Information Security Consulting Engineer

Quicken Loans - Detroit, MI3.9

Full-timeEstimated: $110,000 - $150,000 a year
Skills
The Rock Family of Companies is made up of nearly 100 separate businesses spanning fintech, sports, entertainment, real estate, startups and more. We’re united by our culture – a drive to find a better way that fuels our commitment to our clients, our community and our team members. We believe in and build inclusive workplaces, where every voice is heard and diverse perspectives are welcomed. Working for a company in the Family is about more than just a job – it’s about having the opportunity to become the best version of yourself.

Who We Are

We’re America’s largest mortgage lender, closing loans in all 50 states. J.D. Power ranked Quicken Loans “Highest in Customer Satisfaction in Primary Mortgage Origination” for the past nine consecutive years, 2010 – 2018. The company was also ranked highest in the nation for client satisfaction among mortgage servicers by J.D. Power for five consecutive years, 2014 through 2018, each year the company was eligible. There’s a simple reason we’ve been so successful: We care about the people we work with.

If you’re tired of stuffy, bureaucratic workplaces, then you’ll be delighted to find something different here. We strive to make a creative, fun and collaborative environment you simply won’t find anywhere else. Quicken Loans was named #1 in ESSENCE Magazine’s first ever list of “Best Places to Work for African Americans” in 2015. We've been on Computerworld's "Best Places to Work in IT" list for 13 years running, hitting #1 the last five years. We were also ranked #14 in FORTUNE Magazine’s list of "100 Best Companies to Work For" in 2018, remaining in the top-30 for the past 15 years.

We are a team of collaborative InfoSec professionals who are always pushing ourselves and each other to grow. Most of our time is spent doing the research, digging into the problem-statements, building the standards, and collaborating with delivery, implementation, and business teams to build secure solutions. We do not configure SIEMs, Firewalls, IDP, etc. – that’s our Technical Engineers. Speaking of our InfoSec team: it’s comprised of Consulting Engineers, Technical Engineers, Analysts, Evangelists, and Pen Testers. We are a diverse group of individuals with varying backgrounds and perspectives, unified by a love for technology and security. We work hard, play hard, and dress casual!

Job Summary

The Quicken Loans Information Security Consulting Engineer works in an environment that offers unique challenges which demand a motivated, self-sufficient, passionate security professional. The ideal applicant is a well-rounded InfoSec practitioner who can jump into any engagement with little to no ramp-up and provide actionable guidance for our teams. Always evaluating and communicating the risks, the Consulting Engineer advocates for the secure way of doing things.

Ask yourself if the following sounds fun:
Driving your own day with minimal supervision
Researching and advising on security best practices for emerging technologies
Working with teams on innovative solutions that challenge the status quo
When presented a problem-statement you’re able to think through the applicable layers (OSI Model), evaluate the risks involved, and advocate for the appropriate security controls at each layer
Defining the standards rather than being told what the standards are
Speaking business, IT, and InfoSec
Digging in to find out the “why” to ensure we’re doing the right things for the right reasons
Defining, building, and evangelizing the standards and patterns to be applied across a multi-tenant, multi-platform enterprise environment
Working on a team that challenges each other to level up
Being an active member in the InfoSec community
Staying up to date with security trends and threats
Being encouraged to attend conferences and training (ProTip – We’ll reimburse you!)
Did you answer ‘yes’ to the questions above? If so, we want to talk to you!

Responsibilities

Collaborate with Business, IT, Project Management, Architecture, and Information Security teams to deliver secure solutions that support our business
Review project and process plans to ensure security is baked in
Consult with teams to ensure data is properly handled throughout our environment
Work with InfoSec Analysts to ensure visibility and security controls are implemented and maintained
Perform qualitative risk assessments on systems and applications
Collaborate with Architecture and InfoSec teams to build new policies and standards that enable and protect our team members
Ensure proposed changes and solutions meet the standards set forth by our business and team
Other duties as required
Requirements

5 years of combined experience in a direct/indirect IT Security or Technical IT role
Understanding and practical experience in at least 4 of the following:
Network design and architecture (traditional, SDN)
Cloud based services (PaaS, IaaS, SaaS)
OS config management & hardening (Windows, Linux, Mac)
Virtualization / Containerization
Mobile security (MDM, MAM)
Encryption / PKI
Database security
Application / API security
Identity Management (IDM)
DevSecOps / SDLC
What else are we looking for?

Strong passion for information security
100% trustworthy, and able to maintain strict confidentiality
High sense of urgency
Outstanding written, organizational, interpersonal, and communication skills
Analytical thinker
Ability to look at all situations objectively, loves to challenge assumptions
Comfort with acting decisively with limited information
Agnosticism on technology and platform
Efficient, but methodical in a fast-paced environment
Love for mentoring, cross-training and building stronger teams
What'll Make You Special

Knowledge of the mortgage/financial industry
Practical knowledge of any combination of PCI-DSS, GLBA, HIPAA, state/federal privacy laws
Experience working in a probabilistic, quantitative risk management program
Experience working in a decentralized IT environment
The Company is an Equal Employment Opportunity employer, and does not discriminate in any hiring or employment practices. The Company provides reasonable accommodations to qualified individuals with disabilities in accordance with state and federal law. Applicants requiring reasonable accommodation in completing the application and/or participating in the employment application process should notify a representative of the Human Resources Team, The Pulse, at 1-800-411-JOBS.