Share this Job

Sr IT Security Engineer

Req Id:  3050
Job Location: 

Charlotte, NC, US, 28277

Brighthouse Financial is on a mission to help people achieve financial security. As one of the largest providers of annuities and life insurance in the U.S., we specialize in products designed to help people protect what they’ve earned and ensure it lasts. We are built on a foundation of experience and knowledge, which allows us to keep our promises and provide the value they deserve.


At Brighthouse Financial, we’re fostering a culture where diverse backgrounds and experiences are celebrated, and different ideas are heard and respected. We believe that by creating an inclusive workplace, we’re better able to attract and retain our talent, provide valuable solutions that meet the needs of our advisors and their clients, and deliver on our mission of helping more people achieve financial security. We’re seeking passionate, high-performing team member to join us. Sound like you? Read on. 


How This Role Contributes to Brighthouse Financial:

Reporting into the Head of Cyber Security Operations of Brighthouse Financial, the Sr IT Security Engineer will be part of the Brighthouse Computer Security Operations team that is accountable for ensuring security systems and applications are delivered, maintained and hardened to maximize cyber security investments. This role will be responsible for overseeing endpoint, network, cloud and messaging technologies designed to identify, prevent, protect, comply, monitor and respond to everyday cyber-security threats facing Brighthouse’s infrastructure, networks and connected cloud ecosystems.


The Sr IT Security Engineer will be part of dynamic and matrixed team of security professionals that will be instrumental in maturing Brighthouse’s next generation Security Operational model and Security Operations Center (SOC) technologies. The individual in this role will work as the primary security engineering resource to plan, implement, monitor and upgrade security technologies across the information security stack within the Brighthouse IT environment. He/she will be responsible for ensuring that the organization’s data and systems are protected by the proper implementation of purpose-built security controls and related technology. This role will be accountable for testing and identifying network and system vulnerabilities for core and cloud connected systems.


This role will also play a key part in supporting incident response team activities by collaborating cyber related events. The Sr IT Security Engineer will be a key member of the change advisory and architectural review boards and will also partner closely with Cyber Security, Data Protection, Enterprise Architecture and MSSP personnel.


Work Location:

To protect the health and safety of our employees, our offices are closed until at least September 2021. When our offices reopen, the individual hired for this role will be based in our Charlotte, NC office. However, we are considering fully remote employees. 


Key Responsibilities:

  • Provide technical guidance with the deployment and maintenance of security systems and controls to support Brighthouse Financial systems and applications
  • Responsible for the installation, maintenance and support of security control technologies including but not limited; unified threat managed firewalls, intrusion prevention & detection systems, enterprise endpoint detection and response, anti-virus and patching solutions, data leakage prevention, two-factor authentication, threat detection, vulnerability scanners, web-filtering, VPNs, cloud protections and messaging protection technologies
  • Collaborate with IT staff including Operations, Engineering and Enterprise Architecture and business units to assess risk and address security issues
  • Provide guidance surrounding cyber related issues while recommending solutions that mitigate and eliminate risk
  • Define security requirements and review systems to determine if they have been designed to comply with established security standards; develop new standards as necessary
  • Participate in forensics and post-mortem investigations of Information Security incidents while collaborating on investigative reporting
  • Ensure that controls are in place and managed properly to meet legal and regulatory compliance on all network and system infrastructures
  • Assist in the enforcement of security policies from planning, technology safeguards and remediation for data, software applications, systems including cloud connected infrastructure and systems
  • Review and recommends the installation, modification or replacement of hardware or software components and any configuration changes that affect or baseline security risk posture
  • Build and maintain relationships with teams and third parties on security development and support issues
  • Be a member of the Security Incident Response Team, providing a high level of support of expedited problem resolution
  • Serve as key engineering support for in-house security systems and technology and MSSP supported technology and other reporting channels
  • Drive consistent operating system (server, endpoint, virtual) hardening, access configuration, upgrades, patching, logging and vulnerability resilience
  • Perform security technology control configuration reviews, recommend and apply (directly or through oversight)
  • Participate in review and approval of standards, conventions, solution architectures and other artifacts created by the Brighthouse Enterprise Architecture organization
  • Contribute to the business and technology drivers behind development of the Target State Architecture for the Security domain by working closely with Enterprise Architecture


Essential Business Experience and Technical Skills:

  • Bachelor's degree or equivalent experience.
  • 5+ years’ experience in cybersecurity
  • Highly technical and analytical with a proven diverse IT and security background
  • Experience with security validation teaming to identify and remediate issues rapidly
  • Experience in cloud computing technologies, including software, infrastructure and platform-as-a-service, as well as public, private, and hybrid environments
  • Experience in security configuration of Office 365
  • Experience with Microsoft Cloud App Security solution
  • Experience and successful in delivering vulnerability and penetration testing requirements
  • Experience managing SIEM systems, threat intelligence platforms, security automation and orchestration solutions, IDS/IPS, Cloud Access Security Brokers (CASB), data loss prevention (DLP) and other network and system monitoring tools
  • Experience with Microsoft Exchange and anti-spam technologies and protocols
  • Previous Network Engineering or Systems Engineering background preferred
  • System administration experience in a Windows, Linux and Unix environment
  • Experience developing technical documents and procedures, topology maps and with various software applications
  • Ability to explain complex ideas and concepts to both a technical and nontechnical audience, both verbally and written
  • Solid understanding of security operations in interconnected cloud environments such as Azure, AWS, VMware and other SaaS environments
  • Ability to communicate and navigate across cross-functional teams and providers
  • Good understanding of cyber risk attack approaches (e.g. lateral movement, indicators of compromise, privilege escalation)
  • Proven experience in supporting security operations and managing solutions for multiple business units and locations
  • Ability to effectively execute concurrent activities and maintain focus on key details during times of crisis and heightened pressure


Preferred Information Security certifications

  • CySA+ 
  • Security+ 
  • CCNA Security 
  • Microsoft 365 Certified: Security Administrator Associate
  • Microsoft Certified: Azure Security Engineer Associate
  • Systems Security Certified Practitioner (SCCP)
  • Certified Information Systems Security Professional (CISSP)
  • Certified Cloud Security Professional (CCSP)
  • Certified Information Security Manager (CISM)


Our Benefits:

  • Time Off: Minimum of 20 days of paid time off and 13 paid company holidays per full calendar year, plus paid volunteer time
  • Financial Benefits: 401(k) savings plan with up to a 6% annual match and 3% annual company nondiscretionary contribution of eligible compensation, annual incentive plan, and employee stock purchase plan
  • Family Focus: Up to 16 weeks of paid leave for new parents, back-up care program, dependent care flexible spending account, and adoption and surrogacy assistance
  • Health and Welfare: Competitive medical, vision and dental plans, plus tax-free health savings accounts with potential company contributions up to $1,000 per family
  • Wellness Programs: Wellness incentive platform, employee assistance program, financial counseling services, fitness center discounts and more
  • Life & Disability Benefits: Company-paid basic life insurance and short-term disability



Less than 5%


Nearest Major Market: Charlotte

Job Segment: Cisco, Information Systems, Cloud, Information Technology, IT Architecture, Technology