Senior Security Engineer- Security Baselines job opportunity at KeyBank.

Home Jobs In United States Of America Tag: Job Senior Security Engineer- Security Baselines position at KeyBank


DatePosted 29 Days Ago bot
KeyBank Senior Security Engineer- Security Baselines
Experience: 8-years
Pattern: full-time
Country:
apply Apply Now
Salary:
Status:

Job

Copy Link Report
degreeAssociate
loacation Brooklyn, OH, United States Of America
loacation Brooklyn, OH....United States Of America

Location: 4910 Tiedeman Road, Brooklyn Ohio As a member of the Cyber Defense team within Corporate Information Security, the Senior Exposure Management Engineer plays a critical role in safeguarding KeyBank’s infrastructure by designing, implementing, and maintaining secure configurations across on-premises, cloud, and hybrid environments. This position is responsible for ensuring that systems, applications, and networks are configured in strict alignment with industry-recognized standards, particularly the CIS Benchmarks, as well as organizational security baselines. The engineer continuously monitors updates to CIS Benchmarks, integrates new controls, and supports audit readiness by maintaining comprehensive documentation and evidence of compliance. By leveraging industry standard automated scanning capabilities, the Senior Exposure Management Engineer validates configuration settings, identifies vulnerabilities, and ensures timely remediation and re-assessment, directly supporting KeyBank’s mission to Deter, Detect, Deny, and Disrupt adversaries through robust, standards-based defense.  The role involves collaborating with cross-functional teams to assess, remediate, and document configuration gaps, ensuring that all configurations meet or exceed CIS recommendations. This proactive approach directly supports the organization’s mission to Deter, Detect, Deny, and Disrupt adversaries through robust, standards-based defense Key Responsibilities Configuration Management: Develop, implement, and maintain secure configuration baselines for operating systems, cloud platforms (Google Cloud, Microsoft Azure, AWS), applications, and network devices, ensuring strict adherence to CIS Benchmarks and organizational standards.  Continuous Assessment: Conduct regular configuration assessments and audits using Tenable and other industry-standard tools to validate compliance with CIS Benchmarks, NIST, PCI-DSS, and other regulatory requirements. Vulnerability Management: Perform authenticated and unauthenticated vulnerability scans with Tenable, analyze results, and coordinate remediation activities. Ensure that scan policies are tuned to cover CIS Benchmark controls, and that remediation is verified through re-scanning. Threat Intelligence: Collaborate with the Cyber Threat Intelligence and Red Team to incorporate threat intelligence into configuration management and prioritization processes. Project Collaboration: Work with project teams, architects, and third-party vendors to embed security controls in system designs and deployments and validate configuration requirements. Cross-Team Collaboration: Partner with infrastructure, application, and security teams to ensure baseline requirements are understood, implemented, and maintained across all environments. Compliance Reporting: Track and report on configuration compliance metrics, maintain automated dashboards, and provide visibility to stakeholders and leadership within the ServiceNow application. Documentation & Audit Support: Document configuration changes, exceptions, and remediation activities. Support internal and external audits by providing evidence of compliance and remediation. Process Automation: Assist in the development and automation of configuration management and compliance reporting tools and frameworks. Knowledge Sharing: Share knowledge and best practices with the team through presentations, documentation, and training sessions. Incident Response: Support incident response and remediation efforts by identifying and correcting misconfigurations and partnering with blue teams to improve detection and response capabilities related to configuration changes and vulnerabilities. Required Qualifications Bachelor’s degree in computer science, Cybersecurity, or related field—or equivalent experience. 8+ years of experience in security engineering, configuration management, or related roles. Proficiency with configuration management tools (e.g., Ansible, Chef, Puppet) and scripting languages (PowerShell, Python, Bash). Experience with Vulnerability Management platforms (Tenable, Qualys, Rapid7 etc) running vulnerability scans, monitoring agent health, and maintaining scanner operability. Comprehensive expertise in Tenable or comparable vendor solutions for compliance scanning. Strong understanding of Cisco, Windows, Linux, Kali Linux, and macOS operating systems. Hands-on experience with cloud platforms (Google Cloud, Microsoft Azure, AWS). Familiarity with security frameworks and standards (e.g., CIS Benchmarks, SCAP, NIST CSF, MITRE ATT\&CK). Experience with ServiceNow security related modules such as Vulnerability Response & Configuration Compliance Effective research, documentation, and reporting skills. Willingness to travel. Preferred Certifications Certified Information Systems Security Professional (CISSP) GIAC Security Essentials (GSEC) GIAC Certified Vulnerability Assessor (GCVA) Microsoft Certified: Azure Security Engineer Associate AWS Certified Security – Specialty Google Cloud Security Engineer COMPENSATION AND BENEFITS This position is eligible to earn a base salary in the range of $96,000.00 - $181,000.00 annually. Placement within the pay range may differ based upon various factors, including but not limited to skills, experience and geographic location. Compensation for this role also includes eligibility for incentive compensation which may include production, commission, and/or discretionary incentives. Please click here for a list of benefits for which this position is eligible. Key has implemented an approach to employee workspaces which prioritizes in-office presence, while providing flexible options in circumstances where roles can be performed effectively in a mobile environment. Job Posting Expiration Date: 03/23/2026

KeyCorp is an Equal Opportunity Employer committed to sustaining an inclusive culture. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, genetic information, pregnancy, disability, veteran status or any other characteristic protected by law. Qualified individuals with disabilities or disabled veterans who are unable or limited in their ability to apply on this site may request reasonable accommodations by emailing HR_Compliance@keybank.com.     #LI-Hybrid

Other Ai Matches

Private Client Banker, 11th & Conger Applicants are expected to have a solid experience in handling 11th & Conger related tasks
Lead Teller Applicants are expected to have a solid experience in handling Job related tasks
Lead Teller Applicants are expected to have a solid experience in handling Job related tasks
Part-time Teller - 30 hours Applicants are expected to have a solid experience in handling Job related tasks
Sr Application Penetration Tester Applicants are expected to have a solid experience in handling Job related tasks
Mortgage Loan Officer - Syracuse, NY Applicants are expected to have a solid experience in handling NY related tasks
Private Client Advisor Applicants are expected to have a solid experience in handling Job related tasks
Personal Banker Applicants are expected to have a solid experience in handling Job related tasks
Private Client Banker Applicants are expected to have a solid experience in handling Job related tasks
Teller Applicants are expected to have a solid experience in handling Job related tasks
Relationship Manager, Commercial Applicants are expected to have a solid experience in handling Commercial related tasks
Private Client Banker Applicants are expected to have a solid experience in handling Job related tasks
Lead Teller Applicants are expected to have a solid experience in handling Job related tasks
Real Estate Analyst - Special Servicing Applicants are expected to have a solid experience in handling Job related tasks
Mortgage Loan Officer Applicants are expected to have a solid experience in handling Job related tasks
Personal Banker Applicants are expected to have a solid experience in handling Job related tasks
Mortgage Loan Officer Applicants are expected to have a solid experience in handling Job related tasks
Lead Teller Applicants are expected to have a solid experience in handling Job related tasks
Personal Banker Applicants are expected to have a solid experience in handling Job related tasks
Branch Manager Applicants are expected to have a solid experience in handling Job related tasks
Key Private Bank Relationship Manager Applicants are expected to have a solid experience in handling Job related tasks
Key Family Wealth Senior Portfolio Strategist Applicants are expected to have a solid experience in handling Job related tasks
Public Finance Analyst, Healthcare Applicants are expected to have a solid experience in handling Healthcare related tasks