infrastructure solutions as part of Discover’s Data Security Products team. Drives Cybersecurity engineering solutions, framework, roadmap, program optimization, process engineering, risk remediation, and mitigation of operational risk in a high-velocity culture by introducing technology, requirements, deliverables, gaps and systems design. Analyzes competitive strategies, cyber technologies, metrics models, and performance indicators. Contributes to robust and innovative strategic solutions and builds resilient support for next-generation systems to solve business challenges and enhance the control environment.
Responsibilities
- Design, develop, and maintain Discover’s Public Key Infrastructure (PKI), tokenization, and other cryptographic solutions.
- Identify, design, and implement automated solutions to enable business partner’s cryptographic security needs.
- Acts as the principal advisor to upper management in Cybersecurity matters. Ensures that security-improvement designs are evaluated, validated, and implemented as required. Certifies that protection and detection capabilities are acquired or developed, using the Cybersecurity engineering approach, and are consistent with organization-level cybersecurity architecture. Explores and assesses the latest technology trends, disruptions, and security/IT service business models to ensure Business Technology maintains and improves the organization’s cyber-competitive edge.
- Works closely with management to define and promote the strategic direction of the team. Provides strong leadership and direction to team members. Provides subject matter expertise across all Cybersecurity technologies. Oversees project implementation to ensure successful solution delivery.
- Researches, engineers, and integrates new Cybersecurity solutions. Applies service-oriented security architecture principles to meet the organization's confidentiality, integrity, and availability requirements. Performs cyber defense incident triage, including determining scope, urgency, and potential impact, identifying the specific vulnerability. Makes recommendations that enable expeditious remediation.
- Creates and maintains Cybersecurity technology roadmap. Ensures compliance to audit, regulatory, and legal requirements. Builds and maintains effective relationships with peers and internal business partners, and external vendors. Enforces the engineering and architecture methodologies to be in compliance with technical aspects of security controls and standards, and pilots the implementation of prominent security solutions to improve the confidentiality, integrity, and/or availability of the firm’s intellectual property, systems, and applications.
Transforms business requirements into technical specifications. Designs and develops system-security measures to ensure Cybersecurity is fully integrated. Validates current and future-state architectural models to assess impact across all Cybersecurity technology systems.
Skills Required:
Minimum Qualifications
At a minimum, here’s what we need from you:
- H.S. Diploma or GED
- 6+ years of experience in Information Security, Application Security, Programming, DevOps, Cloud, Computer Science, Data Analytics, or related field
Preferred Qualifications
If we had our say, we’d also look for:
- Bachelor's Degree in Information Security , Computer Science, or related field
- 8+ years of experience in Information Security, Application Security, Programming, DevOps, Cloud, Computer Science, or related field
- 4+ years of experience with related certifications: CISSP/GIAC
- Strong problem solving and analytical skills; able to quickly digest any issue/problem encountered and recommend an appropriate solution Experience in leveraging agile practices for planning and executing work
- Excellent verbal and written communication skills
- Experience working with cryptographic services such as TLS/SSL, Key Management, Certificates, and HSMs
- Experience working with major Operating Systems, such as Windows Server and RHEL
- Experience supporting and maintaining highly available distributed systems
- Experience with scripting languages such as Python, Powershell, and Ruby
- Knowledge payment compliance and standards (PCI DSS, FFIEC, NIST Security Standards and Frameworks) is a plus
#LI-SY1
What are you waiting for? Apply today!
The same way we treat our employees is how we treat all applicants – with respect. Discover Financial Services is an equal opportunity employer (EEO is the law). We thrive on diversity & inclusion. You will be treated fairly throughout our recruiting process and without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status in consideration for a career at Discover.