Senior Security Engineer - Hybrid

at UNUM in Portland, Maine, United States

Job Description

Our Fortune 500 company is driving a digital transformation and looking for forward-thinking innovators to disrupt how our industry thinks about and uses technology. As one of the world’s leading employee benefits providers, we help millions of people gain affordable access to benefits that help them protect their families, their finances and their futures.

Are you an asker of questions, a solver of problems, and a challenger of the status quo? Our mission is to provide a differentiated customer experience and exceed the expectations people have of technology at any company – not just insurers.

We are seeking individuals to join our team of talented IT professionals who share never-ending passion and an unwavering focus on our customer experience. Team members comfortable working in an agile, fast-paced, and delivery-focused environment thrive in our environment where we value an entrepreneurial spirit and those who challenge the status-quo.

Unum is changing, and we’re excited about what’s next. Join us.

General Summary:

As a Senior Security Engineer, you will play a pivotal role in designing, implementing, and managing our Privileged Access Management framework. We are seeking a candidate with proven expertise in PAM solutions, particularly CyberArk, hardware security modules, and vaulting technologies. The ideal candidate will enjoy serving as a Subject Matter Expert (SME) in the field while also demonstrating strong leadership capabilities.

If you have done a CyberArk implementation, been responsible for the support and availability of the CyberArk environment, and managed service accounts, systematically retrieving credentials, as well as installing patches and supported the nuts and bolts of CyberArk, we invite you to apply!

This position contributes to strategic decisions at the corporate level and is involved in security architecture planning with business and IT partners. They are sought out to address moderate and complex business and technical security problems.

Principal Duties and Responsibilities:

+ Build, deliver, maintain, and update PAM tooling (ie. CyberArk, Conjur, HSM, Cloud secret and key management Azure/AWS, Certificate Management)

+ Provide subject matter expertise in PAM space

+ Design and support process following least access principle with focus on automation where possible

+ Assesses reported security threats and weaknesses, remediate vulnerabilities.

+ Provide level II support for Operations

+ Participates in 24/7 on-call rotation.

+ Performs day-to-day operations and technical support, including system upgrades, on the Unum security technology portfolio.

+ Consults on the security framework to IT/Business project teams, and in day-to-day business operations.

+ Consults with development and business partners on integration and security configuration for new or existing software or solutions

+ Participates in the evaluation of vendor’s product strategies, technology roadmaps and software enhancements, and consults on the inclusion and rollout these recommendations in the corporate security roadmap.

+ Develops and consults on sound security policies and procedures.

+ Develops strong partnerships with business clients, application developers, software vendors and other technical resources.

Job Specifications:

+ Bachelors or advanced degree in computer science or related discipline preferred or comparable work experience.

+ 6+ years of related work experience in information technology engineering, support or consulting experience. Preferred if two of those years was spent in networking, application development, system security or IT Audit related positions.

+ Demonstrated ability and success in:

+ Working effectively in an ambiguous environment, functioning independently, and effectively working across geographical locations.

+ Detecting and analyzing hostile and other improper actions in such an environment.

+ Investigating and responding to security alerts, or new security threats with a sense of urgency.

+ Strong oral and written communications skills

+ Strong analytical and problem-solving skills and proactive thinking skills

+ Strong Knowledge of PAM tools and best practices.

+ Mentor and support junior level security staff

+ Develops strong partnerships with client management, business clients, application developers, software vendors and other technical resources which includes, but not limited to, legal, compliance, and privacy

+ Maintain close relationships with the business to understand strategy, processes, plans and needs to help influence planning by advising on best practices, innovation/technology enablement opportunities

+ Communicates effectively with business partners, customers, brokers, third party suppliers/partners, and systems resources at all levels.

+ Delivers effective, high-quality solutions in a timely manner while balancing shifting priorities and, at times, accelerated timelines.

+ Facilitate matching business needs and services options by leveraging knowledge of business strategy, processes, and market offerings to assist in evaluating the most appropriate products and services to meet its requirements

+ Provide an overall perspective or point of clarification to partner on operational aspects of a service. Has a good overall understanding of infrastructure and application portfolios to provide guidance to service partner provider.

Technical Skills for Identity & Access Management:

+ Experience in implementing and supporting global PAM (Privileged Access Management) solutions (CyberArk, Conjur, HSM, secret and key mgmt tools, vaults, certificate managers, etc.)

+ Knowledge and experience of CyberArk, Conjur, HSM, secret and key management and API integration

+ Experience with LDAP/Directory Services, RACF, Linux, AWS, Azure, O365

+ Familiar with Regulations, including, GLPA, HIPAA, GDPR, CCPA, and other Cyber Security Regulatory compliance requirements and related programs

+ ISO 27001/27002 the NIST Cyber Security Framework

+ CISSP, CISM, SANS, and other security related certifications a plus

Technical Skills for Cyber Security:

+ Excellent working knowledge of one or more of the following security areas desired: Operating System Security (Windows, MacOS, Linux, zOS/RACF)

+ Internet Technologies (NNTP, Proxy, HTTP, HTTPS, HTLM, SSL, X.509)

+ TCP/IP and networking (LAN/WAN/Wireless)

+ Public Key Infrastructure technologies including encryption, Kerberos, certification authorities

+ General Access Control Security (Active Directory, Linux, and Mainframe security)

+ Security Coding Standards (e.g. OWASP) and Secure Software Development Lifecycles.SOX and HIPPA compliance requirements and related programs

+ Familiar with Regulations, including, GLPA, HIPAA, GDPR, CCPA, and other Cyber Security Regulatory compliance requirements and related programs

+ ISO 27001/27002 the NIST Cyber Security Framework

+ CISSP, CISM, SANS, and other security related certifications a plus




Our company is built on helping individuals and families, and this starts with our employees. We want employees to maintain a positive balance, which is why we provide access to the benefits and resources they need to invest in themselves. From our onsite fitness facilities and generous paid time off to employee professional development programs, we are committed to helping employees live and work their best – both inside and outside the office.

Unum is an equal opportunity employer, considering all qualified applicants and employees for hiring, placement, and advancement, without regard to a person’s race, color, religion, national origin, age, genetic information, military status, gender, sexual orientation, gender identity or expression, disability, or protected veteran status.

The base salary range for appli

Copy Link

Job Posting: JC253916252

Posted On: Jan 18, 2024

Updated On: Mar 28, 2024

Please Wait ...