Lead, Network Security Automation Engineer
About the role
The Global Technology team at Prudential takes pride in fostering a culture where digital transformation is integral to our operations. As a Lead, Information Security Operations within Information Security Governance & Standards on the Network Security team in the Information Security Office (ISO), you will play a crucial role in designing and automating end-to-end network security workflows.
Responsibilities
- Design and automate end-to-end network security workflows, including request intake, risk evaluation, approval, provisioning, and third-party integrations.
- Build governance decision-making metrics, KRIs, and KPIs tied to service execution and request activity, with reporting delivered through ServiceNow or SPLUNK extracts.
- Perform complex risk analysis on service requests using CMDB data, data types, third-party access scenarios, and data sensitivity factors, and report on controls such as Policy Decision Point (PDP), Policy Enforcement Point (PEP), and micro-segmentation enforcement effectiveness.
- Automate workflows and engineer telemetry-driven data collection, metrics, scheduled reports, and dashboard views to enhance operational transparency, support governance decision-making, inform future-state workflow design, and modernize comparable processes across legacy, on-premises, and cloud-based environments.
- Aid team members in agile process and ceremony adoption, leveraging business and security system/process knowledge to identify operational risks and improve service now processes to address service request-based risks.
Requirements
- Bachelor of Computer Science or Engineering or equivalent experience in related fields.
- Experience with agile development methodologies such as sprints, use of tools like GitHub and Artifactory, and DevOps pipelines and code quality testing tools.
- Knowledge of business concepts and information security tools and processes necessary for making sound decisions in the context of the company's business.
- Advanced experience and/or expertise with several of the following: NIST and ISO 27000 Standards, Information Security Control Standards and Engineering Specifications, Identity and Access Management specifically Microsoft Entra ID (Azure AD) group management and Zscaler ZTA onboarding workflows, working knowledge of edge infrastructure including firewalls, WAF's, proxy, advanced bot protection services, Zero Trust concepts and Zero Trust Network Access (ZTNA), international team collaboration, cross-functional workflow execution, vulnerability and compliance monitoring processes and tools, privileged access request creation, approval and provisioning processes.
Skills & Expertise
- Ability to engage with others with minimal guidance and effectively leverage diverse ideas, experiences, and perspectives to the benefit of the organization.
- Advanced experience and/or expertise with several of the following: NIST and ISO 27000 Standards, Information Security Control Standards and Engineering Specifications, Identity and Access Management specifically Microsoft Entra ID (Azure AD) group management and Zscaler ZTA onboarding workflows, working knowledge of edge infrastructure including firewalls, WAF's, proxy, advanced bot protection services, Zero Trust concepts and Zero Trust Network Access (ZTNA), international team collaboration, cross-functional workflow execution, vulnerability and compliance monitoring processes and tools, privileged access request creation, approval and provisioning processes.
- Preferred qualifications: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Cloud security certifications (AWS or Azure), GIAC: Cloud Security Essentials Certification (GCLD), SC-200: Microsoft Security Operations Analyst, ServiceNow Certified Application Developer (CAD).
Benefits
Specific pricing for the role may vary within the above range based on many factors including geographic location, candidate experience, and skills. Market competitive base salaries, with a yearly bonus potential at every level. Medical, dental, vision, life insurance, disability insurance, Paid Time Off (PTO), and leave of absences, such as parental and military leave. 401(k) plan with company match (up to 4%). Company-funded pension plan. Wellness Programs including up to $1,600 a year for reimbursement of items purchased to support personal wellbeing needs. Work/Life Resources to help support topics such as parenting, housing, senior care, finances, pets, legal matters, education, emotional and mental health, and career development. Education Benefit to help finance traditional college enrollment toward obtaining an approved degree and many accredited certificate programs. Employee Stock Purchase Plan: Shares can be purchased at 85% of the lower of two prices (Beginning or End of the purchase period), after one year of service. Eligibility to participate in a discretionary annual incentive program is subject to the rules governing the program, whereby an award, if any, depends on various factors including, without limitation, individual and organizational performance.