VP, Security Engineer - CWAF (Remote)

Join our mission to create a completely new, 100% digital bank that uses consumer feedback to truly meet customers’ best interests. Jenius Bank, a division of SMBC MANUBANK, and a member of SMBC Group, is being built by a close-knit and fun-loving team of financial services professionals and technology experts who came together for the challenge of building a full-service digital bank from scratch. We’re committed to doing it the right way for the customer and are growing rapidly. To learn more about our relationship to our parent company, visit our website.

The anticipated salary range for this role is between $158,000.00 and $198,000.00. The specific salary offered to an applicant will be based on their individual qualification, experiences, and analysis of current compensation paid in their geography and the market for similar roles at time of hire. The role may also be eligible for an annual discretionary incentive award. In addition to cash compensation, SMBC MANUBANK offers a competitive portfolio of benefits to its employees.
 

Jenius Bank is strategically scaling up a portfolio of products and building extraordinary experiences. In 2023, we launched our first two products reaching $1 billion in deposits and over $700 million in loans, all before Jenius Bank’s first anniversary. We don’t plan to slow down, with ambitious growth plans and the capital necessary to execute a multi-year strategic plan. We have a start-up mindset paired with SMBC Group’s 400 years of history. SMBC Group has more than 150 offices and 86,000 employees worldwide in nearly 40 countries and is committed to creating new business to better serve customers in the rapidly evolving digital environment. Join us on the journey that has caught the attention of the Banking Dive, and more to reinvent banking where smarter banking translates to a richer life.

SUMMARY:

We are seeking a skilled and detail-oriented Security Engineer with expertise in configuring and maintaining firewalls, including Cloud Web Application Firewall (CWAF) solutions, bot protection, and other advanced firewall hardening techniques. This role is critical to ensuring the security, availability, and performance of our applications and network infrastructure. The ideal candidate will have a strong background in web application security, network security, and hands-on experience with firewalls and security platforms.

PRINCIPAL DUTIES AND RESPONSIBILITIES:

• Firewall Configuration and Management:
  • Configure, deploy, and maintain Cloud Web Application Firewalls (CWAF) and other firewall solutions. Ie…Imperva, Akamai, Azure
  • Manage firewall rules, policies, and updates to ensure secure and efficient traffic flow.
  • Perform regular firewall audits to identify and remediate security gaps.
• Bot Protection and Mitigation:
  • Implement and optimize bot protection mechanisms to block malicious traffic while allowing legitimate access.
  • Analyze traffic patterns and deploy tools to detect and prevent automated attacks such as credential stuffing and scraping.
  • Regularly review and adjust bot protection settings to address emerging threats.
• Security Hardening:
  • Perform firewall and network hardening to protect against known vulnerabilities and emerging threats.
  • Establish robust security baselines for network devices, including routers, firewalls, and intrusion detection/prevention systems.
  • Conduct vulnerability assessments and penetration tests, and implement mitigations as needed.
• Monitoring and Incident Response:
  • Monitor firewall logs and security events to identify and respond to suspicious activity.
  • Collaborate with the incident response team to investigate and resolve security incidents.
  • Provide root cause analysis and recommend strategies to prevent future incidents.
• Collaboration and Documentation:
  • Work closely with DevOps, IT, SOC, and application development teams to align security configurations with technology/business needs.
  • Develop and maintain detailed documentation of firewall configurations, policies, and procedures.
  • Provide training and guidance to team members on firewall and web application security best practices.

POSITION SPECIFICATIONS:

• Bachelor’s degree in Computer Science, Information Security, or a related field, or equivalent work experience.
• 7+ years of experience in network or application security with a focus on firewalls and web application security.
• Hands-on experience with Cloud Web Application Firewalls (e.g., AWS WAF, Azure WAF, Cloudflare, Imperva, etc.).
• Strong knowledge of bot protection tools and techniques.
• Proficiency in configuring and managing enterprise-grade firewalls (e.g., Palo Alto, Fortinet, Cisco, etc.).
• Experience with network protocols (TCP/IP, DNS, HTTP/HTTPS) and security technologies (IDS/IPS, DDoS mitigation, VPNs).
• Familiarity with OWASP Top 10 and common web application vulnerabilities.
• Strong analytical, troubleshooting, and communication skills.

Preferred Skills:

• Certifications such as CISSP, CEH, CISM, CCNP Security, or equivalent.
• Experience with scripting languages (Python, Bash, etc.) for automation.
• Knowledge of SIEM platforms and security monitoring tools.
• Familiarity with DevSecOps practices and tools (e.g., CI/CD pipelines, infrastructure as code, ACLs/Allowlisting).

 
Work Environment:

• Availability for on-call rotation to respond to security incidents.

EOE STATEMENT
SMBC provides reasonable accommodations during candidacy for applicants with disabilities consistent with applicable federal, state, and local law. If you need a reasonable accommodation during the application process, please let us know at accommodations@smbcgroup.com.

CCPA DISCLOSURE
Personal Information Collection Notice: This notice contains information under the California Consumer Privacy Act (CCPA) about the categories of personal information (PI) of California residents that SMBC MANUBANK collects and the business or commercial purpose(s) for which the PI may be used. We do not sell PI. More information about our collection and use of PI may be found in our CCPA Privacy Policy at https://www.smbcmanubank.com/privacy/ccpa-disclosure. Persons with disabilities may contact our Customer Contact Center toll-free at (877) 560-9812 to request the information in this Notice in an alternative format.