Information Security Engineer - Risk and Compliance

Progressive Leasing - Draper, UT

Full-time
Job Description

We are currently seeking a passionate security professional for our growing Information Security team to help support governance, risk, and compliance. An ideal candidate will have a strong technology background and possess top notch communication, collaboration, and organizational skills. In this role you will be a critical player on a dynamic security team. This role will provide you with opportunities to be creative and bring fresh ideas to the team.

What You'll Do:
Assist in the testing and design of technology controls
Collaborate with business and technology leaders to ensure the successful remediation of identified security weaknesses
Contribute to the design and improvement of team processes and procedures
Evaluate security controls to confirm there is adequate coverage of requirements from standards, policies, regulation, contracts, etc.
Collaborate with external auditors to ensure security assessments are completed and compliance certifications achieved annually
Demonstrate our security capabilities to business partners by responding to security assessments
Work with policy owners to ensure policies adequately cover compliance and regulatory obligations
Evaluate third parties for security risks stemming from the services they provide
Identify and meticulously manage information security risks
Provide analysis and continuous improvement of the GRC tool capability through lifecycle management best practices

Minimum Experience & Qualifications:
Ability to identify and improve insufficient security controls
Ability to administrate security solutions, e.g., firewalls, proxies, WAFs, DLP, IDS/IPS, malware detection, packet capture and analysis tools, etc.
General understanding of TCP/IP, the OSI model, DNS, HTTP, VPN, routing & switching, and load balancer technologies for virtual and physical networks
General understanding of threats to include common attack vectors, methodologies and payloads/exploits
General understanding of the differences and commonalities in relevant security standards (I.e, PCI-DSS, ISO 27001, SOC2, etc.)
Solid understanding of security best practices and defense in depth strategies
Solid undersanding of information security risk management strategies
Knowledge of endpoint security technologies; e.g., antivirus, HIPS, FIM, etc.
Knowledge of secure configuration management across multiple platforms
BA/BS preferred with 4+ years of overall information security engineering and technology operations experience
Information security industry recognized certification(s) preferred – (Examples: GSEC, CISSP, CRISC, CISA)
Curious, inquisitive, innovative, lifelong learner and self-starter
Strong documentation and communication skills
Clear on responsibilities yet flexible and willing to “carry water” during times of ambiguity
Able to effectively give, receive, and respond to feedback
Highly organized self starter with the ability to effectively meet deadlines

Compensation, Perks & Benefits:
Competitive Compensation with Bonus Potential
Full Health Benefits - Medical/Dental/Vision
401k, Paid Time Off and Tuition Reimbursement
Full Service Gym, Game and Lounge Area, Basketball Court
Free Healthy Snacks and Refreshments
Subsidized Public Transit
Fun and Relaxed Work Environment

WHO IS PROGRESSIVE LEASING?

Prog Leasing, LLC, a wholly-owned subsidiary of Aaron’s, Inc (NYSE: AAN), is the largest and longest-tenured virtual lease-to-own provider in the United States. The company’s mission is to provide simple and affordable purchase options for credit-challenged consumers. Over the last 19+ years, Progressive Leasing’s fair and transparent NO CREDIT NEEDED lease-to-own option has helped millions of customers and their families, even if they have less-than-perfect credit or an inability to pay for their purchase upfront. Progressive has also helped more than 27,000 retail stores drive increased revenue and improve customer satisfaction. Learn more at http://www.progleasing.com.

Progressive Leasing does not discriminate in any aspect of employment on the basis of race, color, religion, national origin, ancestry, gender, sexual orientation, gender identity and/or expression, age, veteran status, disability, or any other characteristic protected by federal, state, or local employment discrimination laws where Progressive Leasing does business.